Add re-connect and extracted ldap connection to connect per node vs per message.

jvohwinkel · jvohwinkel · commit 27b389d373ac · 2019-06-17T16:44:44.000-05:00
diff --git a/transports/ldap/index.js b/transports/ldap/index.js
@@ -1,13 +1,35 @@
+const ldap = require('./ldap');
 module.exports = function (RED) {
     'use strict';
 
     function ldapNode (n) {
         RED.nodes.createNode(this, n);
+        let node = this;
 
         this.options = {
             host: n.host || 'ldap://localhost',
             port: n.port || 389
         };
+
+        node.status({ });
+
+        this.connect = function(config, node) {
+            node.status({ fill:"blue",shape:"dot",text: 'connecting...' });
+            let url = `${config.options.host}:${config.options.port}`;
+            ldap.connect(url, config.credentials.username, config.credentials.password).then( (res, err) => {
+                node.status({ fill: 'green', shape: 'dot', text: 'connected' });
+            });
+        };
+
+        this.on('close', function (done) {
+            ldap.disconnect();
+            node.status({ });
+            // if (this.tick) { clearTimeout(this.tick); }
+            // if (this.check) { clearInterval(this.check); }
+            // node.connected = false;
+            // node.emit("state"," ");
+            done();
+        });
     }
 
     function ldapUpdateNode (n) {
@@ -17,27 +39,28 @@ module.exports = function (RED) {
         this.attribute = n.attribute;
         this.value = n.value;
         this.ldapConfig = RED.nodes.getNode(n.ldap);
-
         let node = this;
+
+        this.ldapConfig.connect(this.ldapConfig, node);
+
         node.on('input', async function (msg) {
             node.operation = msg.operation || node.operation;
             node.dn = msg.dn || node.dn;
             node.attribute = msg.attribute || node.attribute;
             node.value = msg.payload || node.value;
 
-            let ldap = require('./ldap');
-            node.status({ fill:"blue",shape:"dot",text: 'connecting' });
             try {
-                let url = `${node.ldapConfig.options.host}:${node.ldapConfig.options.port}`;
-                await ldap.connect(url, node.ldapConfig.credentials.username, node.ldapConfig.credentials.password);
-                node.status({ fill: 'green', shape: 'dot', text: 'connected' });
+                node.status({ fill: 'blue', shape: 'dot', text: 'running update' });
+
+                let update = await ldap.update(node.dn, node.operation, node.attribute, node.value);
+                msg.ldapStatus = update;
 
-                await ldap.update(node.dn, node.operation, node.attribute, node.value);
+                node.send(msg);
 
                 node.status({});
             } catch (err) {
                 node.status({ fill: 'red', shape: 'ring', text: 'failed' });
-                node.error(err ? err.toString() : 'Unknown error' );
+                node.error(err ? err : 'Unknown error' );
             }
         });
     }
diff --git a/transports/ldap/ldap.js b/transports/ldap/ldap.js
@@ -1,7 +1,22 @@
 const ldap = require('ldapjs');
+const uuidParse = require('../tools/uuid-parse');
+
 module.exports = {
     client: undefined,
+    defaultAttributes: {
+        user: [
+            'dn', 'userPrincipalName', 'sAMAccountName', 'objectSID', 'mail',
+            'lockoutTime', 'whenCreated', 'pwdLastSet', 'userAccountControl',
+            'employeeID', 'sn', 'givenName', 'initials', 'cn', 'displayName',
+            'comment', 'description', 'title', 'department', 'company'
+        ],
+        group: [
+            'dn', 'cn', 'description'
+        ]
+    },
+    baseDn: '',
     /**
+     * @public
      * Connect to LDAP server
      * @param {string} url      URL of LDAP server
      * @param {string} username UPN or dn of user to bind to instance with
@@ -13,16 +28,29 @@ module.exports = {
         let that = this;
         this.client = ldap.createClient({
             url,
+            reconnect: true,
             ...options
         });
+        this.client.on('error', function(err) {
+            console.warn('LDAP connection failed, but fear not, it will reconnect OK', err);
+        });
         return new Promise(function (resolve, reject) {
+            if (that.client.connected) return resolve();
             that.client.bind(username, password, function(err, conn) {
-                if (err) return reject(err);
+                if (err) {
+                    return reject(err);
+                }
                 return resolve(conn);
             });
         });
     },
+    disconnect: function () {
+        if (this.client) {
+            this.client.unbind();
+        }
+    },
     /**
+     * @public
      * Perform an update action on a specific LDAP object
      * @param {string} dn         DN of the object
      * @param {string} operation  Operation type to perform
@@ -41,12 +69,63 @@ module.exports = {
 
