Added Attr to list

Author: djthorpe

go.mod

@@ -10,6 +10,7 @@ require (
 	github.com/golang-jwt/jwt/v5 v5.2.2
 	github.com/mutablelogic/go-client v1.0.12
 	github.com/stretchr/testify v1.10.0
+	github.com/yinyin/go-ldap-schema-parser v0.0.0-20190716182935-542aadd3dcb5
 )
 
 require (

go.sum

@@ -52,6 +52,7 @@ github.com/go-asn1-ber/asn1-ber v1.5.8-0.20250403174932-29230038a667 h1:BP4M0CvQ
 github.com/go-asn1-ber/asn1-ber v1.5.8-0.20250403174932-29230038a667/go.mod h1:hEBeB/ic+5LoWskz+yKT7vGhhPYkProFKoKdwZRWMe0=
 github.com/go-ldap/ldap/v3 v3.4.11 h1:4k0Yxweg+a3OyBLjdYn5OKglv18JNvfDykSoI8bW0gU=
 github.com/go-ldap/ldap/v3 v3.4.11/go.mod h1:bY7t0FLK8OAVpp/vV6sSlpz3EQDGcQwc8pF0ujLgKvM=
+github.com/go-ldap/ldif v0.0.0-20180918085934-3491d58cdb60/go.mod h1:blBiFTfuR1Jrw4xZ7t3xuNObLzzBG+ce+5W/bEYwJq0=
 github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A=
 github.com/go-logr/logr v1.4.2 h1:6pFjapn8bFcIbiKo3XT4j/BhANplGihG6tvd+8rYgrY=
 github.com/go-logr/logr v1.4.2/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY=
@@ -163,6 +164,8 @@ github.com/tklauser/go-sysconf v0.3.12 h1:0QaGUFOdQaIVdPgfITYzaTegZvdCjmYO52cSFA
 github.com/tklauser/go-sysconf v0.3.12/go.mod h1:Ho14jnntGE1fpdOqQEEaiKRpvIavV0hSfmBq8nJbHYI=
 github.com/tklauser/numcpus v0.6.1 h1:ng9scYS7az0Bk4OZLvrNXNSAO2Pxr1XXRAPyjhIx+Fk=
 github.com/tklauser/numcpus v0.6.1/go.mod h1:1XfjsgE2zo8GVw7POkMbHENHzVg3GzmoZ9fESEdAacY=
+github.com/yinyin/go-ldap-schema-parser v0.0.0-20190716182935-542aadd3dcb5 h1:siJ/5leB7JENBScgD/qG8JAGiS/2Q76qxCPK81icczU=
+github.com/yinyin/go-ldap-schema-parser v0.0.0-20190716182935-542aadd3dcb5/go.mod h1:Hb9db5nLRb/cT+dBKUrukgT3Z9mbtrpF3o2g8+sw7ic=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yusufpapurcu/wmi v1.2.3 h1:E1ctvB7uKFMOJw3fdOW32DwGE9I7t++CRUEMKvFoFiw=
@@ -238,9 +241,11 @@ google.golang.org/grpc v1.64.1 h1:LKtvyfbX3UGVPFcGqJ9ItpVWW6oN/2XqTxfAnwRRXiA=
 google.golang.org/grpc v1.64.1/go.mod h1:hiQF4LFZelK2WKaP6W0L92zGHtiQdZxk8CrSdvyjeP0=
 google.golang.org/protobuf v1.35.2 h1:8Ar7bF+apOIoThw1EdZl0p1oWvMqTHmpA2fRTyZO8io=
 google.golang.org/protobuf v1.35.2/go.mod h1:9fA7Ob0pmnwhb644+1+CVWFRbNajQ6iRojtC/QF5bRE=
+gopkg.in/asn1-ber.v1 v1.0.0-20181015200546-f715ec2f112d/go.mod h1:cuepJuh7vyXfUyUwEgHQXw849cJrilpS5NeIjOWESAw=
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk=
 gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q=
+gopkg.in/ldap.v2 v2.5.1/go.mod h1:oI0cpe/D7HRtBQl8aTg+ZmzFUAvu4lsv3eLXMLGFxWk=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
 gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=

pkg/ldap/client/opts.go

@@ -53,6 +53,18 @@ func WithFilter(v *string) Opt {
 	return OptSet("filter", types.PtrString(v))
 }
 
+// Set LDAP attributes
+func WithAttr(v ...string) Opt {
+	return func(o *opt) error {
+		if len(v) == 0 {
+			o.Del("attr")
+		} else {
+			o.Values["attr"] = v
+		}
+		return nil
+	}
+}
+
 func OptSet(k, v string) Opt {
 	return func(o *opt) error {
 		if v == "" {

pkg/ldap/cmd/object.go

@@ -26,7 +26,7 @@ type ObjectListCommand struct {
 
 func (cmd ObjectListCommand) Run(ctx server.Cmd) error {
 	return run(ctx, func(ctx context.Context, provider *client.Client) error {
-		queues, err := provider.ListObjects(ctx, client.WithFilter(cmd.Filter), client.WithOffsetLimit(cmd.Offset, cmd.Limit))
+		queues, err := provider.ListObjects(ctx, client.WithFilter(cmd.Filter), client.WithAttr(cmd.Attr...), client.WithOffsetLimit(cmd.Offset, cmd.Limit))
 		if err != nil {
 			return err
 		}

