Added create user

Author: djthorpe

cmd/server/main.go

@@ -45,6 +45,7 @@ type CLI struct {
 	LDAP struct {
 		ldap.ObjectCommands
 		ldap.AuthCommands
+		ldap.UserCommands
 	} `cmd:""`
 
 	VersionCommands

cmd/server/service.go

@@ -211,6 +211,11 @@ func (cmd *ServiceRunCommand) Run(app server.Cmd) error {
 			ldap.Router = router
 		}
 
+		// HACK
+		ldap.UserSchema.RDN = "cn=users,cn=accounts"
+		ldap.UserSchema.Field = "uid"
+		ldap.UserSchema.ObjectClasses = "top,inetOrgPerson,person,posixAccount"
+
 		return nil
 	}))
 

pkg/ldap/client/user.go

@@ -0,0 +1,28 @@
+package client
+
+import (
+	"context"
+
+	// Packages
+	client "github.com/mutablelogic/go-client"
+	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// PUBLIC METHODS
+
+func (c *Client) CreateUser(ctx context.Context, meta schema.Object) (*schema.Object, error) {
+	req, err := client.NewJSONRequest(meta)
+	if err != nil {
+		return nil, err
+	}
+
+	// Perform request
+	var response schema.Object
+	if err := c.DoWithContext(ctx, req, &response, client.OptPath("user")); err != nil {
+		return nil, err
+	}
+
+	// Return the responses
+	return &response, nil
+}

pkg/ldap/cmd/user.go

@@ -0,0 +1,62 @@
+package cmd
+
+import (
+	"context"
+	"fmt"
+	"net/url"
+	"strings"
+
+	// Packages
+	server "github.com/mutablelogic/go-server"
+	client "github.com/mutablelogic/go-server/pkg/ldap/client"
+	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// TYPES
+
+type UserCommands struct {
+	CreateUser UserCreateCommand `cmd:"" group:"LDAP" help:"Create user"`
+}
+
+type UserGetCommand struct {
+	DN string `arg:"" help:"Username"`
+}
+
+type UserCreateCommand struct {
+	UserGetCommand
+	Attr []string `arg:"" help:"attribute=value,value,..."`
+}
+
+///////////////////////////////////////////////////////////////////////////////
+// PUBLIC METHODS
+
+func (cmd UserCreateCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		// Decode attributes
+		attrs := url.Values{}
+		for _, attr := range cmd.Attr {
+			parts := strings.SplitN(attr, "=", 2)
+			if len(parts) != 2 {
+				return fmt.Errorf("invalid attribute: %s", attr)
+			}
+			name := parts[0]
+			if values := strings.Split(parts[1], ","); len(values) > 0 {
+				attrs[name] = values
+			}
+		}
+
+		// Create user
+		user, err := provider.CreateUser(ctx, schema.Object{
+			DN:     cmd.DN,
+			Values: attrs,
+		})
+		if err != nil {
+			return err
+		}
+
+		// Print object
+		fmt.Println(user)
+		return nil
+	})
+}

pkg/ldap/config/config.go

@@ -3,6 +3,7 @@ package config
 import (
 	"context"
 	"net/url"
+	"strings"
 
 	// Packages
 	server "github.com/mutablelogic/go-server"
@@ -21,6 +22,11 @@ type Config struct {
 	BaseDN     string            `env:"LDAP_BASE_DN" help:"Base DN"`                        // Base DN
 	SkipVerify bool              `env:"LDAP_SKIPVERIFY" help:"Skip TLS certificate verify"` // Skip verify
 	Router     server.HTTPRouter `kong:"-"`                                                 // HTTP Router
+	UserSchema struct {
+		RDN           string `default:"cn=users,cn=account" help:"User root DN"`
+		Field         string `default:"uid" help:"User field"`
+		ObjectClasses string `default:"top,inetOrgPerson,posixAccount" help:"User object classes"`
+	}
 }
 
 var _ server.Plugin = Config{}
@@ -44,6 +50,10 @@ func (c Config) New(ctx context.Context) (server.Task, error) {
 	if c.SkipVerify {
 		opts = append(opts, ldap.WithSkipVerify())
 	}
+	if c.UserSchema.RDN != "" {
+		classes := strings.Split(c.UserSchema.ObjectClasses, ",")
+		opts = append(opts, ldap.WithUserSchema(c.UserSchema.RDN, c.UserSchema.Field, classes...))
+	}
 
 	// Create a new LDAP manager
 	manager, err := ldap.NewManager(opts...)

