flaschengeist/geruecht/controller/ldapController.py

from geruecht import ldap
from ldap3 import SUBTREE, MODIFY_REPLACE, HASHED_SALTED_MD5
from ldap3.utils.hashed import hashed
from geruecht.model import MONEY, USER, GASTRO, BAR, VORSTAND, EXTERN
from geruecht.exceptions import PermissionDenied
from . import Singleton
from geruecht.exceptions import UsernameExistLDAP, LDAPExcetpion
from geruecht import ldapConfig
from geruecht.logger import getDebugLogger

debug = getDebugLogger()

class LDAPController(metaclass=Singleton):
    '''
    Authentification over LDAP. Create Account on-the-fly
    '''

    def __init__(self):
        debug.info("init ldap controller")
        self.dn = ldapConfig['dn']
        self.ldap = ldap
        debug.debug("base dn is {{ {} }}".format(self.dn))
        debug.debug("ldap is {{ {} }}".format(self.ldap))


    def login(self, username, password):
        debug.info("login user {{ {} }} in ldap")
        try:
            retVal = self.ldap.authenticate(username, password, 'uid', self.dn)
            debug.debug("authentification to ldap is {{ {} }}".format(retVal))
            if not retVal:
                debug.debug("authenification is incorrect")
                raise PermissionDenied("Invalid Password or Username")
        except Exception as err:
            debug.warning("exception while login into ldap", exc_info=True)
            raise PermissionDenied("Invalid Password or Username. {}".format(err))

    def bind(self, user, password):
        debug.info("bind user {{ {} }} to ldap")
        ldap_conn = self.ldap.connect(user.dn, password)
        debug.debug("ldap_conn is {{ {} }}".format(ldap_conn))
        return ldap_conn

    def getUserData(self, username):
        debug.info("get user data from ldap of user {{ {} }}".format(username))
        try:
            debug.debug("search user in ldap")
            self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid={})'.format(username), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])
            user = self.ldap.connection.response[0]['attributes']
            debug.debug("user is {{ {} }}".format(user))
            retVal = {
                'dn': self.ldap.connection.response[0]['dn'],
                'firstname': user['givenName'][0],
                'lastname': user['sn'][0],
                'uid': user['uid'][0],
            }
            if user['mail']:
                retVal['mail'] = user['mail'][0]
            debug.debug("user is {{ {} }}".format(retVal))
            if retVal['uid'] == username:
                return retVal
            else:
                raise Exception()
        except:
            debug.warning("exception in get user data from ldap", exc_info=True)
            raise PermissionDenied("No User exists with this uid.")


    def getGroup(self, username):
        debug.info("get group from user {{ {} }}".format(username))
        try:
            retVal = []
            self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid={})'.format(username), SUBTREE, attributes=['gidNumber'])
            main_group_number = self.ldap.connection.response[0]['attributes']['gidNumber']
            debug.debug("main group number is {{ {} }}".format(main_group_number))
            if main_group_number:
                if type(main_group_number) is list:
                    main_group_number = main_group_number[0]
                self.ldap.connection.search('ou=group,{}'.format(self.dn), '(gidNumber={})'.format(main_group_number), attributes=['cn'])
                group_name = self.ldap.connection.response[0]['attributes']['cn'][0]
                debug.debug("group name is {{ {} }}".format(group_name))
                if group_name == 'ldap-user':
                    retVal.append(USER)
                if group_name == 'extern':
                    retVal.append(EXTERN)

            self.ldap.connection.search('ou=group,{}'.format(self.dn), '(memberUID={})'.format(username), SUBTREE, attributes=['cn'])
            groups_data = self.ldap.connection.response
            debug.debug("groups number is {{ {} }}".format(groups_data))
            for data in groups_data:
                group_name = data['attributes']['cn'][0]
                debug.debug("group name is {{ {} }}".format(group_name))
                if group_name == 'finanzer':
                    retVal.append(MONEY)
                elif group_name == 'gastro':
                    retVal.append(GASTRO)
                elif group_name == 'bar':
                    retVal.append(BAR)
                elif group_name == 'vorstand':
                    retVal.append(VORSTAND)
            debug.debug("groups are {{ {} }}".format(retVal))
            return retVal
        except Exception as err:
            debug.warning("exception in get groups from ldap", exc_info=True)
            raise LDAPExcetpion(str(err))

    def __isUserInList(self, list, username):
        help_list = []
        for user in list:
            help_list.append(user['username'])
        if username in help_list:
            return True
        return False

    def getAllUser(self):
        debug.info("get all users from ldap")
        retVal = []
        self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid=*)', SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])
        data = self.ldap.connection.response
        debug.debug("data is {{ {} }}".format(data))
        for user in data:
            if 'uid' in user['attributes']:
                username = user['attributes']['uid'][0]
                firstname = user['attributes']['givenName'][0]
                lastname = user['attributes']['sn'][0]
                retVal.append({'username': username, 'firstname': firstname, 'lastname': lastname})
        debug.debug("users are {{ {} }}".format(retVal))
        return retVal

