From b62be1975a63e10fee2084751b26c96b0d0b2349 Mon Sep 17 00:00:00 2001
From: Nicolas Turro <Nicolas.Turro@inria.fr>
Date: Wed, 26 Oct 2011 17:10:31 +0200
Subject: [PATCH] Separate file for LDAP queries . NT.

---
 sfa/senslab/LDAPapi.py | 90 ++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 90 insertions(+)
 create mode 100644 sfa/senslab/LDAPapi.py

diff --git a/sfa/senslab/LDAPapi.py b/sfa/senslab/LDAPapi.py
new file mode 100644
index 00000000..84528e7a
--- /dev/null
+++ b/sfa/senslab/LDAPapi.py
@@ -0,0 +1,90 @@
+
+
+
+import ldap
+from sfa.util.config import *
+from sfa.trust.gid import *
+from sfa.trust.hierarchy import *
+from sfa.trust.auth import *
+from sfa.trust.certificate import *
+
+class LDAPapi :
+	def __init__(self, record_filter = None):
+		self.ldapserv=ldap.open("192.168.0.251")
+		self.senslabauth=Hierarchy()
+		config=Config()
+		self.authname=config.SFA_REGISTRY_ROOT_AUTH
+		authinfo=self.senslabauth.get_auth_info(self.authname)
+	
+		self.auth=Auth()
+		gid=authinfo.get_gid_object()
+	
+	def ldapFind(self, record_filter = None, columns=None):
+
+ 		results = []
+	
+		if 'authority' in record_filter:
+		# ask for authority
+			if record_filter['authority']==self.authname:
+				# which is SFA_REGISTRY_ROOT_AUTH
+				# request all records which are under our authority, ie all ldap entries
+				ldapfilter="cn=*"
+			else:
+				#which is NOT SFA_REGISTRY_ROOT_AUTH
+				return []
+		else :
+			if not 'hrn' in record_filter:
+				print >>sys.stderr,"find : don't know how to handle filter ",record_filter
+				return []
+			else:
+				hrns=[]
+				h=record_filter['hrn']
+				if  isinstance(h,list):
+					hrns=h
+				else : 
+					hrns.append(h)
+	
+				ldapfilter="(|"
+				for hrn in hrns:
+					splited_hrn=hrn.split(".")
+					if splited_hrn[0] != "SFA_REGISTRY_ROOT_AUTH" :
+						print >>sys.stderr,"i know nothing about",hrn
+					else :
+						login=splited_hrn[1]
+						ldapfilter+="(uid="
+						ldapfilter+=login
+						ldapfilter+=")"
+				ldapfilter+=")"
+	
+	
+		rindex=self.ldapserv.search("ou=people,dc=senslab,dc=info",ldap.SCOPE_SUBTREE,ldapfilter, ['mail','givenName', 'sn', 'uid','sshPublicKey'])
+		ldapresponse=self.ldapserv.result(rindex,1)
+		for ldapentry in ldapresponse[1]:
+			hrn=self.authname+"."+ldapentry[1]['uid'][0]
+			uuid=create_uuid() 
+		
+			RSA_KEY_STRING=ldapentry[1]['sshPublicKey'][0]
+		
+			pkey=convert_public_key(RSA_KEY_STRING)
+		
+			gid=self.senslabauth.create_gid("urn:publicid:IDN+"+self.authname+"+user+"+ldapentry[1]['uid'][0], uuid, pkey, CA=False)
+		
+			parent_hrn = get_authority(hrn)
+			parent_auth_info = self.senslabauth.get_auth_info(parent_hrn)
+
+			results.append(  {	
+				'type': 'user',
+#				'email': ldapentry[1]['mail'][0],
+#				'first_name': ldapentry[1]['givenName'][0],
+#				'last_name': ldapentry[1]['sn'][0],
+#				'phone': 'none',
+				'gid': gid.save_to_string(),
+				'serial': 'none',
+				'authority': self.authname,
+				'peer_authority': '',
+				'pointer' : '',
+				'hrn': hrn,
+				'date_created' : 'none',
+				'last_updated': 'none'
+			 	} )
+		return results
\ No newline at end of file
-- 
2.43.0