         return new Promise(function (resolve, reject) {
             that.client.modify(dn, change, function(err, res) {
-                console.log('');
                 if (err) {
+
                     return reject({ success: false, error: err });
                 }
                 return resolve({ success: true });
             });
         });
+    },
+    /**
+     * @public
+     * @param {string} dn       base dn for the search
+     * @param {object} userOpts additional user options for search query
+     * @returns {Promise<array(object)>}
+     */
+    search: async function (dn, userOpts) {
+        let opts = {
+            // filter: '&(dn=CN=Jordan Vohwinkel,OU=Test,OU=Users,OU=NTech,OU=BOE Companies,DC=Corp,DC=BOETeams,DC=com)',
+            filter: 'cn=Jordan Vohwinkel',
+            scope: 'sub',
+            attributes: this.defaultAttributes.user
+        };
+        // Overwrite default attributes with user defined
+        Object.assign(opts, userOpts);
+        return new Promise(function (resolve, reject) {
+            this.results = [];
+            let that = this;
+
+            this.client.search(dn, opts, function (err, res) {
+                if (err) {
+                    console.log(err);
+                }
+                res.on('searchEntry', function (entry) {
+                    let res = entry.object;
+                    delete res.controls
+
+                    this.onSearchEntry(res, entry.raw, function (item) {
+                        that.results.push(item);
+                    })
+
+                });
+                res.on('searchReference', function () { reject('Referral chasing not implemented.') });
+                res.on('error', function(err) { return reject(err); });
+                res.on('end', function(result) { return resolve(that.results); });
+            })
+        });
+    },
+    /**
+     * @private
+     * Default search entry parser.
+     * @param {object} item       Item returned from AD
+     * @param {object} raw        Raw return object
+     * @param {function} callback Callback when parsing is complete
+     */
+    onSearchEntry: function(item, raw, callback) {
+        if (raw.hasOwnProperty('objectSid')) item.objectSid = uuidParse.unparse(raw.objectSid);
+        if (raw.hasOwnProperty("objectGUID")) entry.objectGUID = uuidParse.unparse(raw.objectGUID);
+        if (raw.hasOwnProperty("mS-DS-ConsistencyGuid")) entry['mS-DS-ConsistencyGuid'] = uuidParse.unparse(raw['mS-DS-ConsistencyGuid']);
+        callback(item);
     }
-}
+};
diff --git a/transports/tools/uuid-parse.js b/transports/tools/uuid-parse.js
@@ -0,0 +1,41 @@
+'use strict';
+
+// Maps for number <-> hex string conversion
+let _byteToHex = [];
+let _hexToByte = {};
+for (let i = 0; i < 256; i++) {
+    _byteToHex[i] = (i + 0x100).toString(16).substr(1);
+    _hexToByte[_byteToHex[i]] = i;
+}
+
+// **`parse()` - Parse a UUID into it's component bytes**
+function parse(s, buf, offset) {
+    let i = (buf && offset) || 0;
+    let ii = 0;
+
+    buf = buf || [];
+    s.toLowerCase().replace(/[0-9a-f]{2}/g, function(oct) {
+        if (ii < 16) { buf[i + ii++] = _hexToByte[oct]; }
+    });
+
+    // Zero out remaining bytes if string was short
+    while (ii < 16) { buf[i + ii++] = 0; }
+
+    return buf;
+}
+
+// **`unparse()` - Convert UUID byte array (ala parse()) into a string**
+function unparse(buf, offset) {
+    let i = offset || 0;
+    let bth = _byteToHex;
+    return  bth[buf[i++]] + bth[buf[i++]] +
+        bth[buf[i++]] + bth[buf[i++]] + '-' +
+        bth[buf[i++]] + bth[buf[i++]] + '-' +
+        bth[buf[i++]] + bth[buf[i++]] + '-' +
+        bth[buf[i++]] + bth[buf[i++]] + '-' +
+        bth[buf[i++]] + bth[buf[i++]] +
+        bth[buf[i++]] + bth[buf[i++]] +
+        bth[buf[i++]] + bth[buf[i++]];
+}
+
+module.exports = { parse, unparse };