pkg/ldap/handler/handler.go

@@ -18,6 +18,7 @@ import (
 func Register(ctx context.Context, router server.HTTPRouter, manager *ldap.Manager) {
 	registerObject(ctx, router, schema.APIPrefix, manager)
 	registerAuth(ctx, router, schema.APIPrefix, manager)
+	registerUser(ctx, router, schema.APIPrefix, manager)
 }
 
 func registerObject(ctx context.Context, router server.HTTPRouter, prefix string, manager *ldap.Manager) {
@@ -73,3 +74,17 @@ func registerAuth(ctx context.Context, router server.HTTPRouter, prefix string,
 		}
 	})
 }
+
+func registerUser(ctx context.Context, router server.HTTPRouter, prefix string, manager *ldap.Manager) {
+	router.HandleFunc(ctx, types.JoinPath(prefix, "user"), func(w http.ResponseWriter, r *http.Request) {
+		defer r.Body.Close()
+		httpresponse.Cors(w, r, router.Origin(), http.MethodPost)
+
+		switch r.Method {
+		case http.MethodPost:
+			_ = userCreate(w, r, manager)
+		default:
+			_ = httpresponse.Error(w, httpresponse.Err(http.StatusMethodNotAllowed), r.Method)
+		}
+	})
+}

pkg/ldap/handler/user.go

@@ -0,0 +1,31 @@
+package handler
+
+import (
+	"net/http"
+
+	// Packages
+	httprequest "github.com/mutablelogic/go-server/pkg/httprequest"
+	httpresponse "github.com/mutablelogic/go-server/pkg/httpresponse"
+	ldap "github.com/mutablelogic/go-server/pkg/ldap"
+	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// PRIVATE METHODS
+
+func userCreate(w http.ResponseWriter, r *http.Request, manager *ldap.Manager) error {
+	// Parse request
+	var req schema.Object
+	if err := httprequest.Read(r, &req); err != nil {
+		return httpresponse.Error(w, err)
+	}
+
+	// Create the object
+	response, err := manager.CreateUser(r.Context(), req.DN, req.Values)
+	if err != nil {
+		return httpresponse.Error(w, err)
+	}
+
+	// Return success
+	return httpresponse.JSON(w, http.StatusCreated, httprequest.Indent(r), response)
+}

pkg/ldap/manager.go

@@ -15,7 +15,7 @@ import (
 
 	// Packages
 	ldap "github.com/go-ldap/ldap/v3"
-	"github.com/mutablelogic/go-server"
+	server "github.com/mutablelogic/go-server"
 	httpresponse "github.com/mutablelogic/go-server/pkg/httpresponse"
 	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
 	ref "github.com/mutablelogic/go-server/pkg/ref"
@@ -33,8 +33,8 @@ type Manager struct {
 	user, pass string
 	dn         *schema.DN
 	conn       *ldap.Conn
-	users      *schema.Group
-	groups     *schema.Group
+	users      *schema.ObjectType
+	groups     *schema.ObjectType
 }
 
 var _ server.LDAP = (*Manager)(nil)
@@ -103,7 +103,7 @@ func NewManager(opt ...Opt) (*Manager, error) {
 		self.dn = o.dn
 	}
 
-	// Set the schemas for users, groups
+	// Set the object types for users, groups
 	self.users = o.users
 	self.groups = o.groups
 
@@ -637,6 +637,73 @@ func (manager *Manager) ListAttributeTypes(ctx context.Context) ([]*schema.Attri
 ///////////////////////////////////////////////////////////////////////////////
 // PUBLIC METHODS - USERS AND GROUPS
 
