add better ldap response error handling
This commit is contained in:
		
							
								
								
									
										31
									
								
								app/app.go
									
									
									
									
									
								
							
							
						
						
									
										31
									
								
								app/app.go
									
									
									
									
									
								
							| @@ -15,7 +15,7 @@ import ( | |||||||
| ) | ) | ||||||
|  |  | ||||||
| var LDAPSessions map[string]*LDAPClient | var LDAPSessions map[string]*LDAPClient | ||||||
| var APIVersion = "1.0.3" | var APIVersion = "1.0.4" | ||||||
|  |  | ||||||
| func Run() { | func Run() { | ||||||
| 	gob.Register(LDAPClient{}) | 	gob.Register(LDAPClient{}) | ||||||
| @@ -25,7 +25,10 @@ func Run() { | |||||||
| 	configPath := flag.String("config", "config.json", "path to config.json file") | 	configPath := flag.String("config", "config.json", "path to config.json file") | ||||||
| 	flag.Parse() | 	flag.Parse() | ||||||
|  |  | ||||||
| 	config := GetConfig(*configPath) | 	config, err := GetConfig(*configPath) | ||||||
|  | 	if err != nil { | ||||||
|  | 		log.Fatal("Error when reading config file: ", err) | ||||||
|  | 	} | ||||||
| 	log.Printf("Read in config from %s\n", *configPath) | 	log.Printf("Read in config from %s\n", *configPath) | ||||||
|  |  | ||||||
| 	gin.SetMode(gin.ReleaseMode) | 	gin.SetMode(gin.ReleaseMode) | ||||||
| @@ -109,7 +112,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.GetAllUsers() | 		status, res := LDAPSession.GetAllUsers() | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.POST("/users/:userid", func(c *gin.Context) { | 	router.POST("/users/:userid", func(c *gin.Context) { | ||||||
| @@ -135,7 +138,7 @@ func Run() { | |||||||
| 				return | 				return | ||||||
| 			} | 			} | ||||||
| 			status, res = LDAPSession.AddUser(c.Param("userid"), body) | 			status, res = LDAPSession.AddUser(c.Param("userid"), body) | ||||||
| 			c.JSON(status, res) | 			c.JSON(status, HandleResponse(res)) | ||||||
| 		} else { // user already exists, attempt to modify user | 		} else { // user already exists, attempt to modify user | ||||||
| 			var body UserOptional                       // all user attributes optional for new users | 			var body UserOptional                       // all user attributes optional for new users | ||||||
| 			if err := c.ShouldBind(&body); err != nil { // attempt to bind user data | 			if err := c.ShouldBind(&body); err != nil { // attempt to bind user data | ||||||
| @@ -143,7 +146,7 @@ func Run() { | |||||||
| 				return | 				return | ||||||
| 			} | 			} | ||||||
| 			status, res = LDAPSession.ModUser(c.Param("userid"), body) | 			status, res = LDAPSession.ModUser(c.Param("userid"), body) | ||||||
| 			c.JSON(status, res) | 			c.JSON(status, HandleResponse(res)) | ||||||
| 		} | 		} | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| @@ -162,7 +165,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.GetUser(c.Param("userid")) | 		status, res := LDAPSession.GetUser(c.Param("userid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.DELETE("/users/:userid", func(c *gin.Context) { | 	router.DELETE("/users/:userid", func(c *gin.Context) { | ||||||
