org.connid.bundles.ldap.schema.LdapSchemaBuilder Maven / Gradle / Ivy
The newest version!
/**
* ====================
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright 2008-2009 Sun Microsystems, Inc. All rights reserved.
* Copyright 2011-2013 Tirasa. All rights reserved.
*
* The contents of this file are subject to the terms of the Common Development
* and Distribution License("CDDL") (the "License"). You may not use this file
* except in compliance with the License.
*
* You can obtain a copy of the License at https://oss.oracle.com/licenses/CDDL
* See the License for the specific language governing permissions and limitations
* under the License.
*
* When distributing the Covered Code, include this CDDL Header Notice in each file
* and include the License file at https://oss.oracle.com/licenses/CDDL.
* If applicable, add the following below this CDDL Header, with the fields
* enclosed by brackets [] replaced by your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
* ====================
*/
package org.connid.bundles.ldap.schema;
import java.util.Collection;
import java.util.EnumSet;
import java.util.HashSet;
import java.util.Set;
import org.identityconnectors.common.logging.Log;
import org.identityconnectors.framework.common.objects.AttributeInfo;
import org.identityconnectors.framework.common.objects.ObjectClass;
import org.identityconnectors.framework.common.objects.ObjectClassInfo;
import org.identityconnectors.framework.common.objects.ObjectClassInfoBuilder;
import org.identityconnectors.framework.common.objects.Schema;
import org.identityconnectors.framework.common.objects.SchemaBuilder;
import org.identityconnectors.framework.common.objects.AttributeInfo.Flags;
import org.identityconnectors.framework.spi.operations.AuthenticateOp;
import org.identityconnectors.framework.spi.operations.SyncOp;
import org.connid.bundles.ldap.commons.LdapAttributeType;
import org.connid.bundles.ldap.LdapConnection;
import org.connid.bundles.ldap.LdapConnector;
import org.connid.bundles.ldap.commons.LdapNativeSchema;
import org.connid.bundles.ldap.commons.ObjectClassMappingConfig;
import org.connid.bundles.ldap.LdapConnection.ServerType;
class LdapSchemaBuilder {
private static final Log log = Log.getLog(LdapSchemaBuilder.class);
private final LdapConnection conn;
private final LdapNativeSchema nativeSchema;
private Schema schema;
public LdapSchemaBuilder(LdapConnection conn) {
this.conn = conn;
this.nativeSchema = conn.createNativeSchema();
}
public Schema getSchema() {
if (schema == null) {
buildSchema();
}
return schema;
}
private void buildSchema() {
SchemaBuilder schemaBld = new SchemaBuilder(LdapConnector.class);
for (ObjectClassMappingConfig oclassConfig : conn.getConfiguration().getObjectClassMappingConfigs().values()) {
ObjectClass oclass = oclassConfig.getObjectClass();
ObjectClassInfoBuilder objClassBld = new ObjectClassInfoBuilder();
objClassBld.setType(oclass.getObjectClassValue());
objClassBld.setContainer(oclassConfig.isContainer());
objClassBld.addAllAttributeInfo(createAttributeInfos(oclassConfig.getLdapClasses()));
objClassBld.addAllAttributeInfo(oclassConfig.getOperationalAttributes());
ObjectClassInfo oci = objClassBld.build();
schemaBld.defineObjectClass(oci);
// XXX hack: these decisions should be made outside of LdapSchemaBuilder.
if (!oci.is(ObjectClass.ACCOUNT_NAME)) {
schemaBld.removeSupportedObjectClass(AuthenticateOp.class, oci);
}
// Since we are not sure we can detect Sun DSEE correctly, only disable sync() for servers known not to support it.
if (conn.getServerType() == ServerType.OPENDS) {
schemaBld.removeSupportedObjectClass(SyncOp.class, oci);
}
}
for (String ldapClass : nativeSchema.getStructuralObjectClasses()) {
ObjectClassInfoBuilder objClassBld = new ObjectClassInfoBuilder();
objClassBld.setType(ldapClass);
objClassBld.setContainer(true); // Any LDAP object class can contain sub-entries.
objClassBld.addAllAttributeInfo(createAttributeInfos(nativeSchema.getEffectiveObjectClasses(ldapClass)));
ObjectClassInfo oci = objClassBld.build();
schemaBld.defineObjectClass(oci);
schemaBld.removeSupportedObjectClass(AuthenticateOp.class, oci);
// Since we are not sure we can detect Sun DSEE correctly, only disable sync() for servers known not to support it.
if (conn.getServerType() == ServerType.OPENDS) {
schemaBld.removeSupportedObjectClass(SyncOp.class, oci);
}
}
schema = schemaBld.build();
}
private Set createAttributeInfos(Collection ldapClasses) {
Set result = new HashSet();
Set requiredAttrs = getRequiredAttributes(ldapClasses);
Set optionalAttrs = getOptionalAttributes(ldapClasses);
// OpenLDAP's ipProtocol has MUST ( ... $ description ) MAY ( description )
optionalAttrs.removeAll(requiredAttrs);
addAttributeInfos(ldapClasses, requiredAttrs, EnumSet.of(Flags.REQUIRED), null, result);
addAttributeInfos(ldapClasses, optionalAttrs, null, null, result);
return result;
}
private Set getRequiredAttributes(Collection ldapClasses) {
Set result = new HashSet();
for (String ldapClass : ldapClasses) {
result.addAll(nativeSchema.getRequiredAttributes(ldapClass));
}
return result;
}
private Set getOptionalAttributes(Collection ldapClasses) {
Set result = new HashSet();
for (String ldapClass : ldapClasses) {
result.addAll(nativeSchema.getOptionalAttributes(ldapClass));
}
return result;
}
private void addAttributeInfos(Collection ldapClasses, Set attrs, Set add, Set remove, Set toSet) {
for (String attr : attrs) {
addAttributeInfo(ldapClasses, attr, attr, add, remove, toSet);
}
}
private void addAttributeInfo(Collection ldapClasses, String ldapAttrName, String realName, Set add, Set remove, Set toSet) {
LdapAttributeType attrDesc = nativeSchema.getAttributeDescription(ldapAttrName);
if (attrDesc != null) {
toSet.add(attrDesc.createAttributeInfo(realName, add, remove));
} else {
log.warn("Could not find attribute {0} in object classes {1}", ldapAttrName, ldapClasses);
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy