/*
 * Lookup helper class.
 */

package com.c2kernel.lookup.ldap;

//import netscape.ldap.*;
//import netscape.ldap.util.*;
import com.c2kernel.common.ObjectAlreadyExistsException;
import com.c2kernel.common.ObjectCannotBeUpdated;
import com.c2kernel.common.ObjectNotFoundException;
import com.c2kernel.utils.Logger;
import com.novell.ldap.LDAPAttribute;
import com.novell.ldap.LDAPAttributeSet;
import com.novell.ldap.LDAPConnection;
import com.novell.ldap.LDAPDN;
import com.novell.ldap.LDAPEntry;
import com.novell.ldap.LDAPException;
import com.novell.ldap.LDAPModification;
import com.novell.ldap.LDAPSearchConstraints;
import com.novell.ldap.LDAPSearchResults;

/**
 * @version $Revision: 1.74 $ $Date: 2006/03/03 13:52:21 $
 * @author  $Author: abranson $
 */

final public class LDAPLookupUtils
{
    static public LDAPEntry getEntry(LDAPConnection ld, String dn,int dereference)
        throws ObjectNotFoundException
    {
        try {
			LDAPSearchConstraints searchCons = new LDAPSearchConstraints();
	        searchCons.setBatchSize(0);
    	    searchCons.setDereference(dereference);
            LDAPEntry thisEntry = ld.read(dn,searchCons);
            if (thisEntry != null) return thisEntry;
        } catch (LDAPException ex) {
            throw new ObjectNotFoundException("LDAP Exception: "+ex.getMessage(), "");
        }
        throw new ObjectNotFoundException(dn+" does not exist", "");

    }

    //Given a DN, return an LDAP Entry
    static public LDAPEntry getEntry(LDAPConnection ld, String dn)
        throws ObjectNotFoundException
    {
        return getEntry(ld, dn, LDAPSearchConstraints.DEREF_NEVER);
    }

    static public String getFirstAttributeValue(LDAPEntry anEntry, String attribute) throws ObjectNotFoundException
    {
        LDAPAttribute attr = anEntry.getAttribute(attribute);
        if (attr==null)
            throw new ObjectNotFoundException("No attributes named '"+attribute+"'", "");
        return (String)attr.getStringValues().nextElement();
    }

    static public String[] getAllAttributeValues(LDAPEntry anEntry, String attribute) throws ObjectNotFoundException
    {
        LDAPAttribute attr = anEntry.getAttribute(attribute);
        if (attr!=null)
            return attr.getStringValueArray();

        throw new ObjectNotFoundException("No attributes named '"+attribute+"'", "");

    }

    static public boolean existsAttributeValue(LDAPEntry anEntry, String attribute, String value)
    {
        LDAPAttribute attr = anEntry.getAttribute(attribute);
        if (attr!=null)
        {
            String[] attrValues = new String[attr.size()];
            attrValues = attr.getStringValueArray();
            for (int i=0;i<attr.size();i++)
                if (attrValues[i].equalsIgnoreCase(value))
                    return true;
        }
        return false;
    }
	static public boolean hasOneAttributeValue(LDAPEntry anEntry, String attribute) throws ObjectNotFoundException
	{
		int j =0;
		LDAPAttribute attr = anEntry.getAttribute(attribute);
		if (attr==null)
            throw new ObjectNotFoundException("No attributes named '"+attribute+"'", "");
		j=attr.size();
		return j==1;
	}

