1 /* group.c - ldap backend acl group routine */
4 * Copyright 1998-2003 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
12 #include <ac/socket.h>
13 #include <ac/string.h>
16 #include "back-ldap.h"
19 /* return 0 IFF we can retrieve the attributes
29 AttributeDescription *entry_at,
33 struct ldapinfo *li = (struct ldapinfo *) be->be_private;
35 int rc = 1, i, j, count, is_oc;
36 Attribute *attr = NULL;
38 struct berval mapped = { 0, NULL };
40 LDAPMessage *result = NULL, *e = NULL;
44 if (target != NULL && dn_match( &target->e_nname, ndn )) {
45 /* we already have a copy of the entry */
46 /* attribute and objectclass mapping has already been done */
47 if ((attr = attr_find(target->e_attrs, entry_at)) == NULL)
50 for ( count = 0; attr->a_vals[count].bv_val != NULL; count++ ) { }
51 v = (BerVarray) ch_calloc( (count + 1), sizeof(struct berval) );
53 for ( j = 0, abv = attr->a_vals; --count >= 0; abv++ ) {
54 if ( abv->bv_len > 0 ) {
55 ber_dupbv( &v[j], abv );
56 if( v[j].bv_val == NULL )
66 ldap_back_map(&li->at_map, &entry_at->ad_cname, &mapped, BACKLDAP_MAP);
67 if (mapped.bv_val == NULL || mapped.bv_val[0] == '\0') {
71 /* Tell getconn this is a privileged op */
72 is_oc = op->o_do_not_cache;
73 op->o_do_not_cache = 1;
74 lc = ldap_back_getconn(li, conn, op);
75 if ( !lc || !ldap_back_dobind(li, lc, NULL, op) ) {
76 op->o_do_not_cache = is_oc;
79 op->o_do_not_cache = is_oc;
81 gattr[0] = mapped.bv_val;
83 if (ldap_search_ext_s(lc->ld, ndn->bv_val, LDAP_SCOPE_BASE, "(objectclass=*)",
84 gattr, 0, NULL, NULL, LDAP_NO_LIMIT,
85 LDAP_NO_LIMIT, &result) != LDAP_SUCCESS)
90 if ((e = ldap_first_entry(lc->ld, result)) == NULL) {
94 vs = ldap_get_values(lc->ld, e, mapped.bv_val);
99 for ( count = 0; vs[count] != NULL; count++ ) { }
100 v = (BerVarray) ch_calloc( (count + 1), sizeof(struct berval) );
105 is_oc = (strcasecmp("objectclass", mapped.bv_val) == 0);
106 for ( i = 0, j = 0; i < count; i++) {
107 ber_str2bv(vs[i], 0, 0, &v[j] );
109 if( v[j].bv_val == NULL )
114 ldap_back_map(&li->oc_map, &v[j], &mapped,
116 if (mapped.bv_val && mapped.bv_val[0] != '\0') {
117 ber_dupbv( &v[j], &mapped );
135 ldap_msgfree(result);