diff options
| author | Rob Crittenden <rcritten@redhat.com> | 2010-01-19 17:02:13 -0500 |
|---|---|---|
| committer | Rob Crittenden <rcritten@redhat.com> | 2010-01-19 17:02:13 -0500 |
| commit | 8376979aa77877fd2cb4278eb6241198d7ebeda1 (patch) | |
| tree | 4508c14818d6c1e96deaffa9b4be2d48f2599a06 /ipaserver | |
| parent | f262a132bea6ec435df1b88c396b60bba12b2b64 (diff) | |
| download | freeipa-8376979aa77877fd2cb4278eb6241198d7ebeda1.tar.gz freeipa-8376979aa77877fd2cb4278eb6241198d7ebeda1.tar.xz freeipa-8376979aa77877fd2cb4278eb6241198d7ebeda1.zip | |
Allow cospriority to be updated and fix description of priority ordering
Need to add a few more places where the DN will not be automatically
normalized. The krb5 server expects a very specific format and normalizing
causes it to not work.
Diffstat (limited to 'ipaserver')
| -rw-r--r-- | ipaserver/plugins/ldap2.py | 22 |
1 files changed, 13 insertions, 9 deletions
diff --git a/ipaserver/plugins/ldap2.py b/ipaserver/plugins/ldap2.py index 56e6b54fc..89cfc3f40 100644 --- a/ipaserver/plugins/ldap2.py +++ b/ipaserver/plugins/ldap2.py @@ -421,7 +421,8 @@ class ldap2(CrudBackend, Encoder): @encode_args(1, 2, 3) @decode_retval() def find_entries(self, filter, attrs_list=None, base_dn='', - scope=_ldap.SCOPE_SUBTREE, time_limit=1, size_limit=3000): + scope=_ldap.SCOPE_SUBTREE, time_limit=1, size_limit=3000, + normalize=True): """ Return a list of entries [(dn, entry_attrs)] matching specified search parameters followed by truncated flag. If the truncated flag is @@ -433,8 +434,10 @@ class ldap2(CrudBackend, Encoder): scope -- search scope, see LDAP docs (default ldap2.SCOPE_SUBTREE) time_limit -- time limit in seconds (default 1) size_limit -- size (number of entries returned) limit (default 3000) + normalize -- normalize the DN (default True) """ - base_dn = self.normalize_dn(base_dn) + if normalize: + base_dn = self.normalize_dn(base_dn) if not filter: filter = '(objectClass=*)' res = [] @@ -475,14 +478,14 @@ class ldap2(CrudBackend, Encoder): filter = self.make_filter(search_kw, rules=self.MATCH_ALL) return self.find_entries(filter, attrs_list, base_dn)[0][0] - def get_entry(self, dn, attrs_list=None): + def get_entry(self, dn, attrs_list=None, normalize=True): """ Get entry (dn, entry_attrs) by dn. Keyword arguments: attrs_list - list of attributes to return, all if None (default None) """ - return self.find_entries(None, attrs_list, dn, self.SCOPE_BASE)[0][0] + return self.find_entries(None, attrs_list, dn, self.SCOPE_BASE, normalize=normalize)[0][0] def get_ipa_config(self): """Returns the IPA configuration entry (dn, entry_attrs).""" @@ -572,9 +575,9 @@ class ldap2(CrudBackend, Encoder): except _ldap.LDAPError, e: _handle_errors(e, **{}) - def _generate_modlist(self, dn, entry_attrs): + def _generate_modlist(self, dn, entry_attrs, normalize): # get original entry - (dn, entry_attrs_old) = self.get_entry(dn, entry_attrs.keys()) + (dn, entry_attrs_old) = self.get_entry(dn, entry_attrs.keys(), normalize) # get_entry returns a decoded entry, encode it back # we could call search_s directly, but this saves a lot of code at # the expense of a little bit of performace @@ -618,16 +621,17 @@ class ldap2(CrudBackend, Encoder): return modlist @encode_args(1, 2) - def update_entry(self, dn, entry_attrs): + def update_entry(self, dn, entry_attrs, normalize=True): """ Update entry's attributes. An attribute value set to None deletes all current values. """ - dn = self.normalize_dn(dn) + if normalize: + dn = self.normalize_dn(dn) # generate modlist - modlist = self._generate_modlist(dn, entry_attrs) + modlist = self._generate_modlist(dn, entry_attrs, normalize) if not modlist: raise errors.EmptyModlist() |