X-Git-Url: https://git.argeo.org/?a=blobdiff_plain;f=org.argeo.util%2Fsrc%2Forg%2Fargeo%2Futil%2Fdirectory%2Fldap%2FAbstractLdapDirectory.java;h=54d9776b5fd15106bf6de8b560ef81f863f1d470;hb=15f93a026914b55e52f147e6aa53392434652522;hp=36047d53e7e8786751fb0547fb1247346ab07e47;hpb=f3ea14abccc33b1c3326417a87c91145be776c72;p=lgpl%2Fargeo-commons.git

diff --git a/org.argeo.util/src/org/argeo/util/directory/ldap/AbstractLdapDirectory.java b/org.argeo.util/src/org/argeo/util/directory/ldap/AbstractLdapDirectory.java
index 36047d53e..54d9776b5 100644
--- a/org.argeo.util/src/org/argeo/util/directory/ldap/AbstractLdapDirectory.java
+++ b/org.argeo.util/src/org/argeo/util/directory/ldap/AbstractLdapDirectory.java
@@ -34,6 +34,7 @@ import org.argeo.util.transaction.WorkControl;
 import org.argeo.util.transaction.WorkingCopyXaResource;
 import org.argeo.util.transaction.XAResourceProvider;
 
+/** A {@link Directory} based either on LDAP or LDIF. */
 public abstract class AbstractLdapDirectory implements Directory, XAResourceProvider {
 	protected static final String SHARED_STATE_USERNAME = "javax.security.auth.login.name";
 	protected static final String SHARED_STATE_PASSWORD = "javax.security.auth.login.password";
@@ -146,23 +147,7 @@ public abstract class AbstractLdapDirectory implements Directory, XAResourceProv
 	}
 
 	/*
-	 * ABSTRACT METHODS
-	 */
-
-//	public abstract HierarchyUnit doGetHierarchyUnit(LdapName dn);
-//
-//	public abstract Iterable<HierarchyUnit> doGetDirectHierarchyUnits(LdapName searchBase, boolean functionalOnly);
-//
-//	protected abstract Boolean daoHasEntry(LdapName dn);
-//
-//	protected abstract LdapEntry daoGetEntry(LdapName key) throws NameNotFoundException;
-//
-//	protected abstract List<LdapEntry> doGetEntries(LdapName searchBase, Filter f, boolean deep);
-//
-//	/** Returns the groups this user is a direct member of. */
-//	protected abstract List<LdapName> getDirectGroups(LdapName dn);
-	/*
-	 * INITIALIZATION
+	 * INITIALISATION
 	 */
 
 	public void init() {
@@ -176,9 +161,9 @@ public abstract class AbstractLdapDirectory implements Directory, XAResourceProv
 	/*
 	 * CREATION
 	 */
-	protected abstract LdapEntry newUser(LdapName name, Attributes attrs);
+	protected abstract LdapEntry newUser(LdapName name);
 
-	protected abstract LdapEntry newGroup(LdapName name, Attributes attrs);
+	protected abstract LdapEntry newGroup(LdapName name);
 
 	/*
 	 * EDITION
@@ -270,11 +255,11 @@ public abstract class AbstractLdapDirectory implements Directory, XAResourceProv
 					} else {
 						// user doesn't have the right to retrieve role, but we know it exists
 						// otherwise memberOf would not work
-						Attributes a = new BasicAttributes();
-						a.put(LdapNameUtils.getLastRdn(groupDn).getType(),
-								LdapNameUtils.getLastRdn(groupDn).getValue());
-						a.put(LdapAttrs.objectClass.name(), LdapObjs.groupOfNames.name());
-						group = newGroup(groupDn, a);
+//						Attributes a = new BasicAttributes();
+//						a.put(LdapNameUtils.getLastRdn(groupDn).getType(),
+//								LdapNameUtils.getLastRdn(groupDn).getValue());
+//						a.put(LdapAttrs.objectClass.name(), LdapObjs.groupOfNames.name());
+						group = newGroup(groupDn);
 						allRoles.add(group);
 					}
 				}
@@ -282,10 +267,13 @@ public abstract class AbstractLdapDirectory implements Directory, XAResourceProv
 				throw new IllegalStateException("Cannot get memberOf groups for " + user, e);
 			}
 		} else {
-			for (LdapName groupDn : getDirectoryDao().getDirectGroups(user.getDn())) {
-				// TODO check for loops
+			directGroups: for (LdapName groupDn : getDirectoryDao().getDirectGroups(user.getDn())) {
 				LdapEntry group = doGetRole(groupDn);
 				if (group != null) {
+					if (allRoles.contains(group)) {
+						// important in order to avoi loops
+						continue directGroups;
+					}
 					allRoles.add(group);
 					collectGroups(group, allRoles);
 				}
@@ -327,12 +315,31 @@ public abstract class AbstractLdapDirectory implements Directory, XAResourceProv
 		return this;
 	}
 
+	@Override
+	public HierarchyUnit createHierarchyUnit(String path) {
+		checkEdit();
+		LdapEntryWorkingCopy wc = getWorkingCopy();
+		LdapName dn = pathToName(path);
+		if ((getDirectoryDao().entryExists(dn) && !wc.getDeletedData().containsKey(dn))
+				|| wc.getNewData().containsKey(dn))
+			throw new IllegalArgumentException("Already a hierarchy unit " + path);
+		BasicAttributes attrs = new BasicAttributes(true);
+		attrs.put(LdapAttrs.objectClass.name(), LdapObjs.organizationalUnit.name());
+		Rdn nameRdn = dn.getRdn(dn.size() - 1);
+		// TODO deal with multiple attr RDN
+		attrs.put(nameRdn.getType(), nameRdn.getValue());
+		wc.getModifiedData().put(dn, attrs);
+		LdapHierarchyUnit newHierarchyUnit = new LdapHierarchyUnit(this, dn);
+		wc.getNewData().put(dn, newHierarchyUnit);
+		return newHierarchyUnit;
+	}
+
 	/*
 	 * PATHS
 	 */
 
 	@Override
-	public String getContext() {
+	public String getBase() {
 		return getBaseDn().toString();
 	}