package com.pow2.user.dao;
   
   
   import org.apache.log4j.Category;
   import com.novell.ldap.*;
   
   import com.pow2.resources.Prefs;
   import com.pow2.user.User;
   import com.pow2.util.Util;
  
  
  /***
   *
   *
   * @author     Luca Fossato
   * @created    22 aprile 2002
   */
  public class LDAPUserDAO implements UserDAO
  {
    /*** Log4J category */
    protected Category cat = Category.getInstance(this.getClass());
  
    /*** an handle to the unique UserDAO instance. */
    private static LDAPUserDAO instance = null;
  
    /*** key for ldap hostname value */
    protected final static String KEY_LDAP_HOST = "ldap.host";
  
    /*** key for ldap server port value */
    protected final static String KEY_LDAP_PORT = "ldap.port";
  
    /*** key for ldap server base dn */
    protected final static String KEY_LDAP_BASEDN = "ldap.basedn";
  
    /*** key for ldap server login dn */
    protected final static String KEY_LDAP_LOGINDN = "ldap.logindn";
  
    /*** key for ldap server password */
    protected final static String KEY_LDAP_PASSWD = "ldap.passwd";
  
    /*** key for the LDAP user id attribute */
    protected final static String KEY_LDAP_USER_ID = "ldap.user.id";
  
    /*** key for the LDAP user login attribute */
    protected final static String KEY_LDAP_USER_LOGIN = "ldap.user.login";
  
    /*** key for the LDAP user passwd attribute */
    protected final static String KEY_LDAP_USER_PASSWD = "ldap.user.passwd";
  
    /*** key for the LDAP user first name attribute */
    protected final static String KEY_LDAP_USER_FIRSTNAME = "ldap.user.firstName";
  
    /*** key for the LDAP user last name attribute */
    protected final static String KEY_LDAP_USER_LASTNAME = "ldap.user.lastName";
  
    /*** key for the LDAP user email attribute */
    protected final static String KEY_LDAP_USER_EMAIL = "ldap.user.email";
  
  
    /***
     *  Default private constructor
     */
    private LDAPUserDAO()
    {
    }
  
  
    /***
     *  Get the unique instance of LDAPUserDAO class.
     *  <br>
     *  This method is protected; use UserDAOFactory.getUserDAO() instead.
     *
     * @return    the instance of LDAPUserDAO class
     */
    protected static synchronized LDAPUserDAO instance()
    {
      if (instance == null)
      {
        instance = new LDAPUserDAO();
      }
  
      return instance;
    }
  
  
    /***
     *  Get the data provider type
     *
     * @return the data provider type
     */
    public String getProviderType()
    {
      return UserDAOFactory.USER_DATA_PROVIDER_LDAP;
    }
  
  
    /***
     *  Update the input User object with the user informations
     *  retrieved from the data provider.
    *  <br>
    *  This method uses the User <code>login</code>
    *  and <code>passwd</code> properties to execute the login procedure.
    *
    * @param  dao            the UserDAO instance
    * @param  login          the user login
    * @param  passwd         the user password
    * @return                the retrieved User object if the login is succesfull;
    *                        null if login fails
    * @exception  Exception  if any error occurs
    */
    public User getUser(String login, String passwd) throws Exception
   {
     return UserDAOUtil.getUser(this, login, passwd);
   }
 
 
   /***
    *  Get the registered User identified by the input
    *  <code>login</code> and <code>passwd</code> properties.
    *
    * @param  login
    * @param  passwd         Description of the Parameter
    * @return                the registered User object if the login procedure is successful;
    *                        null otherwise
    * @exception  Exception  Description of the Exception
    */
   public void getUser(User user) throws Exception
   {
     if (user == null)
     {
       cat.error("::getUser - input user is null. Why ?");
       return;
     }
 
     LDAPConnection con    = null;
     Prefs          prefs  = Prefs.instance();
     String         baseDN = prefs.getProperty(KEY_LDAP_BASEDN);
 
     // filter: (&(cn=$login)(userPassword=$passwd))
     String filter = new StringBuffer("(&(cn=")
                         .append(user.getLogin())
                         .append(")(userPassword=")
                         .append(user.getPasswd())
                         .append("))").toString();
 
     try
     {
       con = getConnection();
 
       // returns all the attributes and their values;
       LDAPSearchResults results =
          con.search(baseDN, LDAPConnection.SCOPE_SUB, filter, null, false);
 
       // no users found;
       if (results.getCount() == 0) return;
 
