2 exec smbscript "$0" ${1+"$@"}
4 test certin LDAP behaviours
8 var gc_ldb = ldb_init();
10 var options = GetOptions(ARGV,
13 "POPT_COMMON_CREDENTIALS");
14 if (options == undefined) {
15 println("Failed to parse options");
19 libinclude("base.js");
21 if (options.ARGV.length != 1) {
22 println("Usage: ldap.js <HOST>");
26 var host = options.ARGV[0];
28 function basic_tests(ldb, gc_ldb, base_dn, configuration_dn)
30 println("Running basic tests");
32 ldb.del("cn=ldaptestuser,cn=users," + base_dn);
35 dn: cn=ldaptestuser,cn=users," + base_dn + "
41 ok = ldb.del("cn=ldaptestuser,cn=users," + base_dn);
43 println(ldb.errstring());
47 dn: cn=ldaptestuser,cn=users," + base_dn + "
53 println(ldb.errstring());
59 dn: cn=ldaptestcomputer,cn=computers," + base_dn + "
64 ok = ldb.del("cn=ldaptestcomputer,cn=computers," + base_dn);
66 println(ldb.errstring());
70 dn: cn=ldaptestcomputer,cn=computers," + base_dn + "
75 println(ldb.errstring());
81 dn: cn=ldaptest2computer,cn=computers," + base_dn + "
84 userAccountControl: 4096
87 ok = ldb.del("cn=ldaptest2computer,cn=computers," + base_dn);
89 println(ldb.errstring());
93 dn: cn=ldaptest2computer,cn=computers," + base_dn + "
96 userAccountControl: 4096
99 println(ldb.errstring());
105 dn: cn=ldaptestuser2,cn=users," + base_dn + "
111 ok = ldb.del("cn=ldaptestuser2,cn=users," + base_dn);
113 println(ldb.errstring());
117 dn: cn=ldaptestuser2,cn=users," + base_dn + "
123 println(ldb.errstring());
129 dn: cn=ldaptestutf8user èùéìòà ,cn=users," + base_dn + "
133 ok = ldb.del("cn=ldaptestutf8user èùéìòà ,cn=users," + base_dn);
135 println(ldb.errstring());
139 dn: cn=ldaptestutf8user èùéìòà ,cn=users," + base_dn + "
143 println(ldb.errstring());
149 dn: cn=ldaptestutf8user2 èùéìòà ,cn=users," + base_dn + "
153 ok = ldb.del("cn=ldaptestutf8user2 èùéìòà ,cn=users," + base_dn);
155 println(ldb.errstring());
159 dn: cn=ldaptestutf8user2 èùéìòà ,cn=users," + base_dn + "
163 println(ldb.errstring());
168 println("Testing ldb.search for (&(cn=ldaptestuser)(objectClass=user))");
169 var res = ldb.search("(&(cn=ldaptestuser)(objectClass=user))");
170 if (res.length != 1) {
171 println("Could not find (&(cn=ldaptestuser)(objectClass=user))");
172 assert(res.length == 1);
175 assert(res[0].dn == "cn=ldaptestuser,cn=users," + base_dn);
176 assert(res[0].cn == "ldaptestuser");
177 assert(res[0].name == "ldaptestuser");
178 assert(res[0].objectClass[0] == "top");
179 assert(res[0].objectClass[1] == "person");
180 assert(res[0].objectClass[2] == "organizationalPerson");
181 assert(res[0].objectClass[3] == "user");
182 assert(res[0].objectGUID != undefined);
183 assert(res[0].whenCreated != undefined);
184 assert(res[0].objectCategory == "cn=Person,cn=Schema,cn=Configuration," + base_dn);
185 assert(res[0].sAMAccountType == 805306368);
186 // assert(res[0].userAccountControl == 546);
188 println("Testing ldb.search for (&(cn=ldaptestuser)(objectCategory=cn=person,cn=schema,cn=configuration," + base_dn + "))");
189 var res2 = ldb.search("(&(cn=ldaptestuser)(objectCategory=cn=person,cn=schema,cn=configuration," + base_dn + "))");
190 if (res2.length != 1) {
191 println("Could not find (&(cn=ldaptestuser)(objectCategory=cn=person,cn=schema,cn=configuration," + base_dn + "))");
192 assert(res2.length == 1);
