Added users and groups

Author: djthorpe

cmd/server/main.go

@@ -46,6 +46,7 @@ type CLI struct {
 		ldap.ObjectCommands
 		ldap.AuthCommands
 		ldap.UserCommands
+		ldap.GroupCommands
 	} `cmd:""`
 
 	VersionCommands

cmd/server/service.go

@@ -216,6 +216,10 @@ func (cmd *ServiceRunCommand) Run(app server.Cmd) error {
 		ldap.UserSchema.Field = "uid"
 		ldap.UserSchema.ObjectClasses = "top,inetOrgPerson,person,posixAccount"
 
+		ldap.GroupSchema.RDN = "cn=groups,cn=accounts"
+		ldap.GroupSchema.Field = "cn"
+		ldap.GroupSchema.ObjectClasses = "top,groupOfNames,nestedGroup,posixGroup"
+
 		return nil
 	}))
 

pkg/ldap/client/group.go

@@ -0,0 +1,64 @@
+package client
+
+import (
+	"context"
+
+	// Packages
+	client "github.com/mutablelogic/go-client"
+	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// PUBLIC METHODS
+
+func (c *Client) ListGroups(ctx context.Context, opts ...Opt) (*schema.ObjectList, error) {
+	req := client.NewRequest()
+
+	// Apply options
+	opt, err := applyOpts(opts...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Perform request
+	var response schema.ObjectList
+	if err := c.DoWithContext(ctx, req, &response, client.OptPath("group"), client.OptQuery(opt.Values)); err != nil {
+		return nil, err
+	}
+
+	// Return the responses
+	return &response, nil
+}
+
+func (c *Client) CreateGroup(ctx context.Context, meta schema.Object) (*schema.Object, error) {
+	req, err := client.NewJSONRequest(meta)
+	if err != nil {
+		return nil, err
+	}
+
+	// Perform request
+	var response schema.Object
+	if err := c.DoWithContext(ctx, req, &response, client.OptPath("group")); err != nil {
+		return nil, err
+	}
+
+	// Return the responses
+	return &response, nil
+}
+
+func (c *Client) GetGroup(ctx context.Context, user string) (*schema.Object, error) {
+	var resp schema.Object
+
+	// Perform request
+	if err := c.DoWithContext(ctx, client.MethodGet, &resp, client.OptPath("group", user)); err != nil {
+		return nil, err
+	}
+
+	// Return the response
+	return &resp, nil
+}
+
+func (c *Client) DeleteGroup(ctx context.Context, user string) error {
+	// Perform request
+	return c.DoWithContext(ctx, client.MethodDelete, nil, client.OptPath("group", user))
+}

pkg/ldap/client/user.go

@@ -11,6 +11,25 @@ import (
 ///////////////////////////////////////////////////////////////////////////////
 // PUBLIC METHODS
 
+func (c *Client) ListUsers(ctx context.Context, opts ...Opt) (*schema.ObjectList, error) {
+	req := client.NewRequest()
+
+	// Apply options
+	opt, err := applyOpts(opts...)
+	if err != nil {
+		return nil, err
+	}
+
+	// Perform request
+	var response schema.ObjectList
+	if err := c.DoWithContext(ctx, req, &response, client.OptPath("user"), client.OptQuery(opt.Values)); err != nil {
+		return nil, err
+	}
+
+	// Return the responses
+	return &response, nil
+}
+
 func (c *Client) CreateUser(ctx context.Context, meta schema.Object) (*schema.Object, error) {
 	req, err := client.NewJSONRequest(meta)
 	if err != nil {
@@ -26,3 +45,20 @@ func (c *Client) CreateUser(ctx context.Context, meta schema.Object) (*schema.Ob
 	// Return the responses
 	return &response, nil
 }
+
+func (c *Client) GetUser(ctx context.Context, user string) (*schema.Object, error) {
+	var resp schema.Object
+
+	// Perform request
+	if err := c.DoWithContext(ctx, client.MethodGet, &resp, client.OptPath("user", user)); err != nil {
+		return nil, err
+	}
+
+	// Return the response
+	return &resp, nil
+}
+
+func (c *Client) DeleteUser(ctx context.Context, user string) error {
+	// Perform request
+	return c.DoWithContext(ctx, client.MethodDelete, nil, client.OptPath("user", user))
+}

