Home Explore Help
Sign In
TC
/
arozos
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

working LDAP now

AY's Macbook Pro 3 years ago
parent
e459c2f59c
commit
498b931d2f
3 changed files with 106 additions and 0 deletions
Split View Show Diff Stats
  1. 3 0
      go.mod
  2. 11 0
      go.sum
  3. 92 0
      mod/auth/ldap/ldap.go

+ 3 - 0
go.mod
View File 

@@ -13,6 +13,8 @@ require (
 
 	github.com/frankban/quicktest v1.10.0 // indirect
 
 	github.com/gabriel-vasile/mimetype v1.1.0
 
 	github.com/go-git/go-git/v5 v5.2.0
 
+	github.com/go-ldap/ldap v3.0.3+incompatible // indirect
 
+	github.com/go-ldap/ldap/v3 v3.4.2 // indirect
 
 	github.com/gorilla/sessions v1.2.0
 
 	github.com/gorilla/websocket v1.4.2
 
 	github.com/grandcat/zeroconf v1.0.0
 
@@ -39,6 +41,7 @@ require (
 
 	golang.org/x/oauth2 v0.0.0-20210615190721-d04028783cf1
 
 	golang.org/x/sync v0.0.0-20210220032951-036812b2e83c
 
 	golang.org/x/sys v0.0.0-20210817190340-bfb29a6856f2 // indirect
 
+	gopkg.in/asn1-ber.v1 v1.0.0-20181015200546-f715ec2f112d // indirect
 
 	gopkg.in/sourcemap.v1 v1.0.5 // indirect
 
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 
 )

+ 11 - 0
go.sum
View File 

@@ -32,6 +32,8 @@ cloud.google.com/go/storage v1.6.0/go.mod h1:N7U0C8pVQ/+NIKOBQyamJIeKQKkZ+mxpohl
 
 cloud.google.com/go/storage v1.8.0/go.mod h1:Wv1Oy7z6Yz3DshWRJFhqM/UCfaWIRTdp0RXyy7KQOVs=
 
 cloud.google.com/go/storage v1.10.0/go.mod h1:FLPqc6j+Ki4BU591ie1oL6qBQGu2Bl/tZ9ullr3+Kg0=
 
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 
+github.com/Azure/go-ntlmssp v0.0.0-20200615164410-66371956d46c h1:/IBSNwUN8+eKzUzbJPqhK839ygXJ82sde8x3ogr6R28=
 
+github.com/Azure/go-ntlmssp v0.0.0-20200615164410-66371956d46c/go.mod h1:chxPXzSsl7ZWRAuOIE23GDNzjWuZquvFlgA8xmpunjU=
 
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 
 github.com/Knetic/govaluate v3.0.1-0.20171022003610-9aa49832a739+incompatible/go.mod h1:r7JcOSlj0wfOMncg0iLm8Leh48TZaKVeNIfJntJ2wa0=
 
@@ -128,6 +130,8 @@ github.com/gabriel-vasile/mimetype v1.1.0/go.mod h1:6CDPel/o/3/s4+bp6kIbsWATq8pm
 
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 
 github.com/gliderlabs/ssh v0.2.2 h1:6zsha5zo/TWhRhwqCD3+EarCAgZ2yN28ipRnGPnwkI0=
 
 github.com/gliderlabs/ssh v0.2.2/go.mod h1:U7qILu1NlMHj9FlMhZLlkCdDnU1DBEAqr0aevW3Awn0=
 
+github.com/go-asn1-ber/asn1-ber v1.5.1 h1:pDbRAunXzIUXfx4CB2QJFv5IuPiuoW+sWvr/Us009o8=
 
+github.com/go-asn1-ber/asn1-ber v1.5.1/go.mod h1:hEBeB/ic+5LoWskz+yKT7vGhhPYkProFKoKdwZRWMe0=
 
 github.com/go-git/gcfg v1.5.0 h1:Q5ViNfGF8zFgyJWPqYwA7qGFoMTEiBmdlkcfRmpIMa4=
 
 github.com/go-git/gcfg v1.5.0/go.mod h1:5m20vg6GwYabIxaOonVkTdrILxQMpEShl1xiMF4ua+E=
 
 github.com/go-git/go-billy/v5 v5.0.0 h1:7NQHvd9FVid8VL4qVUMm8XifBK+2xCoZ2lSk0agRrHM=
 
@@ -143,6 +147,10 @@ github.com/go-kit/kit v0.8.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2
 
 github.com/go-kit/kit v0.9.0/go.mod h1:xBxKIO96dXMWWy0MnWVtmwkA9/13aqxPnvrjFYMA2as=
 
 github.com/go-kit/kit v0.10.0 h1:dXFJfIHVvUcpSgDOV+Ne6t7jXri8Tfv2uOLHUZ2XNuo=
 
 github.com/go-kit/kit v0.10.0/go.mod h1:xUsJbQ/Fp4kEt7AFgCuvyX4a71u8h9jB8tj/ORgOZ7o=
 
+github.com/go-ldap/ldap v3.0.3+incompatible h1:HTeSZO8hWMS1Rgb2Ziku6b8a7qRIZZMHjsvuZyatzwk=
 
+github.com/go-ldap/ldap v3.0.3+incompatible/go.mod h1:qfd9rJvER9Q0/D/Sqn1DfHRoBp40uXYvFoEVrNEPqRc=
 
+github.com/go-ldap/ldap/v3 v3.4.2 h1:zFZKcXKLqZpFMrMQGHeHWKXbDTdNCmhGY9AK41zPh+8=
 
