Etusivu Tutki Apua
Kirjaudu sisään
Kamailio
/
kamailio
peilaus alkaen https://github.com/kamailio/kamailio.git
2
0
Fork 0
Tiedostot Ongelmat 0 Wiki
Haara: 4.2
Haarat Tagit
kamailio
/
modules
/
ldap
/
doc
/
ldap_devel.xml

ldap_devel.xml 16 KB
Pysyvä linkki Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632 
  1. <?xml version="1.0" encoding='ISO-8859-1'?>
    2. 

  2. <!DOCTYPE book PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN"
    3. 

  3. "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [
    4. 

  4. 

  5. <!-- Include general documentation entities -->
    6. 

  6. <!ENTITY % docentities SYSTEM "../../../docbook/entities.xml">
    7. 

  7. %docentities;
    8. 

  8. 

  9. ]>
    10. 

  10. <!-- LDAP_H350 Module Developer's Guide -->
    11. 

  11. 

  12. <chapter>
    13. 

  13.     <title>&develguide;</title>
    14. 

  14. 	<section>
    15. 

  15. 		<title>Overview</title>
    16. 

  16. 		<para>
    17. 

  17. 		The LDAP module API can be used by other &kamailio; modules to implement
    18. 

  18. 		LDAP search functionality. This frees the module implementer from having
    19. 

  19. 		to care about LDAP connection management and configuration. 
    20. 

  20. 		</para>
    21. 

  21. 		<para>
    22. 

  22. 		In order to use this API, a module has to load the API using the <varname>load_ldap_api</varname>
    23. 

  23. 		function which returns a pointer to a <varname>ldap_api</varname> structure. This structure
    24. 

  24. 		includes pointers to the API functions described below. The LDAP module source file
    25. 

  25. 		<varname>api.h</varname> includes all declarations needed to load the API, it has to
    26. 

  26. 		be included in the file that use the API. Loading the API is typically done inside a
    27. 

  27. 		module's <varname>mod_init</varname> call as the following example shows:			
    28. 

  28. 			<example>
    29. 

  29. 				<title>Example code fragment to load LDAP module API</title>
    30. 

  30. 				<programlisting><![CDATA[
    31. 

  31. #include "../../sr_module.h"
    32. 

  32. #include "../ldap/api.h"
    33. 

  33. 

  34. /*
    35. 

  35.  * global pointer to ldap api
    36. 

  36.  */
    37. 

  37. extern ldap_api_t ldap_api;
    38. 

  38. 

  39. ...
    40. 

  40. 

  41. static int mod_init(void)
    42. 

  42. {
    43. 

  43.     /*
    44. 

  44.      * load the LDAP API
    45. 

  45.      */
    46. 

  46.     if (load_ldap_api(&ldap_api) != 0)
    47. 

  47.     {
    48. 

  48.         LM_ERR("Unable to load LDAP API - this module requires ldap module\n");
    49. 

  49.         return -1;
    50. 

  50.     }
    51. 

  51. 

  52.     ...
    53. 

  53. }
    54. 

  54. 

  55. ...
    56. 

  56. ]]>		
    57. 

  57. 				</programlisting>
    58. 

  58. 			</example>
    59. 

  59. 		</para>
    60. 

  60. 		<para>
    61. 

  61. 			The API functions can then be used like in the following example:
    62. 

  62. 			<example>
    63. 

  63. 				<title>Example LDAP module API function call</title>
    64. 

  64. 				<programlisting><![CDATA[
    65. 

  65. ...
    66. 

  66. 	
    67. 

  67.     rc = ldap_api.ldap_rfc4515_escape(str1, str2, 0);	
    68. 

  68. 				
    69. 

  69. ...		
    70. 

  70. ]]>		
    71. 

  71. 				</programlisting>
    72. 

  72. 			</example>	
    73. 

  73. 		</para>
    74. 

  74. 	
    75. 

  75. 	</section>
    76. 

  76. 	
    77. 

  77. 	<section>
    78. 

