Discrete data loading functions

domain/auth/ldap/ad_test.go

@@ -12,12 +12,9 @@
 package ldap
 
 import (
-	"fmt"
-	"strings"
 	"testing"
 
 	lm "github.com/documize/community/model/auth"
-	ld "gopkg.in/ldap.v2"
 )
 
 // Works against AD server in Azure configured using:
@@ -30,7 +27,7 @@ var testConfigPublicAD = lm.LDAPConfig{
 	ServerType:               lm.ServerTypeAD,
 	ServerHost:               "documize-ad.eastus.cloudapp.azure.com",
 	ServerPort:               389,
-	EncryptionType:           "none",
+	EncryptionType:           lm.EncryptionTypeNone,
 	BaseDN:                   "DC=mycompany,DC=local",
 	BindDN:                   "CN=ad-admin,CN=Users,DC=mycompany,DC=local",
 	BindPassword:             "8B5tNRLvbk8K",
@@ -54,7 +51,7 @@ func TestUserFilter_PublicAD(t *testing.T) {
 		return
 	}
 	if len(e) == 0 {
-		t.Error("Received ZERO LDAP search entries")
+		t.Error("Received zero user LDAP search entries")
 		return
 	}
 
@@ -66,94 +63,24 @@ func TestUserFilter_PublicAD(t *testing.T) {
 	}
 }
 
-func TestADServer_Groups(t *testing.T) {
-	testConfigPublicAD.UserFilter = ""
+func TestGroupFilter_PublicAD(t *testing.T) {
 	testConfigPublicAD.GroupFilter = "(|(cn=Accounting)(cn=IT))"
-	groupAttrs := testConfigPublicAD.GetGroupFilterAttributes()
-	userAttrs := testConfigPublicAD.GetUserFilterAttributes()
 
-	l, err := connect(testConfigPublicAD)
+	e, err := executeGroupFilter(testConfigPublicAD)
 	if err != nil {
-		t.Error("Error: unable to dial AD server: ", err.Error())
+		t.Error("unable to exeucte group filter", err.Error())
 		return
 	}
-	defer l.Close()
-
-	// Authenticate with LDAP server using admin credentials.
-	t.Log("Binding LDAP admin user")
-	err = l.Bind(testConfigPublicAD.BindDN, testConfigPublicAD.BindPassword)
-	if err != nil {
-		t.Error("Error: unable to bind specified admin user to AD: ", err.Error())
+	if len(e) == 0 {
+		t.Error("Received zero group LDAP search entries")
 		return
 	}
 
-	searchRequest := ld.NewSearchRequest(
-		testConfigPublicAD.BaseDN,
-		ld.ScopeWholeSubtree, ld.NeverDerefAliases, 0, 0, false,
-		testConfigPublicAD.GroupFilter,
-		groupAttrs,
-		nil,
-	)
+	t.Logf("LDAP group search entries found: %d", len(e))
 
-	t.Log("AD search filter:", testConfigPublicAD.GroupFilter)
-	sr, err := l.Search(searchRequest)
-	if err != nil {
-		t.Error("Error: unable to execute directory search: ", err.Error())
-		return
-	}
-
-	t.Logf("AD search entries found: %d", len(sr.Entries))
-	if len(sr.Entries) == 0 {
-		t.Error("Received ZERO AD search entries")
-		return
-	}
-
-	// Get list of group members for each group found.
-	for _, group := range sr.Entries {
-		t.Log("Found group", group.DN)
-
-		rawMembers := group.GetAttributeValues(testConfigPublicAD.AttributeGroupMember)
-		if len(rawMembers) == 0 {
-			t.Log("Error: group member attribute returned no users")
-			continue
-		}
-
-		t.Logf("AD group contains %d members", len(rawMembers))
-
-		for _, entry := range rawMembers {
-			// get CN element from DN
-			parts := strings.Split(entry, ",")
-			if len(parts) == 0 {
-				continue
-			}
-			filter := fmt.Sprintf("(%s)", parts[0])
-
-			usr := ld.NewSearchRequest(
-				testConfigPublicAD.BaseDN,
-				ld.ScopeWholeSubtree, ld.NeverDerefAliases, 0, 0, false,
-				filter,
-				userAttrs,
-				nil,
-			)
-			ue, err := l.Search(usr)
-			if err != nil {
-				t.Log("Error: unable to execute directory search for group member: ", err.Error())
-				continue
-			}
-
-			if len(ue.Entries) > 0 {
-				for _, ur := range ue.Entries {
-					t.Logf("[%s] %s (%s %s) @ %s\n",
-						ur.GetAttributeValue(testConfigPublicAD.AttributeUserRDN),
-						ur.GetAttributeValue("cn"),
-						ur.GetAttributeValue(testConfigPublicAD.AttributeUserFirstname),
-						ur.GetAttributeValue(testConfigPublicAD.AttributeUserLastname),
-						ur.GetAttributeValue(testConfigPublicAD.AttributeUserEmail))
-				}
-			} else {
-				t.Log("group member search failed:", filter)
-			}
-		}
+	for _, u := range e {
+		t.Logf("[%s] %s (%s %s) @ %s\n",
+			u.RemoteID, u.CN, u.Firstname, u.Lastname, u.Email)
 	}
 }