IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Decode and encode attribute values in LDAPEntry on demand.

Browse Source 
This is achieved by storing both decoded and encoded attribute values in
LDAPEntry and synchronizing changes between them whenever an attribute is
accessed.

Added a new property "raw" to LDAPEntry. It provides a dictionary-like
object which can be used to directly access encoded attribute values.

https://fedorahosted.org/freeipa/ticket/3521
This commit is contained in:
Jan Cholasta 2013-02-27 09:16:49 +01:00 committed by Martin Kosek
parent 5d1d513849
commit 9ecf4b7aac
2 changed files with 234 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

214
ipapython/ipaldap.py
View File

@ -619,7 +619,8 @@ class IPASimpleLDAPObject(object):
# r[0] == r.dn # r[0] == r.dn
# r[1] == r.data # r[1] == r.data
class LDAPEntry(collections.MutableMapping): class LDAPEntry(collections.MutableMapping):
__slots__ = ('_conn', '_dn', '_names', '_data', '_not_list', '_orig') __slots__ = ('_conn', '_dn', '_names', '_nice', '_raw', '_sync',
'_not_list', '_orig', '_raw_view')
def __init__(self, _conn, _dn=None, _obj=None, **kwargs): def __init__(self, _conn, _dn=None, _obj=None, **kwargs):
""" """
@ -655,16 +656,24 @@ class LDAPEntry(collections.MutableMapping):
self._conn = _conn self._conn = _conn
self._dn = _dn self._dn = _dn
self._names = CIDict() self._names = CIDict()
self._data = {} self._nice = {}
self._raw = {}
self._sync = {}
self._not_list = set() self._not_list = set()
self._orig = self self._orig = self
self._raw_view = None
if isinstance(_obj, LDAPEntry): if isinstance(_obj, LDAPEntry):
#pylint: disable=E1103 #pylint: disable=E1103
self._names = CIDict(_obj._names)
self._data = dict(_obj._data)
self._not_list = set(_obj._not_list) self._not_list = set(_obj._not_list)
self._orig = _obj._orig self._orig = _obj._orig
if _obj.conn is _conn:
self._names = CIDict(_obj._names)
self._nice = dict(_obj._nice)
self._raw = dict(_obj._raw)
self._sync = dict(_obj._sync)
else:
self.raw.update(_obj.raw)
_obj = {} _obj = {}
@ -684,6 +693,12 @@ class LDAPEntry(collections.MutableMapping):
assert isinstance(value, DN) assert isinstance(value, DN)
self._dn = value self._dn = value
@property
def raw(self):
if self._raw_view is None:
self._raw_view = RawLDAPEntryView(self)
return self._raw_view
@property @property
def data(self): def data(self):
# FIXME: for backwards compatibility only # FIXME: for backwards compatibility only
@ -695,7 +710,7 @@ class LDAPEntry(collections.MutableMapping):
return self._orig return self._orig
def __repr__(self): def __repr__(self):
return '%s(%r, %r)' % (type(self).__name__, self._dn, self._data) return '%s(%r, %r)' % (type(self).__name__, self._dn, self._raw)
def copy(self): def copy(self):
return LDAPEntry(self) return LDAPEntry(self)
@ -704,7 +719,9 @@ class LDAPEntry(collections.MutableMapping):
result = LDAPEntry(self._conn, self._dn) result = LDAPEntry(self._conn, self._dn)
result._names = deepcopy(self._names) result._names = deepcopy(self._names)
result._data = deepcopy(self._data) result._nice = deepcopy(self._nice)
result._raw = deepcopy(self._raw)
result._sync = deepcopy(self._sync)
result._not_list = deepcopy(self._not_list) result._not_list = deepcopy(self._not_list)
if self._orig is not self: if self._orig is not self:
result._orig = self._orig.clone() result._orig = self._orig.clone()
@ -719,6 +736,51 @@ class LDAPEntry(collections.MutableMapping):
self._orig = self self._orig = self
self._orig = self.clone() self._orig = self.clone()
def _sync_attr(self, name):
nice = self._nice[name]
assert isinstance(nice, list)
raw = self._raw[name]
assert isinstance(raw, list)
nice_sync, raw_sync = self._sync.setdefault(name, ([], []))
if nice == nice_sync and raw == raw_sync:
return
nice_adds = set(nice) - set(nice_sync)
nice_dels = set(nice_sync) - set(nice)
raw_adds = set(raw) - set(raw_sync)
raw_dels = set(raw_sync) - set(raw)
for value in nice_dels:
value = self._conn.encode(value)
if value in raw_adds:
continue
raw.remove(value)
for value in raw_dels:
value = self._conn.decode(value, name)
if value in nice_adds:
continue
nice.remove(value)
for value in nice_adds:
value = self._conn.encode(value)
if value in raw_dels:
continue
raw.append(value)
for value in raw_adds:
value = self._conn.decode(value, name)
if value in nice_dels:
continue
nice.append(value)
self._sync[name] = (deepcopy(nice), deepcopy(raw))
if len(nice) > 1:
self._not_list.discard(name)
def _attr_name(self, name): def _attr_name(self, name):
if not isinstance(name, basestring): if not isinstance(name, basestring):
raise TypeError( raise TypeError(
@ -730,9 +792,7 @@ class LDAPEntry(collections.MutableMapping):
return name return name
def __setitem__(self, name, value): def _add_attr_name(self, name):
name = self._attr_name(name)
if name in self._names: if name in self._names:
oldname = self._names[name] oldname = self._names[name]
@ -741,11 +801,14 @@ class LDAPEntry(collections.MutableMapping):
if keyname == oldname: if keyname == oldname:
self._names[altname] = name self._names[altname] = name
del self._data[oldname] self._nice[name] = self._nice.pop(oldname)
self._not_list.discard(oldname) self._raw[name] = self._raw.pop(oldname)
if oldname in self._sync:
self._sync[name] = self._sync.pop(oldname)
if oldname in self._not_list:
self._not_list.remove(oldname)
self._not_list.add(name)
else: else:
self._names[name] = name
if self._conn.schema is not None: if self._conn.schema is not None:
