cubicweb: comparison server/ldaputils.py

equal deleted inserted replaced

-:249b21722e5e
+:b59af20a868d
 import ldap
 from ldap.ldapobject import ReconnectLDAPObject
 from ldap.filter import filter_format
 from ldapurl import LDAPUrl
-from cubicweb import ValidationError, AuthenticationError
+from cubicweb import ValidationError, AuthenticationError, Binary
 from cubicweb.server.sources import ConnectionWrapper
 _ = unicode
 # search scopes
 You can set multiple groups by separating them by a comma.',
 'group': 'ldap-source', 'level': 1,
 }),
 ('user-attrs-map',
 {'type' : 'named',
-'default': {'uid': 'login', 'gecos': 'email'},
+'default': {'uid': 'login', 'gecos': 'email', 'userPassword': 'upassword'},
 'help': 'map from ldap user attributes to cubicweb attributes (with Active Directory, you want to use sAMAccountName:login,mail:email,givenName:firstname,sn:surname)',
 'group': 'ldap-source', 'level': 1,
 }),
 )
 def _process_ldap_item(self, dn, iterator):
 """Turn an ldap received item into a proper dict."""
 itemdict = {'dn': dn}
 for key, value in iterator:
-if not isinstance(value, str):
+if self.user_attrs.get(key) == 'upassword': # XXx better password detection
-try:
+itemdict[key] = Binary(value[0].encode('utf-8'))
-for i in range(len(value)):
+else:
-value[i] = unicode(value[i], 'utf8')
+for i, val in enumerate(value):
-except Exception:
+value[i] = unicode(val, 'utf-8', 'replace')
-pass
+if isinstance(value, list) and len(value) == 1:
-if isinstance(value, list) and len(value) == 1:
+itemdict[key] = value = value[0]
-itemdict[key] = value = value[0]
 return itemdict
 def _process_no_such_object(self, session, dn):
 """Some search return NO_SUCH_OBJECT error, handle this (usually because
 an object whose dn is no more existent in ldap as been encountered).

changeset 8387	b59af20a868d
parent 8384	98782f17dd84
child 8430	5bee87a14bb1