this class provides the LDAP interface to Qorus's RBAC infrastructure
More...
Inherits AbstractRbacProvider.
|
|
| constructor (*hash< auto > opt, *code log) |
| | creates the objects from options and an optional logging closure
|
| |
| hash< auto > | addUser (string user, *list< auto > role_cmds, string pass, string name) |
| | creates a new user; currently unimplemented
|
| |
|
*hash< auto > | passwd (string user, *hash< auto > auth, softstring old_pwd, softstring new_pwd) |
| | changes the given user's password in the LDAP server
|
| |
| *hash< auto > | updateUser (string user, *list< auto > role_cmds, *list< auto > storage_cmds, *softstring pass, *string name) |
| | updates the user definition in the LDAP server; currently none of the possibile changes are supported
|
| |
| hash< auto > | deleteUser (string user) |
| | deletes an existing user in the LDAP store; currently unimplemented
|
| |
|
string | getName () |
| | returns the name of the object ("ldap")
|
| |
|
bool | intrinsic () |
| | return False since this object is not built-in to Qorus
|
| |
|
bool | hasStorage () |
| | returns False since user storage key-value pairs are not stored in the LDAP server
|
| |
|
*hash< auto > | loadUserWithoutPassword (string user) |
| | loads a user without a password
|
| |
|
*hash< auto > | loadUser (string user, string pass) |
| | reads in a user from the LDAP DB
|
| |
|
bool | authenticateUser (string user, *hash auth, string pass, reference< auto > rh) |
| | authenticates a user
|
| |
| *list< auto > | listUsers () |
| | lists all users; currently not implemented
|
| |
|
*hash< auto > | getUser (string user) |
| | loads the given user and returns a hash describing the user
|
| |
|
|
const | RoleAttr = "qorususerrole" |
| | default qorus user role attribute
|
| |
|
const | Defaults |
| | default options
|
| |
|
|
string | uri |
| | ldap server URI
|
| |
|
string | base |
| | search base
|
| |
|
*string | ubase |
| | user base
|
| |
|
string | uentry |
| | user entry
|
| |
|
*code | logfunc |
| | log closure/call ref
|
| |
|
string | name |
| | unique name of object
|
| |
|
string | roleattr = RoleAttr |
| | qorus user role attribute
|
| |
|
*string | binddn |
| | LDAP bind dn.
|
| |
|
*string | bindpassword |
| | LDAP bind password.
|
| |
|
list< string > | attr = ("cn",) |
| | list of attributes to retrieve
|
| |
|
*string | roleregex |
| | role extraction regex
|
| |
|
bool | directusername = False |
| | if True then the username is bound without any further processing
|
| |
|
*string | directbindprefix |
| | a prefix to prepend with directusername
|
| |
this class provides the LDAP interface to Qorus's RBAC infrastructure
◆ addUser()
| hash< auto > QorusLdapAuth::LdapRbacProvider::addUser |
( |
string |
user, |
|
|
*list< auto > |
role_cmds, |
|
|
string |
pass, |
|
|
string |
name |
|
) |
| |
creates a new user; currently unimplemented
- Exceptions
-
| LDAP-ERROR | this method is currently not supported in the QorusLdapAuth class |
◆ deleteUser()
| hash< auto > QorusLdapAuth::LdapRbacProvider::deleteUser |
( |
string |
user | ) |
|
deletes an existing user in the LDAP store; currently unimplemented
- Exceptions
-
| LDAP-ERROR | this method is currently not supported in the QorusLdapAuth class |
◆ listUsers()
| *list< auto > QorusLdapAuth::LdapRbacProvider::listUsers |
( |
| ) |
|
lists all users; currently not implemented
- Exceptions
-
| LDAP-ERROR | this method is currently not supported in the QorusLdapAuth class |
◆ updateUser()
| *hash< auto > QorusLdapAuth::LdapRbacProvider::updateUser |
( |
string |
user, |
|
|
*list< auto > |
role_cmds, |
|
|
*list< auto > |
storage_cmds, |
|
|
*softstring |
pass, |
|
|
*string |
name |
|
) |
| |
updates the user definition in the LDAP server; currently none of the possibile changes are supported
- Exceptions
-
| LDAP-ERROR | this method is currently not supported in the QorusLdapAuth class |
The documentation for this class was generated from the following file:
