Sample Code for var/ndk/webBuildengine/tmp/viewable_samples/f91a68eb-ad37-4526-92b1-b1938f37b871/extensions/GetEffectivePrivileges.java

//Sample code file: var/ndk/webBuildengine/tmp/viewable_samples/f91a68eb-ad37-4526-92b1-b1938f37b871/extensions/GetEffectivePrivileges.java //Warning: This code has been marked up for HTML

/* **************************************************************************

 * $Novell: GetEffectivePrivileges.java,v 1.17 2003/08/21 11:51:41 $

 *

 * Copyright (C) 1999, 2000, 2001 Novell, Inc. All Rights Reserved.

 * 

 * THIS WORK IS SUBJECT TO U.S. AND INTERNATIONAL COPYRIGHT LAWS AND

 * TREATIES. USE AND REDISTRIBUTION OF THIS WORK IS SUBJECT TO THE LICENSE

 * AGREEMENT ACCOMPANYING THE SOFTWARE DEVELOPMENT KIT (SDK) THAT CONTAINS

 * THIS WORK. PURSUANT TO THE SDK LICENSE AGREEMENT, NOVELL HEREBY GRANTS TO

 * DEVELOPER A ROYALTY-FREE, NON-EXCLUSIVE LICENSE TO INCLUDE NOVELL'S SAMPLE

 * CODE IN ITS PRODUCT. NOVELL GRANTS DEVELOPER WORLDWIDE DISTRIBUTION RIGHTS

 * TO MARKET, DISTRIBUTE, OR SELL NOVELL'S SAMPLE CODE AS A COMPONENT OF

 * DEVELOPER'S PRODUCTS. NOVELL SHALL HAVE NO OBLIGATIONS TO DEVELOPER OR

 * DEVELOPER'S CUSTOMERS WITH RESPECT TO THIS CODE. 

 ***************************************************************************/

import com.novell.ldap.LDAPConnection;

import com.novell.ldap.LDAPException;

import com.novell.ldap.LDAPExtendedOperation;

import com.novell.ldap.LDAPExtendedResponse;

import com.novell.ldap.LDAPDSConstants;

import com.novell.ldap.extensions.GetEffectivePrivilegesRequest;

import com.novell.ldap.extensions.GetEffectivePrivilegesResponse;

import java.io.UnsupportedEncodingException;



/**

 *  The following sample demonstrates how get the rights that

 *  a trustee object has on the object.

 *

 */

public class GetEffectivePrivileges implements LDAPDSConstants {



    public static void main( String[] args ) {



        if (args.length != 6) {

            System.err.println("Usage:   java GetEffectivePrivileges "

                            + "<host Name> <port number> <login dn> "

                            + "\n         <password> <object dn> <trustee dn>");

            System.err.println("Example: GetEffectivePrivileges Acme.com 389 "

                            + "\"cn=Admin,o=Acme\" secret\n         "

                            + "\"cn=james,o=Acme\" "

                            + "\"cn=admin,o=Acme\"");

            System.exit(1);

        }



        int    ldapVersion = LDAPConnection.LDAP_V3;

        String ldapHost    = args[0];

        int    ldapPort    = Integer.parseInt(args[1]);

        String loginDN     = args[2];

        String password    = args[3];

        String objectDN    = args[4];

        String trusteeDN   = args[5];

        int    iRight      = 0;

        String sRight      = null;

        LDAPConnection ld  = new LDAPConnection();



        try {

           // connect to the server


            ld.connect( ldapHost, ldapPort);

           // bind to the server


            ld.bind( ldapVersion, loginDN, password.getBytes("UTF8") );

            System.out.println( "\nLogin succeeded");



           // user can choose from:


           //   1. object rights(represented as [Entry Rights]);


           //   2. attribute rights(represented as [All Attributes Rights];


           //   3. a single attribute name like 'acl'


           //String rightName = "[Entry Rights]"


           //String rightName = "[All Attributes Rights]";


            String rightName = "acl";



            LDAPExtendedOperation request = 

                new GetEffectivePrivilegesRequest(objectDN, 

                                                  trusteeDN, 

                                                  rightName);



            LDAPExtendedResponse response = ld.extendedOperation(request);            



            if ( response.getResultCode() == LDAPException.SUCCESS &&

                 ( response instanceof GetEffectivePrivilegesResponse )) {

                iRight = ((GetEffectivePrivilegesResponse)response).getPrivileges();                

                

                if ( rightName.equalsIgnoreCase("[Entry Rights]") )

                    sRight = "object rights";

                else if ( rightName.equalsIgnoreCase("[All Attributes Rights]"))

                    sRight = "attribute rights";

                else

                    sRight = rightName;

                    

                System.out.println("\"" + trusteeDN + "\" has the following" 

                    + " rights on \"" + objectDN + "\"s '" + sRight + "':");

                PrintRights( rightName, iRight );

                System.out.println("\nGet Effective Privileges succeeded");

            }                   

            else {                

                System.out.println("Get Effective Privileges Failed");

                throw new LDAPException( response.getErrorMessage(),

                                         response.getResultCode(),

                                         (String)null);

            }



            /* Done, so disconnect */

            if ( ld.isConnected() )

                ld.disconnect();

        }

        catch( LDAPException e ) {

            System.out.println( "Error: " + e.toString() );

        }

        catch( UnsupportedEncodingException e ) {

            System.out.println( "Error: " + e.toString() );

        }

    }

    

   // PrintRights() parses and prints the effective rights


    public static void PrintRights( String aName, int rights )

    {



        StringBuffer rString = new StringBuffer();

        

        if ( aName.equalsIgnoreCase("[Entry Rights]")) {

           // decode object rights


            rString.append((rights & LDAP_DS_ENTRY_BROWSE) != 0 ? 

                            "BrowseEntry: true; ":"BrowseEntry: false; ");

            rString.append((rights & LDAP_DS_ENTRY_ADD) != 0 ? 

                            "AddEntry: true; ":"AddEntry: false; ");

            rString.append((rights & LDAP_DS_ENTRY_DELETE) != 0 ? 

                            "DeleteEntry: true; ":"DeleteEntry: false; ");

            rString.append((rights & LDAP_DS_ENTRY_RENAME) != 0 ? 

                            "RenameEntry: true; ":"RenameEntry: false; ");

            rString.append((rights & LDAP_DS_ENTRY_SUPERVISOR) != 0 ? 

                            "Supervisor: true; ":"Supervisor: false; ");

            rString.append((rights & LDAP_DS_ENTRY_INHERIT_CTL) != 0 ? 

                           "Inherit_ctl: true.":"Inherit_ctl: false.");

         }

         else {

           // decode attribute rights no matter it's for 


           // all attributes or a single attribute


            rString.append((rights & LDAP_DS_ATTR_COMPARE) != 0 ?

                "CompareAttributes: true; ": "CompareAttributes: false; ");

            rString.append((rights & LDAP_DS_ATTR_READ) != 0 ?

                "ReadAttributes: true; ":"ReadAttributes: false; ");

            rString.append((rights & LDAP_DS_ATTR_WRITE) != 0 ?

                "Write/Add/DeleteAttributes: true; ":

                "Write/Add/DeleteAttributes: false; ");

            rString.append((rights & LDAP_DS_ATTR_SELF) != 0 ?

                "Add/DeleteSelf: true; ":"Add/DeleteSelf: false; ");

            rString.append((rights & LDAP_DS_ATTR_SUPERVISOR) != 0 ?

                "Supervisor: true.":"Supervisor: false.");            

         }         

             

        System.out.println(rString);

    }

}