1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
|
// Copyright (c) 2019-2025 Tobias Junghans <tobydox@veyon.io>
// This file is part of Veyon - https://veyon.io
// SPDX-License-Identifier: LGPL-2.0-or-later
#pragma once
#include <QObject>
#include <QUrl>
#include "LdapCommon.h"
#if QT_VERSION < QT_VERSION_CHECK(5, 14, 0)
namespace KLDAP {
class LdapConnection;
class LdapOperation;
class LdapServer;
}
namespace KLDAPCore = KLDAP;
#else
namespace KLDAPCore {
class LdapConnection;
class LdapOperation;
class LdapServer;
}
#endif
class LdapConfiguration;
class LDAP_COMMON_EXPORT LdapClient : public QObject
{
Q_OBJECT
public:
enum class Scope {
Base,
One,
Sub
};
Q_ENUM(Scope)
enum ConnectionSecurity
{
ConnectionSecurityNone,
ConnectionSecurityTLS,
ConnectionSecuritySSL,
ConnectionSecurityCount,
};
Q_ENUM(ConnectionSecurity)
enum TLSVerifyMode
{
TLSVerifyDefault,
TLSVerifyNever,
TLSVerifyCustomCert,
TLSVerifyModeCount
};
Q_ENUM(TLSVerifyMode)
using Objects = QMap<QString, QMap<QString, QStringList> >;
explicit LdapClient( const LdapConfiguration& configuration, const QUrl& url = QUrl(), QObject* parent = nullptr );
~LdapClient() override;
const LdapConfiguration& configuration() const
{
return m_configuration;
}
bool isConnected() const
{
return m_state >= Connected;
}
bool isBound() const
{
return m_state >= Bound;
}
QString errorString() const;
QString errorDescription() const;
Objects queryObjects( const QString& dn, const QStringList& attributes, const QString& filter, Scope scope );
QStringList queryAttributeValues( const QString &dn, const QString &attribute,
const QString& filter = QStringLiteral( "(objectclass=*)" ),
Scope scope = Scope::Base );
QStringList queryDistinguishedNames( const QString& dn, const QString& filter, Scope scope );
QStringList queryObjectAttributes( const QString& dn );
QStringList queryBaseDn();
QStringList queryNamingContexts( const QString& attribute = {} );
QString baseDn();
static QString parentDn( const QString& dn );
static QString stripBaseDn( const QString& dn, const QString& baseDn );
static QString addBaseDn( const QString& rdns, const QString& baseDn );
static QStringList stripBaseDn( const QStringList& dns, const QString& baseDn );
static QString constructSubDn( const QString& subtree, const QString& baseDn );
static QString constructQueryFilter( const QString& filterAttribute,
const QString& filterValue,
const QString& extraFilter = {} );
static QString escapeFilterValue( const QString& filterValue );
static QStringList toRDNs( const QString& dn );
static QString cn()
{
return QStringLiteral("cn");
}
static constexpr int DefaultQueryTimeout = 3000;
private:
static constexpr auto LdapLibraryDebugAny = -1;
bool reconnect();
bool connectAndBind( const QUrl& url );
void initTLS();
const LdapConfiguration& m_configuration;
KLDAPCore::LdapServer* m_server;
KLDAPCore::LdapConnection* m_connection;
KLDAPCore::LdapOperation* m_operation;
enum State
{
Disconnected,
Connected,
Bound,
StateCount
} ;
State m_state = Disconnected;
bool m_queryRetry = false;
QString m_baseDn;
QString m_namingContextAttribute;
const int m_queryTimeout{DefaultQueryTimeout};
};
|