  78. 		<title>API Functions</title>
    79. 

  79. 		
    80. 

  80. 		<section>
    81. 

  81. 			<title>ldap_params_search</title>
    82. 

  82. 			<para>
    83. 

  83. 				Performs an LDAP search using the parameters given as function arguments.
    84. 

  84. 			</para>
    85. 

  85. 			<programlisting><![CDATA[
    86. 

  86. typedef int (*ldap_params_search_t)(int* _ld_result_count,
    87. 

  87.                                     char* _lds_name,
    88. 

  88.                                     char* _dn,
    89. 

  89.                                     int _scope,
    90. 

  90.                                     char** _attrs,
    91. 

  91.                                     char* _filter,
    92. 

  92.                                     ...);
    93. 

  93. ]]>
    94. 

  94. 			</programlisting>
    95. 

  95. 			<variablelist>
    96. 

  96. 				<title>Function arguments:</title>
    97. 

  97. 				<varlistentry>
    98. 

  98. 					<term>int* _ld_result_count</term>
    99. 

  99. 					<listitem>
    100. 

  100. 						<para>
    101. 

  101. 						The function stores the number of returned LDAP entries
    102. 

  102. 						in <varname>_ld_result_count</varname>. 
    103. 

  103. 						</para>
    104. 

  104. 					</listitem>
    105. 

  105. 				</varlistentry>
    106. 

  106. 				<varlistentry>
    107. 

  107. 					<term>char* _lds_name</term>
    108. 

  108. 					<listitem>
    109. 

  109. 						<para>
    110. 

  110. 						LDAP session name as configured in the LDAP
    111. 

  111. 						module configuration file.
    112. 

  112. 						</para>
    113. 

  113. 					</listitem>
    114. 

  114. 				</varlistentry>
    115. 

  115. 				<varlistentry>
    116. 

  116. 					<term>char* _dn</term>
    117. 

  117. 					<listitem>
    118. 

  118. 						<para>
    119. 

  119. 							LDAP search DN.
    120. 

  120. 						</para>
    121. 

  121. 					</listitem>
    122. 

  122. 				</varlistentry>
    123. 

  123. 				<varlistentry>
    124. 

  124. 					<term>int _scope</term>
    125. 

  125. 					<listitem>
    126. 

  126. 						<para>
    127. 

  127. 						LDAP search scope, one of <varname>LDAP_SCOPE_ONELEVEL</varname>,
    128. 

  128. 						<varname>LDAP_SCOPE_BASE</varname>, or <varname>LDAP_SCOPE_SUBTREE</varname>,
    129. 

  129. 						as defined in OpenLDAP's <varname>ldap.h</varname>.
    130. 

  130. 						</para>
    131. 

  131. 					</listitem>
    132. 

  132. 				</varlistentry>
    133. 

  133. 				<varlistentry>
    134. 

  134. 					<term>char** _attrs</term>
    135. 

  135. 					<listitem>
    136. 

  136. 						<para>
    137. 

  137. 						A null-terminated  array  of attribute types to return from entries.
    138. 

  138. 						If empty (<varname>NULL</varname>), all attribute types are returned.
    139. 

  139. 						</para>
    140. 

  140. 					</listitem>
    141. 

  141. 				</varlistentry>
    142. 

  142. 				<varlistentry>
    143. 

  143. 					<term>char* _filter</term>
    144. 

  144. 					<listitem>
    145. 

  145. 						<para>
    146. 

  146. 						LDAP search filter string according to RFC 4515. 
    147. 

  147. 						<varname>printf</varname> patterns in this string do get replaced with
    148. 

  148. 						the function arguments' values following the <varname>_filter</varname> argument.
    149. 

  149. 						</para>
    150. 

  150. 					</listitem>
    151. 

  151. 				</varlistentry>
    152. 

  152. 				
    153. 

  153. 			</variablelist>
    154. 

  154. 			<variablelist>
    155. 

  155. 				<title>Return Values:</title>
    156. 

  156. 				<varlistentry>
    157. 