    def searchUser(self, searchString):

        name = searchString.split(" ")

        for i in range(len(name)):
            name[i] = "*"+name[i]+"*"


        print(name)

        name_result = []

        if len(name) == 1:
            if name[0] == "**":
                self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid=*)', SUBTREE,
                                                attributes=['uid', 'givenName', 'sn'])
                name_result.append(self.ldap.connection.response)
            else:
                self.ldap.connection.search('ou=user,{}'.format(self.dn), '(givenName={})'.format(name[0]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])
                name_result.append(self.ldap.connection.response)
                self.ldap.connection.search('ou=user,{}'.format(self.dn), '(sn={})'.format(name[0]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])
                name_result.append(self.ldap.connection.response)
        else:
            self.ldap.connection.search('ou=user,{}'.format(self.dn), '(givenName={})'.format(name[1]), SUBTREE, attributes=['uid', 'givenName', 'sn'])
            name_result.append(self.ldap.connection.response)
            self.ldap.connection.search('ou=user,{}'.format(self.dn), '(sn={})'.format(name[1]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])
            name_result.append(self.ldap.connection.response)
        retVal = []

        for names in name_result:
            for user in names:
                if 'uid' in user['attributes']:
                    username = user['attributes']['uid'][0]
                    if not self.__isUserInList(retVal, username):
                        firstname = user['attributes']['givenName'][0]
                        lastname = user['attributes']['sn'][0]
                        retVal.append({'username': username, 'firstname': firstname, 'lastname': lastname})

        return retVal

    def modifyUser(self, user, conn, attributes):
        debug.info("modify ldap data from user {{ {} }} with attributes {{ {} }}".format(user, attributes))
        try:
            if 'username' in attributes:
                debug.debug("change username")
                conn.search('ou=user,{}'.format(self.dn), '(uid={})'.format(attributes['username']))
                if conn.entries:
                    debug.warning("username already exists", exc_info=True)
                    raise UsernameExistLDAP("Username already exists in LDAP")
            #create modifyer
            mody = {}
            if 'username' in attributes:
                mody['uid'] = [(MODIFY_REPLACE, [attributes['username']])]
            if 'firstname' in attributes:
                mody['givenName'] = [(MODIFY_REPLACE, [attributes['firstname']])]
            if 'lastname' in attributes:
                mody['sn'] = [(MODIFY_REPLACE, [attributes['lastname']])]
            if 'mail' in attributes:
                mody['mail'] = [(MODIFY_REPLACE, [attributes['mail']])]
            if 'password' in attributes:
                salted_password = hashed(HASHED_SALTED_MD5, attributes['password'])
                mody['userPassword'] = [(MODIFY_REPLACE, [salted_password])]
            debug.debug("modyfier are {{ {} }}".format(mody))
            conn.modify(user.dn, mody)
        except Exception as err:
            debug.warning("exception in modify user data from ldap", exc_info=True)
            raise LDAPExcetpion("Something went wrong in LDAP: {}".format(err))


if __name__ == '__main__':
    a = LDAPController()
    a.getUserData('jhille')
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`from geruecht import ldap`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`from ldap3 import SUBTREE, MODIFY_REPLACE, HASHED_SALTED_MD5`
			`from ldap3.utils.hashed import hashed`
finished ##213 2020-03-04 20:11:41 +00:00			`from geruecht.model import MONEY, USER, GASTRO, BAR, VORSTAND, EXTERN`
update for UnitTests new controller: userController so routes don't have to import users or creditlist and don't do logics. 2019-12-28 20:52:49 +00:00			`from geruecht.exceptions import PermissionDenied`
			`from . import Singleton`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`from geruecht.exceptions import UsernameExistLDAP, LDAPExcetpion`
finished ##172 add, edit, delete drinks in pricelist add, edit, delete drinkTypes 2020-03-01 18:20:47 +00:00			`from geruecht import ldapConfig`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`from geruecht.logger import getDebugLogger`

			`debug = getDebugLogger()`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00
			`class LDAPController(metaclass=Singleton):`
			`'''`
			`Authentification over LDAP. Create Account on-the-fly`
			`'''`

finished ##172 add, edit, delete drinks in pricelist add, edit, delete drinkTypes 2020-03-01 18:20:47 +00:00			`def __init__(self):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("init ldap controller")`
finished ##172 add, edit, delete drinks in pricelist add, edit, delete drinkTypes 2020-03-01 18:20:47 +00:00			`self.dn = ldapConfig['dn']`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap = ldap`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("base dn is {{ {} }}".format(self.dn))`
			`debug.debug("ldap is {{ {} }}".format(self.ldap))`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00