attrtype = self._conn.schema.get_obj(ldap.schema.AttributeType, attrtype = self._conn.schema.get_obj(ldap.schema.AttributeType,
name.encode('utf-8')) name.encode('utf-8'))
@ -754,6 +817,12 @@ class LDAPEntry(collections.MutableMapping):
altname = altname.decode('utf-8') altname = altname.decode('utf-8')
self._names[altname] = name self._names[altname] = name
self._names[name] = name
def _set_nice(self, name, value):
name = self._attr_name(name)
self._add_attr_name(name)
if not isinstance(value, list): if not isinstance(value, list):
if value is None: if value is None:
value = [] value = []
@ -763,25 +832,54 @@ class LDAPEntry(collections.MutableMapping):
else: else:
self._not_list.discard(name) self._not_list.discard(name)
self._data[name] = value if self._nice.get(name) is not value:
self._nice[name] = value
self._raw[name] = None
self._sync.pop(name, None)
if self._raw[name] is not None:
self._sync_attr(name)
def _set_raw(self, name, value):
name = self._attr_name(name)
if not isinstance(value, list):
raise TypeError("%s value must be list, got %s object %r" % (
name, value.__class__.__name__, value))
for (i, item) in enumerate(value):
if not isinstance(item, str):
raise TypeError("%s[%d] value must be str, got %s object %r" % (
name, i, item.__class__.__name__, item))
self._add_attr_name(name)
if self._raw.get(name) is not value:
self._raw[name] = value
self._nice[name] = None
self._sync.pop(name, None)
if self._nice[name] is not None:
self._sync_attr(name)
def __setitem__(self, name, value):
self._set_nice(name, value)
def _get_attr_name(self, name): def _get_attr_name(self, name):
name = self._attr_name(name) name = self._attr_name(name)
name = self._names[name] name = self._names[name]
return name return name
def __getitem__(self, name): def _get_nice(self, name):
# FIXME: Remove when python-ldap tuple compatibility is dropped
if name == 0:
return self._dn
elif name == 1:
return self
name = self._get_attr_name(name) name = self._get_attr_name(name)
value = self._data[name] value = self._nice[name]
if value is None:
value = self._nice[name] = []
assert isinstance(value, list) assert isinstance(value, list)
if self._raw[name] is not None:
self._sync_attr(name)
if name in self._not_list: if name in self._not_list:
assert len(value) <= 1 assert len(value) <= 1
if value: if value:
@ -791,6 +889,28 @@ class LDAPEntry(collections.MutableMapping):
return value return value
def _get_raw(self, name):
name = self._get_attr_name(name)
value = self._raw[name]
if value is None:
value = self._raw[name] = []
assert isinstance(value, list)
if self._nice[name] is not None:
self._sync_attr(name)
return value
def __getitem__(self, name):
# FIXME: Remove when python-ldap tuple compatibility is dropped
if name == 0:
return self._dn
elif name == 1:
return self
return self._get_nice(name)
def single_value(self, name, default=_missing): def single_value(self, name, default=_missing):
"""Return a single attribute value """Return a single attribute value
@ -819,16 +939,20 @@ class LDAPEntry(collections.MutableMapping):
if keyname == name: if keyname == name:
del self._names[altname] del self._names[altname]
del self._data[name] del self._nice[name]
del self._raw[name]
self._sync.pop(name, None)
self._not_list.discard(name) self._not_list.discard(name)
def clear(self): def clear(self):
self._names.clear() self._names.clear()
self._data.clear() self._nice.clear()
self._raw.clear()
self._sync.clear()
self._not_list.clear() self._not_list.clear()
def __len__(self): def __len__(self):
return len(self._data) return len(self._nice)
def __contains__(self, name): def __contains__(self, name):
return name in self._names return name in self._names
@ -853,15 +977,17 @@ class LDAPEntry(collections.MutableMapping):
# FIXME: Remove when python-ldap tuple compatibility is dropped # FIXME: Remove when python-ldap tuple compatibility is dropped
def iterkeys(self): def iterkeys(self):
return self._data.iterkeys() return self._nice.iterkeys()
# FIXME: Remove when python-ldap tuple compatibility is dropped # FIXME: Remove when python-ldap tuple compatibility is dropped
def itervalues(self): def itervalues(self):
return self._data.itervalues() for name in self.iterkeys():
yield self[name]
# FIXME: Remove when python-ldap tuple compatibility is dropped # FIXME: Remove when python-ldap tuple compatibility is dropped
def iteritems(self): def iteritems(self):
return self._data.iteritems() for name in self.iterkeys():
yield (name, self[name])
# FIXME: Remove when python-ldap tuple compatibility is dropped # FIXME: Remove when python-ldap tuple compatibility is dropped
def keys(self): def keys(self):
@ -909,6 +1035,38 @@ class LDAPEntry(collections.MutableMapping):
result['dn'] = self.dn result['dn'] = self.dn
return result return result
class LDAPEntryView(collections.MutableMapping):
__slots__ = ('_entry',)
def __init__(self, entry):
assert isinstance(entry, LDAPEntry)
self._entry = entry
def __delitem__(self, name):
del self._entry[name]
def clear(self):
self._entry.clear()
def __iter__(self):
return self._entry.iterkeys()
def __len__(self):
return len(self._entry)
def __contains__(self, name):
return name in self._entry
def has_key(self, name):
return name in self
class RawLDAPEntryView(LDAPEntryView):
def __getitem__(self, name):
return self._entry._get_raw(name)
def __setitem__(self, name, value):
self._entry._set_raw(name, value)
class LDAPClient(object): class LDAPClient(object):
"""LDAP backend class """LDAP backend class