195 assert(res[0].dn == res2[0].dn);
197 println("Testing ldb.search for (&(cn=ldaptestuser)(objectCategory=PerSon))");
198 var res3 = ldb.search("(&(cn=ldaptestuser)(objectCategory=PerSon))");
199 if (res3.length != 1) {
200 println("Could not find (&(cn=ldaptestuser)(objectCategory=PerSon))");
201 assert(res3.length == 1);
204 assert(res[0].dn == res3[0].dn);
206 println("Testing ldb.search for (&(cn=ldaptestuser)(objectCategory=PerSon)) in Global Catalog");
207 var res3gc = gc_ldb.search("(&(cn=ldaptestuser)(objectCategory=PerSon))");
208 if (res3gc.length != 1) {
209 println("Could not find (&(cn=ldaptestuser)(objectCategory=PerSon)) in Global Catalog");
210 assert(res3gc.length == 1);
213 assert(res[0].dn == res3gc[0].dn);
215 ok = ldb.del(res[0].dn);
217 println(ldb.errstring());
221 println("Testing ldb.search for (&(cn=ldaptestcomputer)(objectClass=user))");
222 var res = ldb.search("(&(cn=ldaptestcomputer)(objectClass=user))");
223 if (res.length != 1) {
224 println("Could not find (&(cn=ldaptestuser)(objectClass=user))");
225 assert(res.length == 1);
228 assert(res[0].dn == "cn=ldaptestcomputer,cn=computers," + base_dn);
229 assert(res[0].cn == "ldaptestcomputer");
230 assert(res[0].name == "ldaptestcomputer");
231 assert(res[0].objectClass[0] == "top");
232 assert(res[0].objectClass[1] == "person");
233 assert(res[0].objectClass[2] == "organizationalPerson");
234 assert(res[0].objectClass[3] == "user");
235 assert(res[0].objectClass[4] == "computer");
236 assert(res[0].objectGUID != undefined);
237 assert(res[0].whenCreated != undefined);
238 assert(res[0].objectCategory == "cn=Computer,cn=Schema,cn=Configuration," + base_dn);
239 // assert(res[0].sAMAccountType == 805306368);
240 // assert(res[0].userAccountControl == 546);
242 println("Testing ldb.search for (&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + "))");
243 var res2 = ldb.search("(&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + "))");
244 if (res2.length != 1) {
245 println("Could not find (&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + "))");
246 assert(res2.length == 1);
249 assert(res[0].dn == res2[0].dn);
251 println("Testing ldb.search for (&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + ")) in Global Catlog");
252 var res2gc = gc_ldb.search("(&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + "))");
253 if (res2gc.length != 1) {
254 println("Could not find (&(cn=ldaptestcomputer)(objectCategory=cn=computer,cn=schema,cn=configuration," + base_dn + ")) in Global Catlog");
255 assert(res2gc.length == 1);
258 assert(res[0].dn == res2[0].dn);
260 println("Testing ldb.search for (&(cn=ldaptestcomputer)(objectCategory=compuTER))");
261 var res3 = ldb.search("(&(cn=ldaptestcomputer)(objectCategory=compuTER))");
262 if (res3.length != 1) {
263 println("Could not find (&(cn=ldaptestcomputer)(objectCategory=compuTER))");
264 assert(res3.length == 1);
267 assert(res[0].dn == res3[0].dn);
269 println("Testing ldb.search for (&(cn=ldaptestcomputer)(objectCategory=compuTER)) in Global Catalog");
270 var res3gc = gc_ldb.search("(&(cn=ldaptestcomputer)(objectCategory=compuTER))");
271 if (res3gc.length != 1) {
272 println("Could not find (&(cn=ldaptestcomputer)(objectCategory=compuTER)) in Global Catalog");
273 assert(res3gc.length == 1);