pkg/ldap/cmd/group.go

@@ -0,0 +1,105 @@
+package cmd
+
+import (
+	"context"
+	"fmt"
+	"net/url"
+	"strings"
+
+	// Packages
+	server "github.com/mutablelogic/go-server"
+	client "github.com/mutablelogic/go-server/pkg/ldap/client"
+	schema "github.com/mutablelogic/go-server/pkg/ldap/schema"
+)
+
+///////////////////////////////////////////////////////////////////////////////
+// TYPES
+
+type GroupCommands struct {
+	Groups      GroupListCommand   `cmd:"" group:"LDAP" help:"List groups"`
+	Group       GroupGetCommand    `cmd:"" group:"LDAP" help:"Get group"`
+	CreateGroup GroupCreateCommand `cmd:"" group:"LDAP" help:"Create group"`
+	DeleteGroup GroupDeleteCommand `cmd:"" group:"LDAP" help:"Delete group"`
+}
+
+type GroupListCommand struct {
+	schema.ObjectListRequest
+}
+
+type GroupGetCommand struct {
+	Group string `arg:"" help:"Group name"`
+}
+
+type GroupCreateCommand struct {
+	GroupGetCommand
+	Attr []string `arg:"" help:"attribute=value,value,..."`
+}
+
+type GroupDeleteCommand struct {
+	GroupGetCommand
+}
+
+///////////////////////////////////////////////////////////////////////////////
+// PUBLIC METHODS
+
+func (cmd GroupListCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		groups, err := provider.ListGroups(ctx, client.WithFilter(cmd.Filter), client.WithAttr(cmd.Attr...), client.WithOffsetLimit(cmd.Offset, cmd.Limit))
+		if err != nil {
+			return err
+		}
+
+		// Print groups
+		fmt.Println(groups)
+		return nil
+	})
+}
+
+func (cmd GroupGetCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		group, err := provider.GetGroup(ctx, cmd.Group)
+		if err != nil {
+			return err
+		}
+
+		// Print group
+		fmt.Println(group)
+		return nil
+	})
+}
+
+func (cmd GroupDeleteCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		return provider.DeleteGroup(ctx, cmd.Group)
+	})
+}
+
+func (cmd GroupCreateCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		// Decode attributes
+		attrs := url.Values{}
+		for _, attr := range cmd.Attr {
+			parts := strings.SplitN(attr, "=", 2)
+			if len(parts) != 2 {
+				return fmt.Errorf("invalid attribute: %s", attr)
+			}
+			name := parts[0]
+			if values := strings.Split(parts[1], ","); len(values) > 0 {
+				attrs[name] = values
+			}
+		}
+
+		// Create group
+		group, err := provider.CreateGroup(ctx, schema.Object{
+			DN:     cmd.Group,
+			Values: attrs,
+		})
+		if err != nil {
+			return err
+		}
+
+		// Print group
+		fmt.Println(group)
+		return nil
+	})
+}

pkg/ldap/cmd/object.go

@@ -27,23 +27,23 @@ type ObjectListCommand struct {
 	schema.ObjectListRequest
 }
 
-type ObjectGetCommand struct {
-	DN string `arg:"" help:"Distingushed Name"`
-}
-
 type ObjectCreateCommand struct {
 	ObjectGetCommand
 	Attr []string `arg:"" help:"attribute=value,value,..."`
 }
 
-type ObjectUpdateCommand struct {
-	ObjectCreateCommand
+type ObjectGetCommand struct {
+	DN string `arg:"" help:"Distingushed Name"`
 }
 
 type ObjectDeleteCommand struct {
 	ObjectGetCommand
 }
 
+type ObjectUpdateCommand struct {
+	ObjectCreateCommand
+}
+
 ///////////////////////////////////////////////////////////////////////////////
 // PUBLIC METHODS
 

pkg/ldap/cmd/user.go

@@ -16,21 +16,64 @@ import (
 // TYPES
 
 type UserCommands struct {
+	Users      UserListCommand   `cmd:"" group:"LDAP" help:"List users"`
+	User       UserGetCommand    `cmd:"" group:"LDAP" help:"Get user"`
 	CreateUser UserCreateCommand `cmd:"" group:"LDAP" help:"Create user"`
+	DeleteUser UserDeleteCommand `cmd:"" group:"LDAP" help:"Delete user"`
+}
+
+type UserListCommand struct {
+	schema.ObjectListRequest
 }
 
 type UserGetCommand struct {
-	DN string `arg:"" help:"Username"`
+	User string `arg:"" help:"Username"`
 }
 
 type UserCreateCommand struct {
 	UserGetCommand
 	Attr []string `arg:"" help:"attribute=value,value,..."`
 }
 