  157. 					<term>-1</term>
    158. 

  158. 					<listitem>
    159. 

  159. 						<para>
    160. 

  160. 							Internal error.
    161. 

  161. 						</para>
    162. 

  162. 					</listitem>
    163. 

  163. 				</varlistentry>
    164. 

  164. 				<varlistentry>
    165. 

  165. 					<term>0</term>
    166. 

  166. 					<listitem>
    167. 

  167. 						<para>
    168. 

  168. 						Success, <varname>_ld_result_count</varname> includes the number of LDAP entries found.
    169. 

  169. 						</para>
    170. 

  170. 					</listitem>
    171. 

  171. 				</varlistentry>
    172. 

  172. 			</variablelist>
    173. 

  173. 		</section>
    174. 

  174. 		
    175. 

  175. 		<section>
    176. 

  176. 			<title>ldap_url_search</title>
    177. 

  177. 			<para>
    178. 

  178. 				Performs an LDAP search using an LDAP URL.
    179. 

  179. 			</para>
    180. 

  180. 			<programlisting><![CDATA[
    181. 

  181. typedef int (*ldap_url_search_t)(char* _ldap_url,
    182. 

  182.                                  int* _result_count);
    183. 

  183. ]]>
    184. 

  184. 			</programlisting>
    185. 

  185. 			<variablelist>
    186. 

  186. 				<title>Function arguments:</title>
    187. 

  187. 				<varlistentry>
    188. 

  188. 					<term>char* _ldap_url</term>
    189. 

  189. 					<listitem>
    190. 

  190. 						<para>
    191. 

  191. 							LDAP URL as described in <xref linkend="ldap-urls" />.
    192. 

  192. 						</para>
    193. 

  193. 					</listitem>
    194. 

  194. 				</varlistentry>
    195. 

  195. 				<varlistentry>
    196. 

  196. 					<term>int* _result_count</term>
    197. 

  197. 					<listitem>
    198. 

  198. 						<para>
    199. 

  199. 							The function stores the number of returned LDAP entries in <varname>_ld_result_count</varname>.
    200. 

  200. 						</para>
    201. 

  201. 					</listitem>
    202. 

  202. 				</varlistentry>
    203. 

  203. 			</variablelist>
    204. 

  204. 			<variablelist>
    205. 

  205. 				<title>Return Values:</title>
    206. 

  206. 				<varlistentry>
    207. 

  207. 					<term>-1</term>
    208. 

  208. 					<listitem>
    209. 

  209. 						<para>
    210. 

  210. 							Internal error.
    211. 

  211. 						</para>
    212. 

  212. 					</listitem>
    213. 

  213. 				</varlistentry>
    214. 

  214. 				<varlistentry>
    215. 

  215. 					<term>0</term>
    216. 

  216. 					<listitem>
    217. 

  217. 						<para>
    218. 

  218. 							Success, <varname>_ld_result_count</varname> includes the number of LDAP entries found.
    219. 

  219. 						</para>
    220. 

  220. 					</listitem>
    221. 

  221. 				</varlistentry>
    222. 

  222. 			</variablelist>
    223. 

  223. 		</section>
    224. 

  224. 		
    225. 

  225. 		<section>
    226. 

  226. 			<title>ldap_result_attr_vals</title>
    227. 

  227. 			<para>
    228. 

  228. 				Retrieve the value(s) of a returned LDAP attribute. The function accesses
    229. 

  229. 				the LDAP result returned by the last call of <varname>ldap_params_search</varname>
    230. 

  230. 				or <varname>ldap_url_search</varname>. The <varname>berval</varname> structure is
    231. 

  231. 				defined in OpenLDAP's <varname>ldap.h</varname>, which has to be included.
    232. 

  232. 			</para>
    233. 

  233. 			<para>
    234. 

  234. 				This function allocates memory to store the LDAP attribute value(s). This memory
    235. 

  235. 				has to freed with the function <varname>ldap_value_free_len</varname> (see next section).
    236. 