+github.com/go-ldap/ldap/v3 v3.4.2/go.mod h1:iYS1MdmrmceOJ1QOTnRXrIs7i3kloqtmGQjRvjKpyMg=
 
 github.com/go-logfmt/logfmt v0.3.0/go.mod h1:Qt1PoO58o5twSAckw1HlFXLmHsOX5/0LbT9GBnD5lWE=
 
 github.com/go-logfmt/logfmt v0.4.0/go.mod h1:3RMwSq7FuexP4Kalkev3ejPJsZTpXXBr9+V4qmtdjCk=
 
 github.com/go-logfmt/logfmt v0.5.0 h1:TrB8swr/68K7m9CcGut2g3UOihhbcbiMAYiuTXdEih4=
 
@@ -465,6 +473,7 @@ golang.org/x/crypto v0.0.0-20190701094942-4def268fd1a4/go.mod h1:yigFU9vqHzYiE8U
 
 golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 
 golang.org/x/crypto v0.0.0-20200302210943-78000ba7a073/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
+golang.org/x/crypto v0.0.0-20200604202706-70a84ac30bf9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5 h1:HWj/xjIHfjYU5nVXpTM0s39J9CbLn7Cc5a7IC5rwsMQ=
 
 golang.org/x/crypto v0.0.0-20210817164053-32db794688a5/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
 
@@ -746,6 +755,8 @@ google.golang.org/protobuf v1.24.0/go.mod h1:r/3tXBNzIEhYS9I1OUVjXDlt8tc493IdKGj
 
 google.golang.org/protobuf v1.25.0 h1:Ejskq+SyPohKW+1uil0JJMtmHCgJPJ/qWTxr8qp+R4c=
 
 google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c=
 
 gopkg.in/alecthomas/kingpin.v2 v2.2.6/go.mod h1:FMv+mEhP44yOT+4EoQTLFTRgOQ1FBLkstjWtayDeSgw=
 
+gopkg.in/asn1-ber.v1 v1.0.0-20181015200546-f715ec2f112d h1:TxyelI5cVkbREznMhfzycHdkp5cLA7DpE+GKjSslYhM=
 
+gopkg.in/asn1-ber.v1 v1.0.0-20181015200546-f715ec2f112d/go.mod h1:cuepJuh7vyXfUyUwEgHQXw849cJrilpS5NeIjOWESAw=
 
 gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 
 gopkg.in/check.v1 v1.0.0-20190902080502-41f04d3bba15/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=

+ 92 - 0
mod/auth/ldap/ldap.go
View File 

@@ -0,0 +1,92 @@
 
+package ldap
 
+
 
+import (
 
+	"fmt"
 
+	"log"
 
+
 
+	"github.com/go-ldap/ldap"
 
+	auth "imuslab.com/arozos/mod/auth"
 
+	reg "imuslab.com/arozos/mod/auth/register"
 
+	db "imuslab.com/arozos/mod/database"
 
+)
 
+
 
+type ldapHandler struct {
 
+	ag *auth.AuthAgent
 
+}
 
+
 
+const (
 
+	BindUsername = "read-only-admin"
 
+	BindPassword = "password"
 
+	FQDN         = "ldap.forumsys.com"
 
+	BaseDN       = "ou=mathematicians,dc=example,dc=com"
 
+	Filter       = "(objectClass=*)"
 
+)
 
+
 
+//NewOauthHandler xxx
 
+func NewLdapHandler(authAgent *auth.AuthAgent, register *reg.RegisterHandler, coreDb *db.Database) *ldapHandler {
 
+	err := coreDb.NewTable("oauth")
 
+	if err != nil {
 
+		log.Println("Failed to create oauth database. Terminating.")
 
+		panic(err)
 
+	}
 
+
 
+	NewlyCreatedOauthHandler := ldapHandler{
 
+		ag: authAgent,
 
+	}
 
+
 
+	return &NewlyCreatedOauthHandler
 
+}
 
+
 
+func (handler *ldapHandler) Ldap() {
 
+	// Non-TLS Connection
 
+	l, err := handler.Connect()
 
+	if err != nil {
 
+		log.Fatal(err)
 
+	}
 
+	defer l.Close()
 
+
 
+	// Normal Bind and Search
 
+	result, err := handler.BindAndSearch(l)
 
+	if err != nil {
 
+		log.Fatal(err)
 
+	}
 
+	result.Entries[0].PrettyPrint(4)
 
+}
 
+
 
+// Ldap Connection without TLS
 
+func (handler *ldapHandler) Connect() (*ldap.Conn, error) {
 
+	// You can also use IP instead of FQDN
 
+	l, err := ldap.DialURL(fmt.Sprintf("ldap://%s:389", FQDN))
 
+	if err != nil {
 
+		return nil, err
 
+	}
 
+
 
+	return l, nil
 
+}
 
+
 
+// Normal Bind and Search
 
+func (handler *ldapHandler) BindAndSearch(l *ldap.Conn) (*ldap.SearchResult, error) {
 
+	l.Bind(BindUsername, BindPassword)
 
+
 
+	searchReq := ldap.NewSearchRequest(
 
+		BaseDN,
 
+		ldap.ScopeBaseObject, // you can also use ldap.ScopeWholeSubtree
 
+		ldap.NeverDerefAliases,
 
+		0,
 
+		0,
 
+		false,
 
+		Filter,
 
+		[]string{},
 
+		nil,
 
+	)
 
+	result, err := l.Search(searchReq)
 
+	if err != nil {
 
+		return nil, fmt.Errorf("Search Error: %s", err)
 
+	}
 
+
 
+	if len(result.Entries) > 0 {
 
+		return result, nil
 
+	} else {
 
+		return nil, fmt.Errorf("Couldn't fetch search entries")
 
+	}
 
+}