3 ## This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 ## Copyright 1998-2012 The OpenLDAP Foundation.
6 ## All rights reserved.
8 ## Redistribution and use in source and binary forms, with or without
9 ## modification, are permitted only as authorized by the OpenLDAP
12 ## A copy of this license is available in the file LICENSE in the
13 ## top-level directory of the distribution or, alternatively, at
14 ## <http://www.OpenLDAP.org/license.html>.
16 echo "running defines.sh"
17 . $SRCDIR/scripts/defines.sh
19 if test $MEMBEROF = memberofno; then
20 echo "Memberof overlay not available, test skipped"
24 mkdir -p $TESTDIR $DBDIR1 $TESTDIR/confdir
26 $SLAPPASSWD -g -n >$CONFIGPWF
27 echo "rootpw `$SLAPPASSWD -T $CONFIGPWF`" >$TESTDIR/configpw.conf
29 echo "Starting slapd on TCP/IP port $PORT1..."
30 . $CONFFILTER $BACKEND $MONITORDB < $NAKEDCONF > $CONF1
31 $SLAPD -f $CONF1 -F $TESTDIR/confdir -h $URI1 -d $LVL $TIMING > $LOG1 2>&1 &
33 if test $WAIT != 0 ; then
40 for i in 0 1 2 3 4 5; do
41 $LDAPSEARCH -s base -b "$MONITOR" -h $LOCALHOST -p $PORT1 \
42 'objectclass=*' > /dev/null 2>&1
44 if test $RC = 0 ; then
47 echo "Waiting 5 seconds for slapd to start..."
50 if test $RC != 0 ; then
51 echo "ldapsearch failed ($RC)!"
52 test $KILLSERVERS != no && kill -HUP $KILLPIDS
56 cat /dev/null > $TESTOUT
58 if [ "$MEMBEROF" = memberofmod ]; then
59 echo "Inserting memberof overlay on provider..."
60 $LDAPADD -D cn=config -H $URI1 -y $CONFIGPWF <<EOF > $TESTOUT 2>&1
61 dn: cn=module,cn=config
62 objectClass: olcModuleList
64 olcModulePath: ../servers/slapd/overlays
65 olcModuleLoad: memberof.la
68 if test $RC != 0 ; then
69 echo "ldapadd failed for moduleLoad ($RC)!"
70 test $KILLSERVERS != no && kill -HUP $KILLPIDS
75 indexInclude="" mainInclude="" bdbInclude="# " nullExclude=""
76 test $INDEXDB = indexdb || indexInclude="# "
77 test $MAINDB = maindb || mainInclude="# "
79 bdb | hdb) bdbInclude="" ;;
80 null) nullExclude="# " ;;
83 echo "Running ldapadd to build slapd config database..."
84 $LDAPADD -h $LOCALHOST -p $PORT1 -D 'cn=config' -w `cat $CONFIGPWF` \
85 >> $TESTOUT 2>&1 <<EOF
86 dn: cn=symas group example,cn=schema,cn=config
87 objectClass: olcSchemaConfig
88 cn: symas group example
89 olcAttributeTypes: ( 1.3.6.1.4.1.4754.31.1.1
90 NAME 'memberA' SUP distinguishedName )
91 olcAttributeTypes: ( 1.3.6.1.4.1.4754.31.1.2
92 NAME 'memberOfA' SUP distinguishedName )
93 olcAttributeTypes: ( 1.3.6.1.4.1.4754.31.1.3
94 NAME 'memberB' SUP distinguishedName )
95 olcAttributeTypes: ( 1.3.6.1.4.1.4754.31.1.4
96 NAME 'memberOfB' SUP distinguishedName )
97 olcObjectClasses: ( 1.3.6.1.4.1.4754.31.2.1
98 NAME 'groupA' SUP top STRUCTURAL MUST cn MAY memberA )
99 olcObjectClasses: ( 1.3.6.1.4.1.4754.31.2.2
100 NAME 'groupMemberA' SUP top AUXILIARY MAY memberOfA )
101 olcObjectClasses: ( 1.3.6.1.4.1.4754.31.2.3
102 NAME 'groupB' SUP top STRUCTURAL MUST cn MAY memberB )
103 olcObjectClasses: ( 1.3.6.1.4.1.4754.31.2.4
104 NAME 'groupMemberB' SUP top AUXILIARY MAY memberOfB )
106 dn: olcDatabase={1}$BACKEND,cn=config
107 objectClass: olcDatabaseConfig
108 ${nullExclude}objectClass: olc${BACKEND}Config
109 olcDatabase: {1}$BACKEND
111 olcRootDN: cn=Manager,$BASEDN
114 ${nullExclude}olcDbDirectory: $TESTDIR/db.1.a/
115 ${bdbInclude}olcDbCacheSize: 1000
116 ${indexInclude}olcDbIndex: objectClass eq
117 ${indexInclude}olcDbIndex: cn pres,eq,sub
118 ${indexInclude}olcDbIndex: uid pres,eq,sub
