Skip to content

Commit

Permalink
feat: read status attribute with TRUE or FALSE string value
Browse files Browse the repository at this point in the history
  • Loading branch information
@lukaslihotzki-f
lukaslihotzki-f committed Nov 4, 2024
1 parent 55b68b5 commit 485c30d
Showing 1 changed file with 38 additions and 10 deletions.
48 changes: 38 additions & 10 deletions src/sources/ldap.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -110,21 +110,25 @@ impl LdapSource {

/// Construct a user from an LDAP SearchEntry
pub(crate) fn parse_user(&self, entry: SearchEntry) -> Result<User> {
let status_as_int = match read_search_entry(&entry, &self.ldap_config.attributes.status)? {
StringOrBytes::String(status) => status.parse::<i32>()?,
let disable_bitmask = {
use std::ops::BitOr;
self.ldap_config.attributes.disable_bitmasks.iter().fold(0, i32::bitor)
};

let enabled = match read_search_entry(&entry, &self.ldap_config.attributes.status)? {
StringOrBytes::String(status) => match &status[..] {
"TRUE" => true,
"FALSE" => false,
_ => status.parse::<i32>()? & disable_bitmask == 0,
},
StringOrBytes::Bytes(status) => {
i32::from_be_bytes(status.try_into().map_err(|err: Vec<u8>| {
let status = i32::from_be_bytes(status.try_into().map_err(|err: Vec<u8>| {

Check warning on line 125 in src/sources/ldap.rs

View check run for this annotation

Codecov / codecov/patch

src/sources/ldap.rs#L125 

Added line #L125 was not covered by tests
let err_string = String::from_utf8_lossy(&err).to_string();
anyhow!(err_string).context("failed to convert to i32 flag")
})?)
})?);
status & disable_bitmask == 0

Check warning on line 129 in src/sources/ldap.rs

View check run for this annotation

Codecov / codecov/patch

src/sources/ldap.rs#L128-L129 

Added lines #L128 - L129 were not covered by tests
}
};
let enabled = !self
.ldap_config
.attributes
.disable_bitmasks
.iter()
.any(|flag| status_as_int & flag != 0);

let first_name = read_search_entry(&entry, &self.ldap_config.attributes.first_name)?;
let last_name = read_search_entry(&entry, &self.ldap_config.attributes.last_name)?;
Expand Down Expand Up @@ -571,4 +575,28 @@ mod tests {
assert_eq!(user.external_user_id, StringOrBytes::String("testuser".to_owned()));
assert!(user.enabled);
}

#[tokio::test]
async fn test_text_enabled() {
let config = load_config();
let ldap_source =
LdapSource { ldap_config: config.sources.ldap.unwrap(), is_dry_run: false };

for (attr, parsed) in [("TRUE", true), ("FALSE", false)] {
let entry = SearchEntry {
dn: "uid=testuser,ou=testorg,dc=example,dc=org".to_owned(),
attrs: {
let mut user = new_user();
user.insert("shadowFlag".to_owned(), vec![attr.to_owned()]);
user
},
bin_attrs: HashMap::new(),
};

let result = ldap_source.parse_user(entry);
assert!(result.is_ok(), "Failed to parse user: {:?}", result);
let user = result.unwrap();
assert_eq!(user.enabled, parsed);
}
}
}

0 comments on commit 485c30d

Please sign in to comment.