pkg/ldap/config/config.go

@@ -15,10 +15,12 @@ import (
 // TYPES
 
 type Config struct {
-	Url      *url.URL          `env:"LDAP_URL" help:"LDAP connection URL"` // Connection URL
-	Password string            `env:"LDAP_PASSWORD" help:"Password"`       // Password
-	BaseDN   string            `env:"LDAP_BASE_DN" help:"Base DN"`         // Base DN
-	Router   server.HTTPRouter `kong:"-"`                                  // HTTP Router
+	Url        *url.URL          `env:"LDAP_URL" help:"LDAP connection URL"`                // Connection URL
+	User       string            `env:"LDAP_USER" help:"User"`                              // User
+	Password   string            `env:"LDAP_PASSWORD" help:"Password"`                      // Password
+	BaseDN     string            `env:"LDAP_BASE_DN" help:"Base DN"`                        // Base DN
+	SkipVerify bool              `env:"LDAP_SKIPVERIFY" help:"Skip TLS certificate verify"` // Skip verify
+	Router     server.HTTPRouter `kong:"-"`                                                 // HTTP Router
 }
 
 var _ server.Plugin = Config{}
@@ -28,16 +30,20 @@ var _ server.Plugin = Config{}
 
 func (c Config) New(ctx context.Context) (server.Task, error) {
 	// Add options
-	opts := []ldap.Opt{}
+	opts := []ldap.Opt{
+		ldap.WithUser(c.User),
+		ldap.WithPassword(c.Password),
+		ldap.WithBaseDN(c.BaseDN),
+	}
 	if c.Url != nil {
 		opts = append(opts, ldap.WithUrl(c.Url.String()))
 	}
-	if c.Password != "" {
-		opts = append(opts, ldap.WithPassword(c.Password))
-	}
 	if c.BaseDN != "" {
 		opts = append(opts, ldap.WithBaseDN(c.BaseDN))
 	}
+	if c.SkipVerify {
+		opts = append(opts, ldap.WithSkipVerify())
+	}
 
 	// Create a new LDAP manager
 	manager, err := ldap.NewManager(opts...)

pkg/ldap/manager.go

@@ -244,13 +244,11 @@ func (manager *Manager) List(ctx context.Context, request schema.ObjectListReque
 		limit = min(types.PtrUint64(request.Limit), limit)
 	}
 
-	// Set filter and attributes
+	// Set filter
 	filter := "(objectclass=*)"
 	if request.Filter != nil {
 		filter = types.PtrString(request.Filter)
 	}
-	// TODO
-	attrs := []string{}
 
 	// Perform the search through paging, skipping the first N entries
 	var list schema.ObjectList
@@ -260,7 +258,7 @@ func (manager *Manager) List(ctx context.Context, request schema.ObjectListReque
 		}
 		list.Count = list.Count + 1
 		return nil
-	}, attrs...); err != nil {
+	}, request.Attr...); err != nil {
 		return nil, err
 	}
 
@@ -325,7 +323,7 @@ func (manager *Manager) list(ctx context.Context, scope int, dn, filter string,
 }
 
 // Get an object by DN
-func (manager *Manager) Get(ctx context.Context, dn string) (*schema.Object, error) {
+func (manager *Manager) Get(ctx context.Context, dn string, attrs ...string) (*schema.Object, error) {
 	manager.Lock()
 	defer manager.Unlock()
 
@@ -334,7 +332,8 @@ func (manager *Manager) Get(ctx context.Context, dn string) (*schema.Object, err
 		return nil, httpresponse.ErrInternalError.With("Not connected")
 	}
 
-	return manager.get(ctx, ldap.ScopeBaseObject, dn, "(objectclass=*)")
+	// Get the object
+	return manager.get(ctx, ldap.ScopeBaseObject, dn, "(objectclass=*)", attrs...)
 }
 
 func (manager *Manager) get(ctx context.Context, scope int, dn, filter string, attrs ...string) (*schema.Object, error) {

pkg/ldap/manager_test.go

@@ -15,6 +15,7 @@ import (
 )
 
 const (
+	// https://github.com/shadowbq/FreeIPA-Configuration
 	User, Pass = "uid=admin,cn=users,cn=accounts,dc=demo1,dc=freeipa,dc=org", "Secret123"
 	URL        = "ldaps://ipa.demo1.freeipa.org/"
 	BaseDN     = "dc=demo1,dc=freeipa,dc=org"
@@ -35,9 +36,9 @@ func TestMain(m *testing.M) {
 			opts = append(opts, ldap.WithBaseDN(dn))
 		}
 	} else {
+		// Use FreeIPA instance
 		opts = append(opts, ldap.WithUrl(URL), ldap.WithUser(User), ldap.WithPassword(Pass), ldap.WithBaseDN(BaseDN), ldap.WithSkipVerify())
 	}
-
 	exitCode := m.Run()
 	os.Exit(exitCode)
 }

pkg/ldap/schema/object.go

@@ -21,7 +21,8 @@ type Object struct {
 
 type ObjectListRequest struct {
 	pg.OffsetLimit
-	Filter *string `json:"filter,omitempty"`
+	Filter *string  `json:"filter,omitempty" help:"Filter"`
+	Attr   []string `json:"attr,omitempty" help:"Attributes to return"`
 }
 
 type ObjectList struct {