			`def login(self, username, password):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("login user {{ {} }} in ldap")`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00			`try:`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`retVal = self.ldap.authenticate(username, password, 'uid', self.dn)`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("authentification to ldap is {{ {} }}".format(retVal))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`if not retVal:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("authenification is incorrect")`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`raise PermissionDenied("Invalid Password or Username")`
			`except Exception as err:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.warning("exception while login into ldap", exc_info=True)`
			`raise PermissionDenied("Invalid Password or Username. {}".format(err))`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`def bind(self, user, password):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("bind user {{ {} }} to ldap")`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`ldap_conn = self.ldap.connect(user.dn, password)`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("ldap_conn is {{ {} }}".format(ldap_conn))`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`return ldap_conn`

mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00			`def getUserData(self, username):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("get user data from ldap of user {{ {} }}".format(username))`
fixed #107 getUserData "from ldap" is now surrounded with try 2019-12-31 12:06:40 +00:00			`try:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("search user in ldap")`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid={})'.format(username), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])`
			`user = self.ldap.connection.response[0]['attributes']`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("user is {{ {} }}".format(user))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`retVal = {`
			`'dn': self.ldap.connection.response[0]['dn'],`
			`'firstname': user['givenName'][0],`
			`'lastname': user['sn'][0],`
fixed ##261 hier wird nun der username auf casesensitiv überprüft. 2020-06-05 21:43:16 +00:00			`'uid': user['uid'][0],`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`}`
try to update userdata in database from ldap when getAllUsersFromDB is executed 2020-02-26 21:49:23 +00:00			`if user['mail']:`
			`retVal['mail'] = user['mail'][0]`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("user is {{ {} }}".format(retVal))`
fixed ##261 hier wird nun der username auf casesensitiv überprüft. 2020-06-05 21:43:16 +00:00			`if retVal['uid'] == username:`
			`return retVal`
			`else:`
			`raise Exception()`
fixed #107 getUserData "from ldap" is now surrounded with try 2019-12-31 12:06:40 +00:00			`except:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.warning("exception in get user data from ldap", exc_info=True)`
fixed #107 getUserData "from ldap" is now surrounded with try 2019-12-31 12:06:40 +00:00			`raise PermissionDenied("No User exists with this uid.")`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00

			`def getGroup(self, username):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("get group from user {{ {} }}".format(username))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`try:`
			`retVal = []`
			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid={})'.format(username), SUBTREE, attributes=['gidNumber'])`
			`main_group_number = self.ldap.connection.response[0]['attributes']['gidNumber']`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("main group number is {{ {} }}".format(main_group_number))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`if main_group_number:`
vorstand can set job_kinds for day with max persons extern user can be set if job_kind is delete, all jobs are deleted for this date and job_kind 2020-05-22 19:55:14 +00:00			`if type(main_group_number) is list:`
			`main_group_number = main_group_number[0]`
add routes to valid barlock 2020-03-17 19:37:01 +00:00			`self.ldap.connection.search('ou=group,{}'.format(self.dn), '(gidNumber={})'.format(main_group_number), attributes=['cn'])`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`group_name = self.ldap.connection.response[0]['attributes']['cn'][0]`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("group name is {{ {} }}".format(group_name))`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00			`if group_name == 'ldap-user':`
			`retVal.append(USER)`
finished ##213 2020-03-04 20:11:41 +00:00			`if group_name == 'extern':`
			`retVal.append(EXTERN)`
fixed #79 and other bugs 2019-12-22 21:27:39 +00:00
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=group,{}'.format(self.dn), '(memberUID={})'.format(username), SUBTREE, attributes=['cn'])`
			`groups_data = self.ldap.connection.response`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("groups number is {{ {} }}".format(groups_data))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`for data in groups_data:`
			`group_name = data['attributes']['cn'][0]`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("group name is {{ {} }}".format(group_name))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`if group_name == 'finanzer':`
			`retVal.append(MONEY)`
			`elif group_name == 'gastro':`
			`retVal.append(GASTRO)`
			`elif group_name == 'bar':`
			`retVal.append(BAR)`
finished ##213 2020-03-04 20:11:41 +00:00			`elif group_name == 'vorstand':`
			`retVal.append(VORSTAND)`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("groups are {{ {} }}".format(retVal))`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`return retVal`
			`except Exception as err:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.warning("exception in get groups from ldap", exc_info=True)`
			`raise LDAPExcetpion(str(err))`
mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00
ldap search 2019-12-22 22:09:18 +00:00			`def __isUserInList(self, list, username):`
			`help_list = []`
			`for user in list:`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`help_list.append(user['username'])`
ldap search 2019-12-22 22:09:18 +00:00			`if username in help_list:`
			`return True`
			`return False`