  236. 			</para>
    237. 

  237. 			<programlisting><![CDATA[
    238. 

  238. typedef int (*ldap_result_attr_vals_t)(str* _attr_name,
    239. 

  239.                                        struct berval ***_vals);
    240. 

  240. 									   
    241. 

  241. typedef struct berval {
    242. 

  242.         ber_len_t       bv_len;
    243. 

  243.         char            *bv_val;
    244. 

  244. } BerValue;
    245. 

  245. ]]>
    246. 

  246. 			</programlisting>
    247. 

  247. 			<variablelist>
    248. 

  248. 				<title>Function arguments:</title>
    249. 

  249. 				<varlistentry>
    250. 

  250. 					<term>str* _attr_name</term>
    251. 

  251. 					<listitem>
    252. 

  252. 						<para>
    253. 

  253. 							<varname>str</varname> structure holding the LDAP attribute name.
    254. 

  254. 						</para>
    255. 

  255. 					</listitem>
    256. 

  256. 				</varlistentry>
    257. 

  257. 				<varlistentry>
    258. 

  258. 					<term>struct berval ***_vals</term>
    259. 

  259. 					<listitem>
    260. 

  260. 						<para>
    261. 

  261. 							A null-terminated array of the attribute's value(s).
    262. 

  262. 						</para>
    263. 

  263. 					</listitem>
    264. 

  264. 				</varlistentry>
    265. 

  265. 			</variablelist>
    266. 

  266. 			<variablelist>
    267. 

  267. 				<title>Return Values:</title>
    268. 

  268. 				<varlistentry>
    269. 

  269. 					<term>-1</term>
    270. 

  270. 					<listitem>
    271. 

  271. 						<para>
    272. 

  272. 							Internal error.
    273. 

  273. 						</para>
    274. 

  274. 					</listitem>
    275. 

  275. 				</varlistentry>
    276. 

  276. 				<varlistentry>
    277. 

  277. 					<term>0</term>
    278. 

  278. 					<listitem>
    279. 

  279. 						<para>
    280. 

  280. 							Success, <varname>_vals</varname> includes the attribute's value(s).
    281. 

  281. 						</para>
    282. 

  282. 					</listitem>
    283. 

  283. 				</varlistentry>
    284. 

  284. 				<varlistentry>
    285. 

  285. 					<term>1</term>
    286. 

  286. 					<listitem>
    287. 

  287. 						<para>
    288. 

  288. 							No attribute value found.
    289. 

  289. 						</para>
    290. 

  290. 					</listitem>
    291. 

  291. 				</varlistentry>
    292. 

  292. 			</variablelist>
    293. 

  293. 		</section>
    294. 

  294. 		
    295. 

  295. 		<section>
    296. 

  296. 			<title>ldap_value_free_len</title>
    297. 

  297. 			<para>
    298. 

  298. 				Function used to free memory allocated by <varname>ldap_result_attr_vals</varname>.
    299. 

  299. 				The <varname>berval</varname> structure is defined in OpenLDAP's 
    300. 

  300. 				<varname>ldap.h</varname>, which has to be included.
    301. 

  301. 			</para>
    302. 

  302. 			<programlisting><![CDATA[
    303. 

  303. typedef void (*ldap_value_free_len_t)(struct berval **_vals);
    304. 

  304. 

  305. typedef struct berval {
    306. 

  306.         ber_len_t       bv_len;
    307. 

  307.         char            *bv_val;
    308. 

  308. } BerValue;
    309. 

  309. ]]>
    310. 

  310. 			</programlisting>
    311. 

  311. 			<variablelist>
    312. 

  312. 				<title>Function arguments:</title>
    313. 

  313. 				<varlistentry>
    314. 

  314. 					<term>struct berval **_vals</term>
    315. 

  315. 					<listitem>
    316. 

  316. 						<para>
    317. 

  317. 						<varname>berval</varname> array returned by <varname>ldap_result_attr_vals</varname>.
    318. 

  318. 						</para>
    319. 

