使用unboundid sdk在ApacheDS服务器组中搜索组中的用户

Question

我使用ApacheDS作为目录服务器& UnboundID作为用于输入用户及其相关组的LDAP SDK。我下面在他们所使用的方法CompareRequest找出用户是否为特定组的成员，或者不是链接

http://ldapwiki.willeke.com/wiki/Tips%20using%20UnboundID%20LDAP%20SDK 

？

我写针对该方法的代码是这样

\t //input ---- uid = "rohit.joshi" and groupName = "Java" 
 
\t public boolean isUserMemberOfGroup(String uid, String groupName) { 
 
\t \t boolean answ = false; 
 
\t \t LDAPConnection connection = connect(); 
 
\t \t try { 
 
\t \t //userDN -- uid=rohit.joshi,ou=users,o=wipro 
 
\t \t String userDN = "uid=" + uid + ",ou=users," + LDAP_BASE_DN; 
 
\t \t //groupDN -- cn=Java,ou=groups,o=wipro 
 
\t \t String groupDN = "cn=" + groupName + ",ou=groups," + LDAP_BASE_DN; 
 
\t CompareRequest compareRequest = new CompareRequest(userDN, "uniqueMember", groupDN); 
 
\t \t CompareResult compareResult = connection.compare(compareRequest); 
 
\t \t \t if (compareResult.compareMatched()) { 
 
\t \t \t \t // The user is a member of the group. 
 
\t \t \t \t System.out.println("user is a member of group"); 
 
\t \t \t } 
 
\t \t \t else { 
 
\t \t \t \t // The user is not a member of the group. 
 
\t \t \t \t System.out.println("user is not a member of group"); 
 
\t \t \t } 
 
\t \t } catch (LDAPException e) { 
 
\t \t \t e.printStackTrace(); 
 
\t \t } 
 
\t \t return answ; 
 
\t }

CREATING LDAP CONNECTOR 
 
Connection with LDAP Server Established : true 
 
LDAPException(resultCode=16 (no such attribute), errorMessage='NO_SUCH_ATTRIBUTE: failed for MessageType : COMPARE_REQUEST 
 
Message ID : 1 
 
    Compare request 
 
     Entry : 'uid=mahesh.joshi,ou=users,o=wipro' 
 
     Attribute description : 'uniqueMember' 
 
     Attribute value : 'cn=Java,ou=groups,o=wiproorg.apache.directory.api.ldap.model.message.CompareRequestImpl@1d9123e1: null', diagnosticMessage='NO_SUCH_ATTRIBUTE: failed for MessageType : COMPARE_REQUEST 
 
Message ID : 1 
 
    Compare request 
 
     Entry : 'uid=mahesh.joshi,ou=users,o=wipro' 
 
     Attribute description : 'uniqueMember' 
 
     Attribute value : 'cn=Java,ou=groups,o=wiproorg.apache.directory.api.ldap.model.message.CompareRequestImpl@1d9123e1: null') 
 
\t at com.unboundid.ldap.sdk.LDAPConnection.compare(LDAPConnection.java:2236) 
 
\t at com.LdapServiceImpl.isUserMemberOfGroup(LdapServiceImpl.java:380) 
 
\t at com.App.main(App.java:102)

但运行该方法我正在在控制台错误如上所示。虽然我能够单独检查用户和组的存在，但在单个查询操作中检查它们仍然不可能。任何在这方面的建议将是一个很大的帮助。

Answer 1

显然ApacheDS中'uniqueMember'的'NO_SUCH_ATTRIBUTE'。

LDAPException(resultCode=16 (no such attribute), errorMessage='NO_SUCH_ATTRIBUTE: failed for MessageType : COMPARE_REQUEST 
Message ID : 1 
    Compare request 
     Entry : 'uid=mahesh.joshi,ou=users,o=wipro' 
     Attribute description : 'uniqueMember' 

尝试使用'member'而不是'uniqueMember'。

工作示例：

public static void main(String[] args) 
{ 
    LDAPConnection connection = new LDAPConnection(); 
    try 
    { 
     connection.connect("localhost", 10389); 
    } 
    catch (LDAPException e) 
    { 
    // TODO Auto-generated catch block 
     e.printStackTrace(); 
    } 
    String attributeName = "uniqueMember"; 
    String assertionValue = "uid=mahesh.joshi,ou=users,ou=sevenSeas,dc=example,dc=com"; 
    String entryDN = "cn=Java,ou=groups,ou=sevenSeas,dc=example,dc=com"; 
    CompareRequest compareRequest = new CompareRequest(entryDN, attributeName, assertionValue); 
    CompareResult compareResult = null; 
    try 
    { 
     compareResult = connection.compare(compareRequest); 
     if (compareResult.compareMatched()) 
     { 
      System.out.println("The user: " + assertionValue + " is a member of the group: " + entryDN); 
     } 
     else 
     { 
      System.out.println("The user: " + assertionValue + " is NOT a member of the group: " + entryDN); 
     } 
    } 
    catch (LDAPException e) 
    { 
    // TODO Auto-generated catch block 
     e.printStackTrace(); 
    } 
} 

设置尽可能靠近我可以给您的方案的例子。 -jim