1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
|
#!/usr/bin/env python
#
# simple LDAP server browsing example
#
from __future__ import print_function
import ldap
from traceback import print_exc
url = "ldap://ldap.openldap.org/"
dn = "dc=openldap,dc=org"
print("Connecting to", url)
l = ldap.initialize(url)
l.bind_s("", "", ldap.AUTH_SIMPLE);
lastdn = dn
dnlist = None
while 1:
#-- read a command
try:
cmd = raw_input(dn + "> ")
except EOFError:
print
break
try:
if cmd == "?":
print( "cd <dn> - change DN to <dn>")
print( "cd <n> - change DN to number <n> of last 'ls'")
print( "cd - - change to previous DN")
print( "cd .. - change to one-level higher DN")
print( "cd - change to root DN")
print( "ls - list children of crrent DN")
print( ". - show attributes of current DN")
print( "/<expr> - list descendents matching filter <expr>")
print( "? - show this help")
elif cmd == "ls":
print("Children of", `dn`, ":")
dnlist = []
#
# List the children at one level down from the current dn
# We use the filter 'objectclass=*' to match everything.
# We're not interested in attributes at this stage, so
# we specify [] as the list of attribute names to retreive.
#
for name,attrs in l.search_s(dn, ldap.SCOPE_ONELEVEL,
"objectclass=*", []):
#-- shorten resulting dns for output brevity
if name.startswith(dn+", "):
shortname = "+ "+name[len(dn)+2:]
elif name.endswith(", "+dn):
shortname = name[:-len(dn)-2]+" +"
else:
shortname = name
print(" %3d. %s" % (len(dnlist), shortname))
dnlist.append(name)
elif cmd == "cd":
dn = ""
dnlist = None
elif cmd.startswith("cd "):
arg = cmd[3:]
if arg == '-':
lastdn,dn = dn,lastdn
elif arg == '..':
dn = ldap.explode_dn(dn)[1:].join(",")
dn = dn.strip()
else:
try:
i = int(arg)
except:
godn = arg
else:
if dnlist is None:
print("do an ls first")
else:
godn = dnlist[i]
lastdn = dn
dn = godn
elif cmd == ".":
#
# Retrieve all the attributes for the current dn.
# We construct a search using SCOPE_BASE (ie just the
# given DN) and again filter with "objectclass=*".
# No attributes are listed, so the default is for
# the client to receive all attributes on the DN.
#
print("Attributes of", `dn`, ":")
for name,attrs in l.search_s(dn, ldap.SCOPE_BASE,
"objectclass=*"):
print(" %-24s" % name)
for k,vals in attrs.items():
for v in vals:
if len(v) > 200:
v = `v[:200]` + \
("... (%d bytes)" % len(v))
else:
v = `v`
print(" %-12s: %s" % (k, v))
elif cmd.startswith("/"):
#
# Search descendent objects to match a given filter.
# We use SCOPE_SUBTREE to indicate descendents, and
# again specify an empty attribute list to indicate
# that we're not interested in them.
#
expr = cmd[1:]
print("Descendents matching filter", `expr`, ":")
for name,attrs in l.search_s(dn, ldap.SCOPE_SUBTREE,
expr, []):
print(" %24s", name)
else:
print("unknown command - try '?' for help")
except:
print_exc()
|
