Modify password code such that backend end routine calls into

[openldap] / clients / tools / ldapdelete.c
diff --git a/clients/tools/ldapdelete.c b/clients/tools/ldapdelete.c

index 815d10e583e4916d87f9e93eb5bb0a226534eb41..6351df28c86bd6ba7d34b599de194c88ab8990f6 100644 (file)
--- a/clients/tools/ldapdelete.c
+++ b/clients/tools/ldapdelete.c
@@ -1,4 +1,9 @@
  /* ldapdelete.c - simple program to delete an entry using LDAP */
+/* $OpenLDAP$ */
+/*
+ * Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
+ * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
+ */
  
  #include "portable.h"
  
@@ -16,9 +21,9 @@
  
  static char    *binddn = NULL;
  static char    *passwd = NULL;
-static char    *base = NULL;
  static char    *ldaphost = NULL;
  static int     ldapport = 0;
+static int  prune = 0;
  static int     not, verbose, contoper;
  static LDAP    *ld;
  
@@ -26,20 +31,23 @@ static int dodelete LDAP_P((
      LDAP       *ld,
      char       *dn));
  
+static int deletechildren LDAP_P(( LDAP *ld,
+                                   char *dn ));
+
  int
  main( int argc, char **argv )
  {
-       char            *usage = "usage: %s [-n] [-v] [-k] [-W] [-d debug-level] [-f file] [-h ldaphost] [-P version] [-p ldapport] [-D binddn] [-w passwd] [dn]...\n";
+       char            *usage = "usage: %s [-n] [-v] [-k] [-W] [-M[M]] [-r] [-d debug-level] [-f file] [-h ldaphost] [-P version] [-p ldapport] [-D binddn] [-w passwd] [dn]...\n";
      char               buf[ 4096 ];
      FILE               *fp;
-       int             i, rc, authmethod, want_bindpw, version, debug;
+       int             i, rc, authmethod, want_bindpw, version, debug, manageDSAit;
  
-    not = verbose = contoper = want_bindpw = debug = 0;
+    not = verbose = contoper = want_bindpw = debug = manageDSAit = 0;
      fp = NULL;
      authmethod = LDAP_AUTH_SIMPLE;
         version = -1;
  
-    while (( i = getopt( argc, argv, "WnvkKch:P:p:D:w:d:f:" )) != EOF ) {
+    while (( i = getopt( argc, argv, "WMnvkKcrh:P:p:D:w:d:f:" )) != EOF ) {
         switch( i ) {
         case 'k':       /* kerberos bind */
  #ifdef HAVE_KERBEROS
@@ -73,15 +81,15 @@ main( int argc, char **argv )
                 {
                         char* p;
  
-                       for( p = optarg; *p == NULL; p++ ) {
-                               *p = 'X';
+                       for( p = optarg; *p == '\0'; p++ ) {
+                               *p = '*';
                         }
                 }
             break;
         case 'f':       /* read DNs from a file */
             if (( fp = fopen( optarg, "r" )) == NULL ) {
                 perror( optarg );
-               exit( 1 );
+               exit( EXIT_FAILURE );
             }
             break;
         case 'd':
@@ -93,9 +101,16 @@ main( int argc, char **argv )
         case 'n':       /* print deletes, don't actually do them */
             ++not;
             break;
+       case 'r':
+               prune = 1;
+               break;
         case 'v':       /* verbose mode */
             verbose++;
             break;
+       case 'M':
+               /* enable Manage DSA IT */
+               manageDSAit++;
+               break;
         case 'W':
                 want_bindpw++;
                 break;
@@ -150,6 +165,9 @@ main( int argc, char **argv )
                 ldap_set_option( ld, LDAP_OPT_DEREF, &deref );
         }
  
+       /* don't chase referrals */
+       ldap_set_option( ld, LDAP_OPT_REFERRALS, LDAP_OPT_OFF );
+
         if (want_bindpw)
                 passwd = getpass("Enter LDAP Password: ");
  
@@ -164,12 +182,34 @@ main( int argc, char **argv )
         return( EXIT_FAILURE );
      }
  