	//this is for a single-valued attribute
    static public void setAttributeValue(LDAPConnection ld, LDAPEntry anEntry, String attribute, String newValue)
    throws ObjectNotFoundException, ObjectCannotBeUpdated
    {
        try {
            if (!hasOneAttributeValue(anEntry, attribute))
                throw new ObjectCannotBeUpdated("Attribute "+attribute + " of entry " + anEntry.getDN()+" has more than one value", "");
        } catch (ObjectNotFoundException ex) {
            addAttributeValue(ld, anEntry, attribute, newValue);
        }
        try
        {
       		ld.modify(anEntry.getDN(),new LDAPModification(LDAPModification.REPLACE,new LDAPAttribute(attribute,newValue)));
        }
        catch (LDAPException ex)
        {
            Logger.error(ex);
            throw new ObjectCannotBeUpdated("Attribute " + attribute + " of entry " + anEntry.getDN() + " could not be modified", "");
        }
    }


	//this is for a multi-valued attribute eg uniqueMember
    static public void addAttributeValue(LDAPConnection ld, LDAPEntry anEntry, String attribute, String value)
    throws ObjectCannotBeUpdated
    {
        try
        {
            ld.modify(anEntry.getDN(),new LDAPModification(LDAPModification.ADD, new LDAPAttribute(attribute,value)));
        }
        catch (LDAPException ex)
        {
            Logger.error(ex);
            throw new ObjectCannotBeUpdated("Attribute " + attribute + " of entry " + anEntry.getDN() + " could not be added.", "");
        }
    }

    //this is for a multi-valued attribute eg uniqueMember
    static public void removeAttributeValue(LDAPConnection ld, LDAPEntry anEntry, String attribute, String value)
    throws ObjectCannotBeUpdated
    {
            try
            {
       			ld.modify(anEntry.getDN(),new LDAPModification(LDAPModification.DELETE,new LDAPAttribute(attribute,value)));
			}
            catch (LDAPException ex)
            {
                Logger.error(ex);
                throw new ObjectCannotBeUpdated("Attribute " + attribute + " of entry " + anEntry.getDN() + " could not be deleted", "");
            }
    }

    static public boolean exists(LDAPConnection ld, String name)
    {
        try {
            String[] attr = { LDAPConnection.NO_ATTRS };
            LDAPEntry anEntry=ld.read(name,attr);
            if (anEntry!=null)
                return true;
        } catch (LDAPException ex)
        {
            Logger.debug(9, "LDAPLookupUtils.exists("+name+": "+ex.getMessage());
            return false;
        }
        return false;
    }

    static public void addEntry(LDAPConnection ld,LDAPEntry myEntry)
    throws ObjectAlreadyExistsException, LDAPException
    {
        try
        {
            ld.add( myEntry );
        }
        catch( LDAPException ex ) {
            if (ex.getResultCode() == LDAPException.ENTRY_ALREADY_EXISTS)
                throw new ObjectAlreadyExistsException("Entry already present." + myEntry.getDN(), "");
            throw ex;
        }
    }

    static public boolean hasChildren(LDAPConnection ld, String dn, String filter)
    {
        String[] attr = { LDAPConnection.NO_ATTRS };
        LDAPSearchConstraints searchCons = new LDAPSearchConstraints();
        searchCons.setBatchSize(0);
        searchCons.setDereference(LDAPSearchConstraints.DEREF_NEVER);

        try
        {
            LDAPSearchResults res = ld.search(dn,LDAPConnection.SCOPE_ONE,filter,attr,false,searchCons);
            if (res.hasMore())
                return true;
        }
        catch (LDAPException ex)
        {
            Logger.error(ex);
        }
        return false;
    }

    //returns list of dns
    static public String[] getChildrenDNs(LDAPConnection ld, String dn, String filter)
    {
        String[] result = null;
        String[] attr = { LDAPConnection.NO_ATTRS };
        LDAPSearchConstraints searchCons = new LDAPSearchConstraints();
        searchCons.setBatchSize(0);
        searchCons.setDereference(LDAPSearchConstraints.DEREF_NEVER);

        try
        {
            LDAPSearchResults res = ld.search(dn,LDAPConnection.SCOPE_ONE,filter,attr,false,searchCons);
            result = new String[res.getCount()];
            int i=0;
            while (res.hasMore())
            {
                LDAPEntry findEntry=res.next();
                if (findEntry!=null)
                {
                    result[i++] = new String(findEntry.getDN());
                }
            }
        }
        catch (Exception ex)
        {
            Logger.error(ex);
        }
        return result;
    }