first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`def getAllUser(self):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("get all users from ldap")`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`retVal = []`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid=*)', SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])`
			`data = self.ldap.connection.response`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("data is {{ {} }}".format(data))`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`for user in data:`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`if 'uid' in user['attributes']:`
			`username = user['attributes']['uid'][0]`
			`firstname = user['attributes']['givenName'][0]`
			`lastname = user['attributes']['sn'][0]`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`retVal.append({'username': username, 'firstname': firstname, 'lastname': lastname})`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("users are {{ {} }}".format(retVal))`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`return retVal`

ldap search 2019-12-22 22:09:18 +00:00			`def searchUser(self, searchString):`

			`name = searchString.split(" ")`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00
			`for i in range(len(name)):`
			`name[i] = ""+name[i]+""`


			`print(name)`

ldap search 2019-12-22 22:09:18 +00:00			`name_result = []`

			`if len(name) == 1:`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`if name[0] == "**":`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(uid=*)', SUBTREE,`
			`attributes=['uid', 'givenName', 'sn'])`
			`name_result.append(self.ldap.connection.response)`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`else:`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(givenName={})'.format(name[0]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])`
			`name_result.append(self.ldap.connection.response)`
			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(sn={})'.format(name[0]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])`
			`name_result.append(self.ldap.connection.response)`
ldap search 2019-12-22 22:09:18 +00:00			`else:`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(givenName={})'.format(name[1]), SUBTREE, attributes=['uid', 'givenName', 'sn'])`
			`name_result.append(self.ldap.connection.response)`
			`self.ldap.connection.search('ou=user,{}'.format(self.dn), '(sn={})'.format(name[1]), SUBTREE, attributes=['uid', 'givenName', 'sn', 'mail'])`
			`name_result.append(self.ldap.connection.response)`
ldap search 2019-12-22 22:09:18 +00:00			`retVal = []`

first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`for names in name_result:`
			`for user in names:`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`if 'uid' in user['attributes']:`
			`username = user['attributes']['uid'][0]`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`if not self.__isUserInList(retVal, username):`
added flask ldapconn, fixed bug in login 2020-01-21 05:54:35 +00:00			`firstname = user['attributes']['givenName'][0]`
			`lastname = user['attributes']['sn'][0]`
first usable site only 2 groups exists: bar and finanzer person can be in more than 1 group site for baruser first try with autocomplete from ldap site for finanzer ; overview; specialview for 1 Person 2019-12-26 09:28:30 +00:00			`retVal.append({'username': username, 'firstname': firstname, 'lastname': lastname})`
ldap search 2019-12-22 22:09:18 +00:00
			`return retVal`

added ldap modifying for users 2020-01-26 22:31:22 +00:00			`def modifyUser(self, user, conn, attributes):`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.info("modify ldap data from user {{ {} }} with attributes {{ {} }}".format(user, attributes))`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`try:`
			`if 'username' in attributes:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("change username")`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`conn.search('ou=user,{}'.format(self.dn), '(uid={})'.format(attributes['username']))`
			`if conn.entries:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.warning("username already exists", exc_info=True)`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`raise UsernameExistLDAP("Username already exists in LDAP")`
			`#create modifyer`
			`mody = {}`
			`if 'username' in attributes:`
			`mody['uid'] = [(MODIFY_REPLACE, [attributes['username']])]`
			`if 'firstname' in attributes:`
			`mody['givenName'] = [(MODIFY_REPLACE, [attributes['firstname']])]`
			`if 'lastname' in attributes:`
			`mody['sn'] = [(MODIFY_REPLACE, [attributes['lastname']])]`
			`if 'mail' in attributes:`
			`mody['mail'] = [(MODIFY_REPLACE, [attributes['mail']])]`
			`if 'password' in attributes:`
			`salted_password = hashed(HASHED_SALTED_MD5, attributes['password'])`
			`mody['userPassword'] = [(MODIFY_REPLACE, [salted_password])]`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.debug("modyfier are {{ {} }}".format(mody))`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`conn.modify(user.dn, mody)`
			`except Exception as err:`
finished ##215 only database controlle is left for debugging 2020-03-10 18:23:52 +00:00			`debug.warning("exception in modify user data from ldap", exc_info=True)`
added ldap modifying for users 2020-01-26 22:31:22 +00:00			`raise LDAPExcetpion("Something went wrong in LDAP: {}".format(err))`


mysql adapter and ldap adapter start adapetr for mysql not sqllite authenfication with ldap problem.. ldap and db is initialize in __init__.py when you initialize db, you initialize User and that requires ldap from __init__.py. But ldap is not initialize. if you initialize ldap, you initialize User and that requires db from __init__.py. But db is not initialize. 2019-12-19 07:12:29 +00:00
			`if __name__ == '__main__':`
			`a = LDAPController()`
			`a.getUserData('jhille')`