       // more than one User with the given logina and password ??
       if (results.getCount() > 1)
          cat.warn("::getUser - LDAP search returned more than one User element; get the first one");
 
       // Mapping between the User class attributes and
       // LDAP inetOrgPerson class attributes;
       //
       // id         <- uid
       // login      <- cn
       // passwd     <- userPassword
       // firstName  <- givenName
       // lastName   <- sn
       // email      <- mail
 
       // set User authentication property to false;
       user.setAuthentication(false);
 
       // get only the first entry;
       if (results.hasMoreElements())
       {
         LDAPEntry entry = results.next();
         user.setId       (entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_ID)).getStringValue());
         user.setLogin    (entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_LOGIN)).getStringValue());
         user.setPasswd   (entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_PASSWD)).getStringValue());
         user.setFirstName(entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_FIRSTNAME)).getStringValue());
         user.setLastName (entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_LASTNAME)).getStringValue());
         user.setEmail    (entry.getAttribute(prefs.getProperty(KEY_LDAP_USER_EMAIL)).getStringValue());
 
         // user is authenticated !
         user.setAuthentication(true);
       }
     }
     finally
     {
       if (con != null) con.disconnect();
     }
 
     // log stuff;
     if (cat.isDebugEnabled())
         cat.info(UserDAOUtil.getAuthenticationLog(user));
   }
 
 
   /***
    *  Persist the user informations into the database.
    *  <br>
    *  This method updates or insert a new User entry into the database
    *  depending on the user id value.
    *
    *  @param user the user object to persist into the database
    *  @exception Exception if any error occurs
    */
   public void setUser(User user) throws Exception
   {
     throw new Exception("method not yet implemented...");
   }
 
 
   /***
    *  Delete the User having the input id from the database.
    *
    * @param id  the identifier of the user to remove from the database
    * @throws Exception if any error occurs
    */
   public void deleteUser(String id) throws Exception
   {
     throw new Exception("method not yet implemented...");
   }
 
 
   /***
    *  Test if the input user <code>login</code> property
    *  already exists into the application database.
    *
    * @param  user   the user object
    * @return        true if the input user login already exists into the application database;
    *                false otherwise
    * @exception  Exception  if any error occurs
    */
   public boolean loginExists(User user) throws Exception
   {
     return loginExists(user.getLogin());
   }
 
 
   /***
    *  Test if the input <code>login</code> property
    *  already exists into the application database.
    *
    * @param  login  the login string
    * @return        true if the input login  already exists into the application database;
    *                false otherwise
    * @exception  Exception  if any error occurs
    */
   public boolean loginExists(String login) throws Exception
   {
     if (Util.isNull(login))
       throw new Exception("login is null or empty.");
 
     LDAPConnection    con = null;
     LDAPSearchResults res = null;
     Prefs          prefs  = Prefs.instance();
     String         baseDN = prefs.getProperty(KEY_LDAP_BASEDN);
 
     // filter: (cn=$login)
     String filter = new StringBuffer("(cn=")
                         .append(login)
                         .append(")")
                         .toString();
 
     // returns all the entries that matches the filter;
     try
     {
       con = getConnection();
       res = con.search(baseDN, LDAPConnection.SCOPE_SUB, filter, null, true);
     }
     finally
     {
        if (con != null) con.disconnect();
     }
 
     return (res.getCount() > 0);
   }
 
 
   /***
    *  Refactoring notes:
    *
    *  move the following methods in a LDAP base class;
    *  this class should extends that base class.
    *
    *  The following methods are protected because of
    *  JUnit tests.
    */
 
 
    /***
     *  Connect and bind with the LDAP server.
     *  <br>
     *  Connection is done using the LDAP properties
     *  retrieved from the Prefs object.
     */
    protected LDAPConnection getConnection() throws Exception
    {
       LDAPConnection con   = new LDAPConnection();
       Prefs          prefs = Prefs.instance();
 
       // connect and bind to the server
       con.connect(prefs.getProperty(KEY_LDAP_HOST),
                   Integer.parseInt(prefs.getProperty(KEY_LDAP_PORT)));
 
       con.bind(LDAPConnection.LDAP_V3,                                  // V2 is not supported;
                prefs.getProperty(KEY_LDAP_LOGINDN),
                prefs.getProperty(KEY_LDAP_PASSWD));
 
       return con;
    }
 
 
    /***
     *  disconnect with the server
     */
    protected void closeConnection(LDAPConnection con) throws Exception
    {
       con.disconnect();
    }
 }