276 assert(res[0].dn == res3gc[0].dn);
278 println("Testing ldb.search for (&(cn=ldaptestcomp*r)(objectCategory=compuTER))");
279 var res4 = ldb.search("(&(cn=ldaptestcomp*r)(objectCategory=compuTER))");
280 if (res4.length != 1) {
281 println("Could not find (&(cn=ldaptestcomp*r)(objectCategory=compuTER))");
282 assert(res4.length == 1);
285 assert(res[0].dn == res4[0].dn);
287 println("Testing ldb.search for (&(cn=ldaptestcomput*)(objectCategory=compuTER))");
288 var res5 = ldb.search("(&(cn=ldaptestcomput*)(objectCategory=compuTER))");
289 if (res5.length != 1) {
290 println("Could not find (&(cn=ldaptestcomput*)(objectCategory=compuTER))");
291 assert(res5.length == 1);
294 assert(res[0].dn == res5[0].dn);
296 println("Testing ldb.search for (&(cn=*daptestcomputer)(objectCategory=compuTER))");
297 var res6 = ldb.search("(&(cn=*daptestcomputer)(objectCategory=compuTER))");
298 if (res6.length != 1) {
299 println("Could not find (&(cn=*daptestcomputer)(objectCategory=compuTER))");
300 assert(res6.length == 1);
303 assert(res[0].dn == res6[0].dn);
305 ok = ldb.del(res[0].dn);
307 println(ldb.errstring());
311 println("Testing ldb.search for (&(cn=ldaptest2computer)(objectClass=user))");
312 var res = ldb.search("(&(cn=ldaptest2computer)(objectClass=user))");
313 if (res.length != 1) {
314 println("Could not find (&(cn=ldaptest2computer)(objectClass=user))");
315 assert(res.length == 1);
318 assert(res[0].dn == "cn=ldaptest2computer,cn=computers," + base_dn);
319 assert(res[0].cn == "ldaptest2computer");
320 assert(res[0].name == "ldaptest2computer");
321 assert(res[0].objectClass[0] == "top");
322 assert(res[0].objectClass[1] == "person");
323 assert(res[0].objectClass[2] == "organizationalPerson");
324 assert(res[0].objectClass[3] == "user");
325 assert(res[0].objectClass[4] == "computer");
326 assert(res[0].objectGUID != undefined);
327 assert(res[0].whenCreated != undefined);
328 assert(res[0].objectCategory == "cn=Computer,cn=Schema,cn=Configuration," + base_dn);
329 assert(res[0].sAMAccountType == 805306369);
330 // assert(res[0].userAccountControl == 4098);
333 println("Testing ldb.search for (&(cn=ldaptestUSer2)(objectClass=user))");
334 var res = ldb.search("(&(cn=ldaptestUSer2)(objectClass=user))");
335 if (res.length != 1) {
336 println("Could not find (&(cn=ldaptestUSer2)(objectClass=user))");
337 assert(res.length == 1);
340 assert(res[0].dn == "cn=ldaptestuser2,cn=users," + base_dn);
341 assert(res[0].cn == "ldaptestuser2");
342 assert(res[0].name == "ldaptestuser2");
343 assert(res[0].objectClass[0] == "top");
344 assert(res[0].objectClass[1] == "person");
345 assert(res[0].objectClass[2] == "organizationalPerson");
346 assert(res[0].objectClass[3] == "user");
347 assert(res[0].objectGUID != undefined);
348 assert(res[0].whenCreated != undefined);
350 ok = ldb.del(res[0].dn);
352 println(ldb.errstring());
356 println("Testing ldb.search for (&(cn=ldaptestutf8user ÈÙÉÌÒÀ)(objectClass=user))");
357 var res = ldb.search("(&(cn=ldaptestutf8user ÈÙÉÌÒÀ)(objectClass=user))");
359 if (res.length != 1) {
360 println("Could not find (&(cn=ldaptestutf8user ÈÙÉÌÒÀ)(objectClass=user))");
361 assert(res.length == 1);
364 assert(res[0].dn == "cn=ldaptestutf8user èùéìòà,cn=users," + base_dn);