119 ${indexInclude}olcDbIndex: sn pres,eq,sub
120 ${mainInclude}olcDbMode: 384"
122 dn: olcOverlay={0}memberof,olcDatabase={1}$BACKEND,cn=config
123 objectClass: olcOverlayConfig
124 objectClass: olcMemberOf
125 olcOverlay: {0}memberof
126 olcMemberOfRefInt: TRUE
127 olcMemberOfGroupOC: groupOfNames
128 olcMemberOfMemberAD: member
129 olcMemberOfMemberOfAD: memberOf
131 dn: olcOverlay={1}memberof,olcDatabase={1}$BACKEND,cn=config
132 objectClass: olcOverlayConfig
133 objectClass: olcMemberOf
134 olcOverlay: {1}memberof
135 olcMemberOfRefInt: TRUE
136 olcMemberOfGroupOC: groupA
137 olcMemberOfMemberAD: memberA
138 olcMemberOfMemberOfAD: memberOfA
140 dn: olcOverlay={2}memberof,olcDatabase={1}$BACKEND,cn=config
141 objectClass: olcOverlayConfig
142 objectClass: olcMemberOf
143 olcOverlay: {2}memberof
144 olcMemberOfRefInt: TRUE
145 olcMemberOfGroupOC: groupB
146 olcMemberOfMemberAD: memberB
147 olcMemberOfMemberOfAD: memberOfB
151 if test $RC != 0 ; then
152 echo "ldapadd failed ($RC)!"
153 test $KILLSERVERS != no && kill -HUP $KILLPIDS
157 echo "Running ldapadd to build slapd database..."
158 $LDAPADD -h $LOCALHOST -p $PORT1 \
159 -D "cn=Manager,$BASEDN" -w secret \
160 >> $TESTOUT 2>&1 << EOF
162 objectClass: organization
163 objectClass: dcObject
167 dn: ou=People,$BASEDN
168 objectClass: organizationalUnit
171 dn: ou=Groups,$BASEDN
172 objectClass: organizationalUnit
175 dn: cn=Roger Rabbit,ou=People,$BASEDN
176 objectClass: inetOrgPerson
180 dn: cn=Baby Herman,ou=People,$BASEDN
181 objectClass: inetOrgPerson
185 dn: cn=Cartoonia,ou=Groups,$BASEDN
186 objectClass: groupOfNames
188 member: cn=Roger Rabbit,ou=People,$BASEDN
189 member: cn=Baby Herman,ou=People,$BASEDN
192 if test $RC != 0 ; then
193 echo "ldapadd failed ($RC)!"
194 test $KILLSERVERS != no && kill -HUP $KILLPIDS
198 echo "Search the entire database..."
199 echo "# Search the entire database..." >> $SEARCHOUT
200 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
201 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
203 if test $RC != 0 ; then
204 echo "ldapsearch failed ($RC)!"
205 test $KILLSERVERS != no && kill -HUP $KILLPIDS
209 echo "Running ldapmodify to add a member..."
210 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
211 -D "cn=Manager,$BASEDN" -w secret \
212 >> $TESTOUT 2>&1 << EOF
213 dn: cn=Jessica Rabbit,ou=People,$BASEDN
215 objectClass: inetOrgPerson
219 dn: cn=Cartoonia,ou=Groups,$BASEDN
222 member: cn=Jessica Rabbit,ou=People,$BASEDN
225 echo "Re-search the entire database..."
226 echo "# Re-search the entire database after adding Jessica Rabbit and Cartoonia..." >> $SEARCHOUT
227 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
228 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
230 if test $RC != 0 ; then
231 echo "ldapsearch failed ($RC)!"
232 test $KILLSERVERS != no && kill -HUP $KILLPIDS
236 echo "Running ldapmodify to rename a member..."
237 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
238 -D "cn=Manager,$BASEDN" -w secret \
239 >> $TESTOUT 2>&1 << EOF
240 dn: cn=Baby Herman,ou=People,$BASEDN
242 newrdn: cn=Baby Herman Jr
246 echo "Re-search the entire database..."
247 echo "# Re-search the entire database after renaming Baby Herman..." >> $SEARCHOUT
248 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
249 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
251 if test $RC != 0 ; then
252 echo "ldapsearch failed ($RC)!"