+       if ( manageDSAit ) {
+               int err;
+               LDAPControl c;
+               LDAPControl *ctrls[2];
+               ctrls[0] = &c;
+               ctrls[1] = NULL;
+
+               c.ldctl_oid = LDAP_CONTROL_MANAGEDSAIT;
+               c.ldctl_value.bv_val = NULL;
+               c.ldctl_value.bv_len = 0;
+               c.ldctl_iscritical = manageDSAit > 1;
+
+               err = ldap_set_option( ld, LDAP_OPT_SERVER_CONTROLS, &ctrls );
+
+               if( err != LDAP_OPT_SUCCESS ) {
+                       fprintf( stderr, "Could not set Manage DSA IT Control\n" );
+                       if( c.ldctl_iscritical ) {
+                               exit( EXIT_FAILURE );
+                       }
+               }
+       }
+
+       rc = 0;
      if ( fp == NULL ) {
         for ( ; optind < argc; ++optind ) {
             rc = dodelete( ld, argv[ optind ] );
         }
      } else {
-       rc = 0;
         while ((rc == 0 || contoper) && fgets(buf, sizeof(buf), fp) != NULL) {
             buf[ strlen( buf ) - 1 ] = '\0';    /* remove trailing newline */
             if ( *buf != '\0' ) {
@@ -197,8 +237,12 @@ static int dodelete(
      if ( not ) {
         rc = LDAP_SUCCESS;
      } else {
-       if (( rc = ldap_delete_s( ld, dn )) != LDAP_SUCCESS ) {
-           ldap_perror( ld, "ldap_delete" );
+               /* If prune is on, remove a whole subtree.  Delete the children of the
+                * DN recursively, then the DN requested.
+                */
+               if ( prune ) deletechildren( ld, dn );
+               if (( rc = ldap_delete_s( ld, dn )) != LDAP_SUCCESS ) {
+                       ldap_perror( ld, "ldap_delete" );
         } else if ( verbose ) {
             printf( "\tremoved\n" );
         }
@@ -206,3 +250,59 @@ static int dodelete(
  
      return( rc );
  }
+
+/*
+ * Delete all the children of an entry recursively until leaf nodes are reached.
+ *
+ */
+static int deletechildren( LDAP *ld,
+                           char *dn )
+{
+    LDAPMessage *res, *e;
+    int entries;
+    int rc;
+       int timeout = 30 * 10000;
+
+    ldap_set_option( ld, LDAP_OPT_TIMEOUT, &timeout );
+    if ( verbose ) printf ( "deleting children of: %s\n", dn );
+    /*
+     * Do a one level search at dn for children.  For each, delete its children.
+     */
+    if ( ldap_search_s( ld, dn, LDAP_SCOPE_ONELEVEL, "objectclass=*", NULL, 0, &res ) == -1 )
+    {
+        ldap_perror( ld, "ldap_search" );
+               ldap_get_option( ld, LDAP_OPT_ERROR_NUMBER, &rc );
+        return( rc );
+    }
+
+    entries = ldap_count_entries( ld, res );
+    if ( entries > 0 )
+    {
+        int i;
+
+        for (e = ldap_first_entry( ld, res ), i = 0; e != NULL;
+             e = ldap_next_entry( ld, e ), i++ )
+        {
+            if ( (rc = deletechildren( ld, ldap_get_dn( ld, e) )) == -1 )
+            {
+                ldap_perror( ld, "ldap_prune" );
+                return rc;
+            }
+            if ( verbose )
+            {
+                printf( "\tremoving %s\n", ldap_get_dn( ld, e ) );
+            }
+            if ( rc = ldap_delete_s( ld, ldap_get_dn( ld, e ) ) == -1 )
+            {
+                ldap_perror( ld, "ldap_delete" );
+                return rc;
+            }
+            else if ( verbose )
+            {
+                printf( "\t%s removed\n", ldap_get_dn( ld, e ) );
+            }
+        }
+    }
+    ldap_msgfree( res );
+    return rc;
+}