365 assert(res[0].cn == "ldaptestutf8user èùéìòà");
366 assert(res[0].name == "ldaptestutf8user èùéìòà");
367 assert(res[0].objectClass[0] == "top");
368 assert(res[0].objectClass[1] == "person");
369 assert(res[0].objectClass[2] == "organizationalPerson");
370 assert(res[0].objectClass[3] == "user");
371 assert(res[0].objectGUID != undefined);
372 assert(res[0].whenCreated != undefined);
374 ok = ldb.del(res[0].dn);
376 println(ldb.errstring());
380 println("Testing ldb.search for (&(cn=ldaptestutf8user2 ÈÙÉÌÒÀ)(objectClass=user))");
381 var res = ldb.search("(&(cn=ldaptestutf8user ÈÙÉÌÒÀ)(objectClass=user))");
383 if (res.length != 1) {
384 println("Could not find (expect space collapse, win2k3 fails) (&(cn=ldaptestutf8user2 ÈÙÉÌÒÀ)(objectClass=user))");
386 assert(res[0].dn == "cn=ldaptestutf8user2 èùéìòà,cn=users," + base_dn);
387 assert(res[0].cn == "ldaptestutf8user2 èùéìòà");
390 println("Testing for highestCommittedUSN");
391 var attrs = new Array("highestCommittedUSN");
392 var res = ldb.search("", "", ldb.SCOPE_BASE, attrs);
393 assert(res.length == 1);
394 assert(res[0].highestCommittedUSN != undefined);
395 assert(res[0].highestCommittedUSN != 0);
397 println("Testing that we can't get at the configuration DN from the main search base");
398 var attrs = new Array("cn");
399 var res = ldb.search("objectClass=crossRef", base_dn, ldb.SCOPE_SUBTREE, attrs);
400 assert (res.length == 0);
402 println("Testing that we do find configuration elements in the global catlog");
403 var attrs = new Array("cn");
404 var res = gc_ldb.search("objectClass=crossRef", base_dn, ldb.SCOPE_SUBTREE, attrs);
405 assert (res.length > 0);
407 println("Testing that we do find configuration elements and user elements at the same time");
408 var attrs = new Array("cn");
409 var res = gc_ldb.search("(|(objectClass=crossRef)(objectClass=person))", base_dn, ldb.SCOPE_SUBTREE, attrs);
410 assert (res.length > 0);
412 println("Testing that we do find configuration elements in the global catlog, with the configuration basedn");
413 var attrs = new Array("cn");
414 var res = gc_ldb.search("objectClass=crossRef", configuration_dn, ldb.SCOPE_SUBTREE, attrs);
415 assert (res.length > 0);
417 println("Testing that we can get at the configuration DN on the main LDAP port");
418 var attrs = new Array("cn");
419 var res = ldb.search("objectClass=crossRef", configuration_dn, ldb.SCOPE_SUBTREE, attrs);
420 assert (res.length > 0);
424 function find_basedn(ldb)
426 var attrs = new Array("defaultNamingContext");
427 var res = ldb.search("", "", ldb.SCOPE_BASE, attrs);
428 assert(res.length == 1);
429 return res[0].defaultNamingContext;
432 function find_configurationdn(ldb)
434 var attrs = new Array("configurationNamingContext");
435 var res = ldb.search("", "", ldb.SCOPE_BASE, attrs);
436 assert(res.length == 1);
437 return res[0].configurationNamingContext;
440 /* use command line creds if available */
441 ldb.credentials = options.get_credentials();
442 gc_ldb.credentials = options.get_credentials();
444 var ok = ldb.connect("ldap://" + host);
445 var base_dn = find_basedn(ldb);
446 var configuration_dn = find_configurationdn(ldb);
448 printf("baseDN: %s\n", base_dn);
450 var ok = gc_ldb.connect("ldap://" + host + ":3268");
452 basic_tests(ldb, gc_ldb, base_dn, configuration_dn)