+// Create a user
+func (manager *Manager) CreateUser(ctx context.Context, user string, attrs url.Values) (*schema.Object, error) {
+	if manager.users == nil {
+		return nil, httpresponse.ErrBadRequest.With("User schema not set")
+	}
+
+	// Create the object template
+	object, err := manager.users.New(user, attrs)
+	if err != nil {
+		return nil, httpresponse.ErrBadRequest.With(err)
+	}
+
+	// Make absolute DN
+	absdn, err := manager.absdn(object.DN)
+	if err != nil {
+		return nil, err
+	}
+
+	// TODO: Uid
+	fmt.Println(absdn, object)
+
+	// Create the user
+	return manager.Create(ctx, absdn.String(), object.Values)
+
+	// TODO: Groups
+}
+
+/*
+	// If the uid is not set, then set it to the next available uid
+	var nextId int
+	uid, err := ldap.SearchOne("(&(objectclass=device)(cn=lastuid))")
+	if err != nil {
+		return nil, err
+	} else if uid == nil {
+		return nil, ErrNotImplemented.With("lastuid not found")
+	} else if uid_, err := strconv.ParseInt(uid.Get("serialNumber"), 10, 32); err != nil {
+		return nil, ErrNotImplemented.With("lastuid not found")
+	} else {
+		nextId = int(uid_) + 1
+		if err := schema.OptUserId(int(uid_))(o); err != nil {
+			return nil, err
+		}
+	}
+
+	// Create the request
+	addReq := goldap.NewAddRequest(o.DN, []goldap.Control{})
+	for name, values := range o.Values {
+		addReq.Attribute(name, values)
+	}
+
+	// Request -> Response
+	if err := ldap.conn.Add(addReq); err != nil {
+		return nil, err
+	}
+
+	// Increment the uid
+	if uid != nil && nextId > 0 {
+		modify := goldap.NewModifyRequest(uid.DN, []goldap.Control{})
+		modify.Replace("serialNumber", []string{fmt.Sprint(nextId)})
+		if err := ldap.conn.Modify(modify); err != nil {
+			return nil, err
+		}
+	}
+
+	// TODO: Add the user to a group
+*/
+
 // Return all users
 func (manager *Manager) ListUsers(ctx context.Context, request schema.ObjectListRequest) ([]*schema.ObjectList, error) {
 	// TODO
@@ -661,12 +728,6 @@ func (manager *Manager) GetGroup(ctx context.Context, dn string) (*schema.Object
 	return nil, httpresponse.ErrNotImplemented.With("GetGroup not implemented")
 }
 
-// Create a user
-func (manager *Manager) CreateUser(ctx context.Context, user string, attrs url.Values) (*schema.Object, error) {
-	// TODO
-	return nil, httpresponse.ErrNotImplemented.With("CreateUser not implemented")
-}
-
 // Create a group
 func (manager *Manager) CreateGroup(ctx context.Context, group string, attrs url.Values) (*schema.Object, error) {
 	// TODO

pkg/ldap/opt.go

@@ -17,8 +17,8 @@ type opt struct {
 	pass       string
 	dn         *schema.DN
 	skipverify bool
-	users      *schema.Group
-	groups     *schema.Group
+	users      *schema.ObjectType
+	groups     *schema.ObjectType
 }
 
 // Opt represents a function that modifies the options
@@ -44,27 +44,23 @@ func applyOpts(opts ...Opt) (*opt, error) {
 ////////////////////////////////////////////////////////////////////////////////
 // PUBLIC METHODS
 
-func WithUserSchema(dn string, classes ...string) Opt {
+func WithUserSchema(dn, field string, classes ...string) Opt {
 	return func(o *opt) error {
-		if dn == "" {
-			return httpresponse.ErrBadRequest.With("DN is empty")
-		} else if bdn, err := schema.NewDN(dn); err != nil {
-			return httpresponse.ErrBadRequest.With("DN is invalid: ", err)
+		if ot, err := schema.NewObjectType(dn, field, classes...); err != nil {
+			return err
 		} else {
-			o.users = &schema.Group{DN: bdn, ObjectClass: classes}
+			o.users = ot
 		}
 		return nil
 	}
 }
 
-func WithGroupSchema(dn string, classes ...string) Opt {
+func WithGroupSchema(dn, field string, classes ...string) Opt {
 	return func(o *opt) error {
-		if dn == "" {
-			return httpresponse.ErrBadRequest.With("DN is empty")
-		} else if bdn, err := schema.NewDN(dn); err != nil {
-			return httpresponse.ErrBadRequest.With("DN is invalid: ", err)
+		if ot, err := schema.NewObjectType(dn, field, classes...); err != nil {
+			return err
 		} else {
-			o.groups = &schema.Group{DN: bdn, ObjectClass: classes}
+			o.groups = ot
 		}
 		return nil
 	}

pkg/ldap/schema/object.go

@@ -105,3 +105,32 @@ func (o *Object) GetAll(attr string) []string {
 	// Not found
 	return nil
 }
+
+// Sets an attribute value
+func (o *Object) Set(attr string, v ...string) {
+	// Function to add or delete an attribute
+	set := func(k string, v []string) {
+		if len(v) == 0 {
+			delete(o.Values, k)
+		} else {
+			o.Values[k] = v
+		}
+	}
+
+	// Try case insensitive
+	if values, ok := o.Values[attr]; ok {
+		set(attr, values)
+		return
+	}
+
+	// Try case insensitive
+	for k, values := range o.Values {
+		if strings.EqualFold(k, attr) {
+			set(attr, values)
+			return
+		}
+	}
+
+	// Not found - add
+	set(attr, v)
+}