+type UserDeleteCommand struct {
+	UserGetCommand
+}
+
 ///////////////////////////////////////////////////////////////////////////////
 // PUBLIC METHODS
 
+func (cmd UserListCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		users, err := provider.ListUsers(ctx, client.WithFilter(cmd.Filter), client.WithAttr(cmd.Attr...), client.WithOffsetLimit(cmd.Offset, cmd.Limit))
+		if err != nil {
+			return err
+		}
+
+		// Print users
+		fmt.Println(users)
+		return nil
+	})
+}
+
+func (cmd UserGetCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		user, err := provider.GetUser(ctx, cmd.User)
+		if err != nil {
+			return err
+		}
+
+		// Print user
+		fmt.Println(user)
+		return nil
+	})
+}
+
+func (cmd UserDeleteCommand) Run(ctx server.Cmd) error {
+	return run(ctx, func(ctx context.Context, provider *client.Client) error {
+		return provider.DeleteUser(ctx, cmd.User)
+	})
+}
+
 func (cmd UserCreateCommand) Run(ctx server.Cmd) error {
 	return run(ctx, func(ctx context.Context, provider *client.Client) error {
 		// Decode attributes
@@ -48,7 +91,7 @@ func (cmd UserCreateCommand) Run(ctx server.Cmd) error {
 
 		// Create user
 		user, err := provider.CreateUser(ctx, schema.Object{
-			DN:     cmd.DN,
+			DN:     cmd.User,
 			Values: attrs,
 		})
 		if err != nil {

pkg/ldap/config/config.go

@@ -16,16 +16,24 @@ import (
 // TYPES
 
 type Config struct {
-	Url        *url.URL          `env:"LDAP_URL" help:"LDAP connection URL"`                // Connection URL
-	User       string            `env:"LDAP_USER" help:"User"`                              // User
-	Password   string            `env:"LDAP_PASSWORD" help:"Password"`                      // Password
-	BaseDN     string            `env:"LDAP_BASE_DN" help:"Base DN"`                        // Base DN
-	SkipVerify bool              `env:"LDAP_SKIPVERIFY" help:"Skip TLS certificate verify"` // Skip verify
-	Router     server.HTTPRouter `kong:"-"`                                                 // HTTP Router
+	Url        *url.URL `env:"LDAP_URL" help:"LDAP connection URL"`                // Connection URL
+	User       string   `env:"LDAP_USER" help:"User"`                              // User
+	Password   string   `env:"LDAP_PASSWORD" help:"Password"`                      // Password
+	BaseDN     string   `env:"LDAP_BASE_DN" help:"Base DN"`                        // Base DN
+	SkipVerify bool     `env:"LDAP_SKIPVERIFY" help:"Skip TLS certificate verify"` // Skip verify
+
+	Router server.HTTPRouter `kong:"-"` // HTTP Router
+
 	UserSchema struct {
-		RDN           string `default:"cn=users,cn=account" help:"User root DN"`
+		RDN           string `default:"cn=users,cn=account" help:"User RDN"`
 		Field         string `default:"uid" help:"User field"`
-		ObjectClasses string `default:"top,inetOrgPerson,posixAccount" help:"User object classes"`
+		ObjectClasses string `default:"top,person,inetOrgPerson,posixAccount" help:"User object classes"`
+	}
+
+	GroupSchema struct {
+		RDN           string `default:"cn=groups,cn=account" help:"Group RDN"`
+		Field         string `default:"cn" help:"Group field"`
+		ObjectClasses string `default:"top,groupOfNames,nestedGroup,posixGroup" help:"Group object classes"`
 	}
 }
 
@@ -51,8 +59,10 @@ func (c Config) New(ctx context.Context) (server.Task, error) {
 		opts = append(opts, ldap.WithSkipVerify())
 	}
 	if c.UserSchema.RDN != "" {
-		classes := strings.Split(c.UserSchema.ObjectClasses, ",")
-		opts = append(opts, ldap.WithUserSchema(c.UserSchema.RDN, c.UserSchema.Field, classes...))
+		opts = append(opts, ldap.WithUserSchema(c.UserSchema.RDN, c.UserSchema.Field, strings.Split(c.UserSchema.ObjectClasses, ",")...))
+	}
+	if c.GroupSchema.RDN != "" {
+		opts = append(opts, ldap.WithGroupSchema(c.GroupSchema.RDN, c.GroupSchema.Field, strings.Split(c.GroupSchema.ObjectClasses, ",")...))
 	}
 
 	// Create a new LDAP manager