Beispiel #1
0
/*
 * get certs
 * return cert array
 */
DWORD
VmDirRESTGetRootCerts(
    void*   pIn,
    void**  ppOut
    )
{
    DWORD dwError = 0;
    PVDIR_REST_OPERATION pRestOp = NULL;
    PSTR pszCACNFilter = NULL;
    BOOLEAN bDetail = FALSE;
    PVMDIR_CA_CERT_ARRAY pCerts = NULL;
    json_t* pjCerts = NULL;
    PCSTR pszBaseDN = NULL;

    if (!pIn)
    {
        dwError = VMDIR_ERROR_INVALID_PARAMETER;
        BAIL_ON_VMDIR_ERROR(dwError);
    }

    pRestOp = (PVDIR_REST_OPERATION)pIn;

    dwError = VmDirRESTGetStrParam(
                  pRestOp,
                  "ca_cn_filter",
                  &pszCACNFilter,
                  FALSE);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirRESTGetBoolParam(
                  pRestOp,
                  "detail",
                  &bDetail,
                  FALSE);
    BAIL_ON_VMDIR_ERROR(dwError);

    pszBaseDN = VmDirSearchDomainDN(pRestOp->pConn->AccessInfo.pszNormBindedDn);
    if (IsNullOrEmptyString(pszBaseDN))
    {
        BAIL_WITH_VMDIR_ERROR(dwError, VMDIR_ERROR_INVALID_PARAMETER);
    }

    dwError = VmDirGetCACerts(
                  pRestOp->pConn,
                  pszBaseDN,
                  pszCACNFilter,
                  bDetail,
                  &pCerts);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = _VmDirGetCertsJson(pCerts, bDetail, &pjCerts);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirRESTResultSetObjData(
                  pRestOp->pResult,
                  "certs",
                  pjCerts);
    BAIL_ON_VMDIR_ERROR(dwError);

cleanup:
    VmDirFreeCACertArray(pCerts);
    VMDIR_SET_REST_RESULT(pRestOp, NULL, dwError, NULL);
    VMDIR_SAFE_FREE_MEMORY(pszCACNFilter);
    return dwError;

error:
    VMDIR_LOG_ERROR(
            VMDIR_LOG_MASK_ALL,
            "%s failed, error (%d)",
            __FUNCTION__,
            dwError);
    if (pjCerts)
    {
        json_decref(pjCerts);
    }
    goto cleanup;
}
Beispiel #2
0
DWORD
VmDirRESTObjectDelete(
    void*   pIn,
    void**  ppOut
    )
{
    DWORD   dwError = 0;
    PSTR    pszTenant = NULL;
    PSTR    pszDN = NULL;
    BOOLEAN bRecursive = FALSE;
    PVDIR_REST_OPERATION    pRestOp = NULL;
    PVDIR_OPERATION         pDeleteOp = NULL;

    if (!pIn)
    {
        dwError = VMDIR_ERROR_INVALID_PARAMETER;
        BAIL_ON_VMDIR_ERROR(dwError);
    }

    pRestOp = (PVDIR_REST_OPERATION)pIn;

    dwError = VmDirRESTGetBoolParam(pRestOp, "recursive", &bRecursive, FALSE);
    BAIL_ON_VMDIR_ERROR(dwError);

    // TODO implement recursive option
    dwError = bRecursive ? VMDIR_ERROR_UNWILLING_TO_PERFORM : 0;
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirExternalOperationCreate(
            NULL, -1, LDAP_REQ_DELETE, pRestOp->pConn, &pDeleteOp);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirRESTGetObjectTenantParam(pRestOp, &pszTenant);
    BAIL_ON_VMDIR_ERROR(dwError)

    dwError = VmDirRESTDecodeObjectPathToDN(
            pRestOp->pszSubPath, pszTenant, &pszDN);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirStringToBervalContent(pszDN, &pDeleteOp->reqDn);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirStringToBervalContent(pszDN, &pDeleteOp->request.deleteReq.dn);
    BAIL_ON_VMDIR_ERROR(dwError);

    dwError = VmDirMLDelete(pDeleteOp);
    BAIL_ON_VMDIR_ERROR(dwError);

cleanup:
    VMDIR_SET_REST_RESULT(pRestOp, pDeleteOp, dwError, NULL);
    VMDIR_SAFE_FREE_MEMORY(pszTenant);
    VMDIR_SAFE_FREE_MEMORY(pszDN);
    VmDirFreeOperation(pDeleteOp);
    return dwError;

error:
    VMDIR_LOG_ERROR(
            VMDIR_LOG_MASK_ALL,
            "%s failed, error (%d)",
            __FUNCTION__,
            dwError);

    goto cleanup;
}
Beispiel #3
0
/*
 * refresh account password
 * returns:
 * if force is not specified and password is not aged
 *  {"refreshed":"false"}
 * if force was specified or password aged
 *  {"refreshed":"true","password":"******"}
*/
DWORD
VmDirRESTRefreshPassword(
    void*   pIn,
    void**  ppOut
    )
{
    DWORD dwError = 0;
    PVDIR_REST_OPERATION pRestOp = NULL;
    BOOLEAN bRefreshPassword = FALSE;
    PSTR pszNewPassword = NULL;
    BOOLEAN bRefreshed = FALSE;

    if (!pIn)
    {
        dwError = VMDIR_ERROR_INVALID_PARAMETER;
        BAIL_ON_VMDIR_ERROR(dwError);
    }

    pRestOp = (PVDIR_REST_OPERATION)pIn;

    dwError = VmDirRESTGetBoolParam(
                  pRestOp,
                  "force",
                  &bRefreshPassword,
                  TRUE);
    BAIL_ON_VMDIR_ERROR(dwError)

    dwError = VmDirRefreshPassword(
                  pRestOp->pConn,
                  bRefreshPassword,
                  &pszNewPassword);
    BAIL_ON_VMDIR_ERROR(dwError);

    VMDIR_LOG_DEBUG(
            VMDIR_LOG_MASK_ALL,
            "%s: force: %d, %s",
            __FUNCTION__, bRefreshPassword,
            pRestOp->pConn->AccessInfo.pszNormBindedDn);

    if (!IsNullOrEmptyString(pszNewPassword))
    {
        bRefreshed = TRUE;
        dwError = VmDirRESTResultSetStrData(
                      pRestOp->pResult,
                      "password",
                      pszNewPassword);
        BAIL_ON_VMDIR_ERROR(dwError);
    }

    dwError = VmDirRESTResultSetBooleanData(
                  pRestOp->pResult,
                  "refreshed",
                  bRefreshed);
    BAIL_ON_VMDIR_ERROR(dwError);

cleanup:
    VMDIR_SET_REST_RESULT(pRestOp, NULL, dwError, NULL);
    VMDIR_SAFE_FREE_MEMORY(pszNewPassword);
    return dwError;

error:
    VMDIR_LOG_ERROR(
            VMDIR_LOG_MASK_ALL,
            "%s failed, error (%d)",
            __FUNCTION__,
            dwError);

    goto cleanup;
}