Package org.platformlayer.service.openldap.ops

Source Code of org.platformlayer.service.openldap.ops.LdapDomainController

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
package org.platformlayer.service.openldap.ops;

import java.io.File;
import java.io.IOException;

import javax.inject.Inject;

import org.platformlayer.ops.CustomRecursor;
import org.platformlayer.ops.Handler;
import org.platformlayer.ops.Injection;
import org.platformlayer.ops.OpsContext;
import org.platformlayer.ops.OpsException;
import org.platformlayer.ops.filesystem.ManagedDirectory;
import org.platformlayer.ops.filesystem.ManagedFilesystemItem;
import org.platformlayer.ops.helpers.ServiceContext;
import org.platformlayer.ops.ldap.LdapAttributes;
import org.platformlayer.ops.ldap.LdapDN;
import org.platformlayer.ops.ldap.LdapDN.LdapDNComponent;
import org.platformlayer.ops.ldap.LdapPasswords;
import org.platformlayer.ops.ldap.LdapServerUtilities;
import org.platformlayer.ops.tree.OpsTreeBase;
import org.platformlayer.service.openldap.model.LdapDomain;
import org.platformlayer.service.openldap.model.LdapService;
import org.platformlayer.service.openldap.ops.ldap.HdbDatabaseEntry;
import org.platformlayer.service.openldap.ops.ldap.OrganizationLdapEntry;
import org.platformlayer.service.openldap.ops.ldap.OrganizationalRoleLdapEntry;
import org.platformlayer.service.openldap.ops.ldap.OrganizationalUnitLdapEntry;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

public class LdapDomainController extends OpsTreeBase implements CustomRecursor {

  private static final Logger log = LoggerFactory.getLogger(LdapDomainController.class);

  @Inject
  ServiceContext service;

  @Handler
  public void doOperation(LdapDomain ldapDomain) throws OpsException, IOException {
  }

  @Override
  protected void addChildren() throws OpsException {
    LdapDomain ldapDomain = OpsContext.get().getInstance(LdapDomain.class);
    String hostName = ldapDomain.organizationName;

    LdapDN ldapBase = LdapServerUtilities.createBaseDN(hostName);

    File dataRoot = new File("/var/ldap/data");
    File dataDir = new File(dataRoot, hostName);

    String ldapBaseOrganization = hostName;

    ManagedFilesystemItem directory = ManagedDirectory.build(dataDir, "0700").setGroup("openldap")
        .setOwner("openldap");
    addChild(directory);

    HdbDatabaseEntry db = buildDatabase(ldapBase, dataDir, hostName);
    addChild(db);

    OrganizationLdapEntry organization = buildOrganization(ldapBase, ldapBaseOrganization);
    organization.setTop(true);
    addChild(organization);

    String ldapAdminPassword = LdapPasswords.getLdapPasswordEncoded(ldapDomain.adminPassword.plaintext());

    OrganizationalRoleLdapEntry organizationalRole = buildOrganizationalRole(ldapBase, LdapAttributes.MANAGER_CN,
        "LDAP Administrator", ldapAdminPassword);
    addChild(organizationalRole);

    OrganizationalUnitLdapEntry users = buildOrganizationUnit(ldapBase, LdapAttributes.LDAP_USERS_CONTAINER_OU,
        "Users");
    addChild(users);

    OrganizationalUnitLdapEntry groups = buildOrganizationUnit(ldapBase, LdapAttributes.LDAP_GROUPS_CONTAINER_OU,
        "Groups");
    addChild(groups);
  }

  private HdbDatabaseEntry buildDatabase(LdapDN ldapBase, File dataDir, String dbName) {
    HdbDatabaseEntry database = Injection.getInstance(HdbDatabaseEntry.class);

    database.setLdapDN(new LdapDN(LdapAttributes.LDAP_ATTRIBUTE_CN, "config").childDN("olcDatabase", "hdb"));
    database.setLdapRoot(ldapBase);
    database.setDataDirectory(dataDir);
    database.setDbName(dbName);

    database.setOnlyConfigureOnForce(true);

    return database;
  }

  private OrganizationalUnitLdapEntry buildOrganizationUnit(LdapDN ldapBase, String ou, String description) {
    OrganizationalUnitLdapEntry entry = OrganizationalUnitLdapEntry.build(ou, ldapBase);
    entry.setDescription(description);
    entry.setOnlyConfigureOnForce(true);

    return entry;
  }

  private OrganizationalRoleLdapEntry buildOrganizationalRole(LdapDN ldapBase, String cn, String description,
      String userPassword) {
    OrganizationalRoleLdapEntry entry = OrganizationalRoleLdapEntry.build(cn, ldapBase);
    entry.setDescription(description);
    entry.setUserPasssword(userPassword);
    entry.setOnlyConfigureOnForce(true);

    return entry;
  }

  private OrganizationLdapEntry buildOrganization(LdapDN ldapBase, String o) {
    LdapDNComponent head = ldapBase.getHead();
    if (!head.attributeName.equals("dc")) {
      throw new IllegalStateException("Unexpected DN: " + ldapBase);
    }

    String dc = head.value;

    OrganizationLdapEntry entry = OrganizationLdapEntry.build(o, dc, ldapBase);
    entry.setOnlyConfigureOnForce(true);

    return entry;
  }

  @Override
  public void doRecurseOperation() throws OpsException {
    RecurseOverAll recursor = Injection.getInstance(RecurseOverAll.class);

    recursor.doRecursion(this, service.getSshKey(), LdapService.class);
  }

}
TOP

Related Classes of org.platformlayer.service.openldap.ops.LdapDomainController

  • org.platformlayer.ops.filesystem.ManagedFilesystemItem
  • org.platformlayer.ops.ldap.LdapDN
  • org.platformlayer.ops.ldap.LdapDN.LdapDNComponent
  • org.platformlayer.service.openldap.model.LdapDomain
  • org.platformlayer.service.openldap.ops.ldap.HdbDatabaseEntry
  • org.platformlayer.service.openldap.ops.ldap.OrganizationalRoleLdapEntry
  • org.platformlayer.service.openldap.ops.ldap.OrganizationalUnitLdapEntry
  • org.platformlayer.service.openldap.ops.ldap.OrganizationLdapEntry
  • java.io.File
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.