    static public void delete(LDAPConnection ld, String dn)
    throws LDAPException
    {
        try
        {
            Logger.msg(7, "LDAPLookupUtils.delete() - "+dn);
            ld.delete(dn);
        }
        catch (LDAPException ex)
        {
            Logger.error("LDAPLookupUtils.remove() - Cannot remove "+dn+": " + ex.getMessage());
            throw ex;
        }
    }

    //param dn is the DN of the name
    //param name is the name of the node (also the RDN)
    //example: cn=lab27,o=cern.ch  lab27
    //example: cn=product, cn=domain, cn=lab27, cn= cristal2, o=cern.ch  product
    static public void createCristalContext(LDAPConnection ld, String dn)
    {
    	if (LDAPLookupUtils.exists(ld,dn))
    		return;
        try
        {
            String name = LDAPDN.explodeDN(dn,true)[0];
            LDAPAttributeSet attrs = new LDAPAttributeSet();
            attrs.add(new LDAPAttribute("cn",name));
            String objectclass_values[] = new String[1];
            objectclass_values[0] = "cristalcontext";
            if (name.equals("last"))
            	attrs.add(new LDAPAttribute("intsyskey", "0"));

    		attrs.add(new LDAPAttribute("objectclass",objectclass_values));

            LDAPLookupUtils.addEntry(ld,new LDAPEntry(dn,attrs));
        }
        catch (Exception ex)
        {
            Logger.error("LDAPLookupUtils.createCristalContext() " + ex.toString());
        }
    }

    static public void createOrganizationContext(LDAPConnection ld, String dn)
    {
    	if (LDAPLookupUtils.exists(ld,dn))
    		return;

        try
        {
            String name = LDAPDN.explodeDN(dn,true)[0];
            LDAPAttributeSet attrs = new LDAPAttributeSet();
            //No idea why this worked, or why it suddenly stopped working when we moved to maven
            //attrs.add(new LDAPAttribute("objectclass","top"));
            attrs.add(new LDAPAttribute("objectclass","organization"));
            attrs.add(new LDAPAttribute("o",name));
            LDAPLookupUtils.addEntry(ld,new LDAPEntry(dn,attrs));
        }
        catch (Exception ex)
        {
            Logger.msg(ex.toString());
        }
    }
    public static String escapeDN (String name) {
        //From RFC 2253 and the / character for JNDI
        final char[] META_CHARS = {'+', '"', '<', '>', ';', '/'};
        String escapedStr = new String(name);

        //Backslash is both a Java and an LDAP escape character, so escape it first
        escapedStr = escapedStr.replaceAll("\\\\","\\\\");

        //Positional characters - see RFC 2253
        escapedStr = escapedStr.replaceAll("^#","\\\\#");
        escapedStr = escapedStr.replaceAll("^ | $","\\\\ ");

        for (char element : META_CHARS) {
            escapedStr = escapedStr.replaceAll("\\"+element,"\\\\" + element);
        }
        Logger.msg(6, "LDAP DN "+name+" escaped to "+escapedStr);
        return escapedStr;
    }

    public static String escapeSearchFilter (String filter) {
        //From RFC 2254
        String escapedStr = new String(filter);

        escapedStr = escapedStr.replaceAll("\\\\","\\\\5c");
        //escapedStr = escapedStr.replaceAll("\\*","\\\\2a"); // we need stars for searching
        escapedStr = escapedStr.replaceAll("\\(","\\\\28");
        escapedStr = escapedStr.replaceAll("\\)","\\\\29");
        Logger.msg(6, "LDAP Search Filter "+filter+" escaped to "+escapedStr);
        return escapedStr;
    }
}