| @@ -180,7 +183,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.DelUser(c.Param("userid")) | 		status, res := LDAPSession.DelUser(c.Param("userid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.GET("/groups", func(c *gin.Context) { | 	router.GET("/groups", func(c *gin.Context) { | ||||||
| @@ -198,7 +201,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.GetAllGroups() | 		status, res := LDAPSession.GetAllGroups() | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.GET("/groups/:groupid", func(c *gin.Context) { | 	router.GET("/groups/:groupid", func(c *gin.Context) { | ||||||
| @@ -216,7 +219,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.GetGroup(c.Param("groupid")) | 		status, res := LDAPSession.GetGroup(c.Param("groupid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.POST("/groups/:groupid", func(c *gin.Context) { | 	router.POST("/groups/:groupid", func(c *gin.Context) { | ||||||
| @@ -243,10 +246,10 @@ func Run() { | |||||||
| 		status, res := LDAPSession.GetGroup(c.Param("groupid")) | 		status, res := LDAPSession.GetGroup(c.Param("groupid")) | ||||||
| 		if status != 200 && ldap.IsErrorWithCode(res["error"].(error), ldap.LDAPResultNoSuchObject) { // group does not already exist, create new group | 		if status != 200 && ldap.IsErrorWithCode(res["error"].(error), ldap.LDAPResultNoSuchObject) { // group does not already exist, create new group | ||||||
| 			status, res = LDAPSession.AddGroup(c.Param("groupid"), body) | 			status, res = LDAPSession.AddGroup(c.Param("groupid"), body) | ||||||
| 			c.JSON(status, res) | 			c.JSON(status, HandleResponse(res)) | ||||||
| 		} else { // group already exists, attempt to modify group | 		} else { // group already exists, attempt to modify group | ||||||
| 			status, res = LDAPSession.ModGroup(c.Param("groupid"), body) | 			status, res = LDAPSession.ModGroup(c.Param("groupid"), body) | ||||||
| 			c.JSON(status, res) | 			c.JSON(status, HandleResponse(res)) | ||||||
| 		} | 		} | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| @@ -265,7 +268,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.DelGroup(c.Param("groupid")) | 		status, res := LDAPSession.DelGroup(c.Param("groupid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.POST("/groups/:groupid/members/:userid", func(c *gin.Context) { | 	router.POST("/groups/:groupid/members/:userid", func(c *gin.Context) { | ||||||
| @@ -283,7 +286,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.AddUserToGroup(c.Param("userid"), c.Param("groupid")) | 		status, res := LDAPSession.AddUserToGroup(c.Param("userid"), c.Param("groupid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	router.DELETE("/groups/:groupid/members/:userid", func(c *gin.Context) { | 	router.DELETE("/groups/:groupid/members/:userid", func(c *gin.Context) { | ||||||
| @@ -301,7 +304,7 @@ func Run() { | |||||||
| 		} | 		} | ||||||
|  |  | ||||||
| 		status, res := LDAPSession.DelUserFromGroup(c.Param("userid"), c.Param("groupid")) | 		status, res := LDAPSession.DelUserFromGroup(c.Param("userid"), c.Param("groupid")) | ||||||
| 		c.JSON(status, res) | 		c.JSON(status, HandleResponse(res)) | ||||||
| 	}) | 	}) | ||||||
|  |  | ||||||
| 	log.Printf("Starting LDAP API on port %s\n", strconv.Itoa(config.ListenPort)) | 	log.Printf("Starting LDAP API on port %s\n", strconv.Itoa(config.ListenPort)) | ||||||
|   | |||||||
							