48
ipatests/test_ipaserver/test_ldap.py
View File

@ -257,3 +257,51 @@ class test_LDAPEntry(object):
assert e.single_value('commonname') == self.cn1[0] assert e.single_value('commonname') == self.cn1[0]
assert e.single_value('COMMONNAME', 'default') == self.cn1[0] assert e.single_value('COMMONNAME', 'default') == self.cn1[0]
assert e.single_value('bad key', 'default') == 'default' assert e.single_value('bad key', 'default') == 'default'
def test_sync(self):
e = self.entry
nice = e['test'] = [1, 2, 3]
assert e['test'] is nice
raw = e.raw['test']
assert raw == ['1', '2', '3']
nice.remove(1)
assert e.raw['test'] is raw
assert raw == ['2', '3']
raw.append('4')
assert e['test'] is nice
assert nice == [2, 3, u'4']
nice.remove(2)
raw.append('5')
assert nice == [3, u'4']
assert raw == ['2', '3', '4', '5']
assert e['test'] is nice
assert e.raw['test'] is raw
assert nice == [3, u'4', u'5']
assert raw == ['3', '4', '5']
nice.insert(0, 2)
raw.remove('4')
assert nice == [2, 3, u'4', u'5']
assert raw == ['3', '5']
assert e.raw['test'] is raw
assert e['test'] is nice
assert nice == [2, 3, u'5']
assert raw == ['3', '5', '2']
raw = ['a', 'b']
e.raw['test'] = raw
assert e['test'] is not nice
assert e['test'] == [u'a', u'b']
nice = 'not list'
e['test'] = nice
assert e['test'] is nice
assert e.raw['test'] == ['not list']
e.raw['test'].append('second')
assert e['test'] == ['not list', u'second']