253 test $KILLSERVERS != no && kill -HUP $KILLPIDS
257 echo "Running ldapmodify to rename a group..."
258 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
259 -D "cn=Manager,$BASEDN" -w secret \
260 >> $TESTOUT 2>&1 << EOF
261 dn: cn=Cartoonia,ou=Groups,$BASEDN
267 echo "Re-search the entire database..."
268 echo "# Re-search the entire database after renaming Cartoonia..." >> $SEARCHOUT
269 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
270 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
272 if test $RC != 0 ; then
273 echo "ldapsearch failed ($RC)!"
274 test $KILLSERVERS != no && kill -HUP $KILLPIDS
278 echo "Running ldapmodify to add self..."
279 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
280 -D "cn=Manager,$BASEDN" -w secret \
281 >> $TESTOUT 2>&1 << EOF
282 dn: cn=Toon Town,ou=Groups,$BASEDN
285 member: cn=Toon Town,ou=Groups,$BASEDN
288 echo "Re-search the entire database..."
289 echo "# Re-search the entire database after adding Toon Town to self..." >> $SEARCHOUT
290 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
291 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
293 if test $RC != 0 ; then
294 echo "ldapsearch failed ($RC)!"
295 test $KILLSERVERS != no && kill -HUP $KILLPIDS
299 echo "Running ldapdelete to remove a member..."
300 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
301 -D "cn=Manager,$BASEDN" -w secret \
302 >> $TESTOUT 2>&1 << EOF
303 dn: cn=Baby Herman Jr,ou=People,$BASEDN
307 echo "Re-search the entire database..."
308 echo "# Re-search the entire database after deleting Baby Herman..." >> $SEARCHOUT
309 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
310 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
312 if test $RC != 0 ; then
313 echo "ldapsearch failed ($RC)!"
314 test $KILLSERVERS != no && kill -HUP $KILLPIDS
318 echo "Running ldapdelete to remove a group..."
319 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
320 -D "cn=Manager,$BASEDN" -w secret \
321 >> $TESTOUT 2>&1 << EOF
322 dn: cn=Toon Town,ou=Groups,$BASEDN
326 echo "Re-search the entire database..."
327 echo "# Re-search the entire database after deleting Toon Town..." >> $SEARCHOUT
328 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
329 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
331 if test $RC != 0 ; then
332 echo "ldapsearch failed ($RC)!"
333 test $KILLSERVERS != no && kill -HUP $KILLPIDS
337 echo "Adding groups with MAY member type schemas..."
338 $LDAPMODIFY -h $LOCALHOST -p $PORT1 \
339 -D "cn=Manager,$BASEDN" -w secret \
340 >> $TESTOUT 2>&1 <<EOF
341 dn: cn=Roger Rabbit,ou=People,$BASEDN
344 dn: cn=Jessica Rabbit,ou=People,$BASEDN
347 dn: cn=person1,ou=People,$BASEDN
350 objectClass: groupMemberA
351 objectClass: groupMemberB
355 dn: cn=person2,ou=People,$BASEDN
358 objectClass: groupMemberA
359 objectClass: groupMemberB
363 dn: cn=group1,ou=Groups,$BASEDN
367 memberA: cn=person1,ou=People,$BASEDN
368 memberA: cn=person2,ou=People,$BASEDN
370 dn: cn=group2,ou=Groups,$BASEDN
374 memberB: cn=person1,ou=People,$BASEDN
375 memberB: cn=person2,ou=People,$BASEDN
377 dn: cn=group1,ou=Groups,$BASEDN
383 echo "Re-search the entire database..."
384 echo "# Re-search the entire database after adding groups with MAY member type schemas..." >> $SEARCHOUT
385 $LDAPSEARCH -S "" -b "$BASEDN" -h $LOCALHOST -p $PORT1 \
386 '(objectClass=*)' '*' memberOf >> $SEARCHOUT 2>&1
388 if test $RC != 0 ; then
389 echo "ldapsearch failed ($RC)!"
390 test $KILLSERVERS != no && kill -HUP $KILLPIDS
394 test $KILLSERVERS != no && kill -HUP $KILLPIDS
398 echo "Filtering ldapsearch results..."
399 $LDIFFILTER < $SEARCHOUT > $SEARCHFLT
400 echo "Filtering original ldif used to create database..."
401 $LDIFFILTER < $LDIF > $LDIFFLT
402 echo "Comparing filter output..."
403 $CMP $SEARCHFLT $LDIFFLT > $CMPOUT
405 if test $? != 0 ; then
406 echo "Comparison failed"
410 echo ">>>>> Test succeeded"
412 test $KILLSERVERS != no && wait