/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- * * The contents of this file are subject to the Netscape Public * License Version 1.1 (the "License"); you may not use this file * except in compliance with the License. You may obtain a copy of * the License at http://www.mozilla.org/NPL/ * * Software distributed under the License is distributed on an "AS * IS" basis, WITHOUT WARRANTY OF ANY KIND, either express or * implied. See the License for the specific language governing * rights and limitations under the License. * * The Original Code is mozilla.org code. * * The Initial Developer of the Original Code is Netscape * Communications Corporation. Portions created by Netscape are * Copyright (C) 1999 Netscape Communications Corporation. All * Rights Reserved. * * Contributor(s): */ package netscape.ldap.controls; import java.io.*; import netscape.ldap.LDAPControl; import netscape.ldap.LDAPSortKey; import netscape.ldap.client.JDAPBERTagDecoder; import netscape.ldap.ber.stream.*; /** * Represents an LDAP v3 server control that specifies that you want * the server to use the specified DN's identity for this operation. * (The OID for this control is 2.16.840.1.113730.3.4.12.) *

* * You can include the control in any request by constructing * an LDAPSearchConstraints object and calling the * setServerControls method. You can then pass this * LDAPSearchConstraints object to the search * or other request method of an LDAPConnection object. *

* * For example: * 

 * ...
 * LDAPConnection ld = new LDAPConnection();
 * try {
 *     // Connect to server.
 *     ld.connect( 3, hostname, portnumber, "", "" );
 *
 *     // Create a "critical" proxied auth server control using
 *     // the DN "uid=charlie,ou=people,o=acme.com".
 *     LDAPProxiedAuthControl ctrl =
 *         new LDAPProxiedAuthControl( "uid=charlie,ou=people,o=acme.com",
 *                                     true );
 *
 *     // Create search constraints to use that control.
 *     LDAPSearchConstraints cons = new LDAPSearchConstraints();
 *     cons.setServerControls( sortCtrl );
 *
 *     // Send the search request.
 *     LDAPSearchResults res = ld.search( "o=Airius.com",
 *        LDAPv3.SCOPE_SUB, "(cn=Barbara*)", null, false, cons );
 *
 *     ...
 *
 *
* *

* * @version 1.0 * @see netscape.ldap.LDAPControl * @see netscape.ldap.LDAPConstraints * @see netscape.ldap.LDAPSearchConstraints * @see netscape.ldap.LDAPConstraints#setServerControls(LDAPControl) */ public class LDAPProxiedAuthControl extends LDAPControl { public final static String PROXIEDAUTHREQUEST = "2.16.840.1.113730.3.4.12"; private String m_dn; /** * Constructs an LDAPProxiedAuthControl object with a * DN to use as identity. * @param dn DN to use as identity for execution of a request * @param critical true if the LDAP operation should be * discarded when the server does not support this control (in other * words, this control is critical to the LDAP operation) * @see netscape.ldap.LDAPControl */ public LDAPProxiedAuthControl( String dn, boolean critical) { super( PROXIEDAUTHREQUEST, critical, null ); m_value = createSpecification( m_dn = dn ); } /** * Create a "flattened" BER encoding of the requested contents, * and return it as a byte array. * @param dn the DN to use as an identity * @return the byte array of encoded data. */ private byte[] createSpecification( String dn ) { /* A sequence */ BERSequence ber = new BERSequence(); /* Add the DN as a string value */ ber.addElement( new BEROctetString( dn ) ); /* Suck out the data and return it */ return flattenBER( ber ); } public String toString() { StringBuffer sb = new StringBuffer("{ProxiedAuthCtrl:"); sb.append(" isCritical="); sb.append(isCritical()); sb.append(" dn="); sb.append(m_dn); sb.append("}"); return sb.toString(); } }