								
								
									
										11
									
								
								app/ldap.go
									
									
									
									
									
								
							
							
						
						
									
										11
									
								
								app/ldap.go
									
									
									
									
									
								
							| @@ -1,6 +1,7 @@ | |||||||
| package app | package app | ||||||
|  |  | ||||||
| import ( | import ( | ||||||
|  | 	"errors" | ||||||
| 	"fmt" | 	"fmt" | ||||||
| 	"net/http" | 	"net/http" | ||||||
|  |  | ||||||
| @@ -97,7 +98,10 @@ func (l LDAPClient) AddUser(uid string, user UserRequired) (int, gin.H) { | |||||||
| 	if user.CN == "" || user.SN == "" || user.UserPassword == "" || user.Mail == "" { | 	if user.CN == "" || user.SN == "" || user.UserPassword == "" || user.Mail == "" { | ||||||
| 		return http.StatusBadRequest, gin.H{ | 		return http.StatusBadRequest, gin.H{ | ||||||
| 			"ok": false, | 			"ok": false, | ||||||
| 			"error": "Missing one of required fields: cn, sn, mail, userpassword", | 			"error": ldap.NewError( | ||||||
|  | 				ldap.LDAPResultUnwillingToPerform, | ||||||
|  | 				errors.New("missing one of required fields: cn, sn, mail, userpassword"), | ||||||
|  | 			), | ||||||
| 		} | 		} | ||||||
| 	} | 	} | ||||||
|  |  | ||||||
| @@ -129,7 +133,10 @@ func (l LDAPClient) ModUser(uid string, user UserOptional) (int, gin.H) { | |||||||
| 	if user.CN == "" && user.SN == "" && user.UserPassword == "" && user.Mail == "" { | 	if user.CN == "" && user.SN == "" && user.UserPassword == "" && user.Mail == "" { | ||||||
| 		return http.StatusBadRequest, gin.H{ | 		return http.StatusBadRequest, gin.H{ | ||||||
| 			"ok": false, | 			"ok": false, | ||||||
| 			"error": "Requires one of fields: cn, sn, mail, userpassword", | 			"error": ldap.NewError( | ||||||
|  | 				ldap.LDAPResultUnwillingToPerform, | ||||||
|  | 				errors.New("requires one of fields: cn, sn, mail, userpassword"), | ||||||
|  | 			), | ||||||
| 		} | 		} | ||||||
| 	} | 	} | ||||||
|  |  | ||||||
|   | |||||||
							
								
								
									
										24
									
								
								app/utils.go
									
									
									
									
									
								
							
							
						
						
									
										24
									
								
								app/utils.go
									
									
									
									
									
								
							| @@ -2,7 +2,6 @@ package app | |||||||
|  |  | ||||||
| import ( | import ( | ||||||
| 	"encoding/json" | 	"encoding/json" | ||||||
| 	"log" |  | ||||||
| 	"os" | 	"os" | ||||||
|  |  | ||||||
| 	"github.com/gin-gonic/gin" | 	"github.com/gin-gonic/gin" | ||||||
| @@ -23,17 +22,17 @@ type Config struct { | |||||||
| 	} | 	} | ||||||
| } | } | ||||||
|  |  | ||||||
| func GetConfig(configPath string) Config { | func GetConfig(configPath string) (Config, error) { | ||||||
| 	content, err := os.ReadFile(configPath) | 	content, err := os.ReadFile(configPath) | ||||||
| 	if err != nil { | 	if err != nil { | ||||||
| 		log.Fatal("Error when opening config file: ", err) | 		return Config{}, err | ||||||
| 	} | 	} | ||||||
| 	var config Config | 	var config Config | ||||||
| 	err = json.Unmarshal(content, &config) | 	err = json.Unmarshal(content, &config) | ||||||
| 	if err != nil { | 	if err != nil { | ||||||
| 		log.Fatal("Error during parsing config file: ", err) | 		return Config{}, err | ||||||
| 	} | 	} | ||||||
| 	return config | 	return config, nil | ||||||
| } | } | ||||||
|  |  | ||||||
| type Login struct { // login body struct | type Login struct { // login body struct | ||||||
| @@ -126,3 +125,18 @@ type UserRequired struct { // add or modify user body struct | |||||||
|  |  | ||||||
| type Group struct { // add or modify group body struct | type Group struct { // add or modify group body struct | ||||||
| } | } | ||||||
|  |  | ||||||
|  | func HandleResponse(response gin.H) gin.H { | ||||||
|  | 	if response["error"] != nil { | ||||||
|  | 		err := response["error"].(error) | ||||||
|  | 		LDAPerr := err.(*ldap.Error) | ||||||
|  | 		response["error"] = gin.H{ | ||||||
|  | 			"code":    LDAPerr.ResultCode, | ||||||
|  | 			"result":  ldap.LDAPResultCodeMap[LDAPerr.ResultCode], | ||||||
|  | 			"message": LDAPerr.Err.Error(), | ||||||
|  | 		} | ||||||
|  | 		return response | ||||||
|  | 	} else { | ||||||
|  | 		return response | ||||||
|  | 	} | ||||||
|  | } | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user