  319. 					</listitem>
    320. 

  320. 				</varlistentry>
    321. 

  321. 			</variablelist>
    322. 

  322. 		</section>
    323. 

  323. 		
    324. 

  324. 		<section>
    325. 

  325. 			<title>ldap_result_next</title>
    326. 

  326. 			<para>
    327. 

  327. 				Increments the LDAP result pointer.
    328. 

  328. 			</para>
    329. 

  329. 			<programlisting><![CDATA[
    330. 

  330. typedef int (*ldap_result_next_t)();
    331. 

  331. ]]>
    332. 

  332. 			</programlisting>
    333. 

  333. 			<variablelist>
    334. 

  334. 				<title>Return Values:</title>
    335. 

  335. 				<varlistentry>
    336. 

  336. 					<term>-1</term>
    337. 

  337. 					<listitem>
    338. 

  338. 						<para>
    339. 

  339. 						No LDAP result found, probably because <varname>ldap_params_search</varname>
    340. 

  340. 						or <varname>ldap_url_search</varname> was not called.
    341. 

  341. 						</para>
    342. 

  342. 					</listitem>
    343. 

  343. 				</varlistentry>
    344. 

  344. 				<varlistentry>
    345. 

  345. 					<term>0</term>
    346. 

  346. 					<listitem>
    347. 

  347. 						<para>
    348. 

  348. 							Success, LDAP result pointer points now to next result.
    349. 

  349. 						</para>
    350. 

  350. 					</listitem>
    351. 

  351. 				</varlistentry>
    352. 

  352. 				<varlistentry>
    353. 

  353. 					<term>1</term>
    354. 

  354. 					<listitem>
    355. 

  355. 						<para>
    356. 

  356. 							No more results available.
    357. 

  357. 						</para>
    358. 

  358. 					</listitem>
    359. 

  359. 				</varlistentry>
    360. 

  360. 			</variablelist>
    361. 

  361. 		</section>
    362. 

  362. 		
    363. 

  363. 		<section>
    364. 

  364. 			<title>ldap_str2scope</title>
    365. 

  365. 			<para>
    366. 

  366. 				Converts LDAP search scope string into integer value e.g. for <varname>ldap_params_search</varname>.
    367. 

  367. 			</para>
    368. 

  368. 			<programlisting><![CDATA[
    369. 

  369. typedef int (*ldap_str2scope_t)(char* scope_str);
    370. 

  370. ]]>
    371. 

  371. 			</programlisting>
    372. 

  372. 			<variablelist>
    373. 

  373. 				<title>Function arguments:</title>
    374. 

  374. 				<varlistentry>
    375. 

  375. 					<term>char* scope_str</term>
    376. 

  376. 					<listitem>
    377. 

  377. 						<para>
    378. 

  378. 							LDAP search scope string. One of "one", "onelevel", "base", "sub", or "subtree".
    379. 

  379. 						</para>
    380. 

  380. 					</listitem>
    381. 

  381. 				</varlistentry>
    382. 

  382. 			</variablelist>
    383. 

  383. 			<variablelist>
    384. 

  384. 				<title>Return Values:</title>
    385. 

  385. 				<varlistentry>
    386. 

  386. 					<term>-1</term>
    387. 

  387. 					<listitem>
    388. 

  388. 						<para>
    389. 

  389. 							<varname>scope_str</varname> not recognized.
    390. 

  390. 						</para>
    391. 

  391. 					</listitem>
    392. 

  392. 				</varlistentry>
    393. 

  393. 				<varlistentry>
    394. 

  394. 					<term>n &gt;= 0</term>
    395. 

  395. 					<listitem>
    396. 

  396. 						<para>
    397. 

  397. 							LDAP search scope integer.
    398. 

  398. 						</para>
    399. 

  399. 					</listitem>
    400. 

  400. 				</varlistentry>
    401. 

  401. 			</variablelist>
    402. 

  402. 		</section>
    403. 

  403. 		
    404. 

  404. 		<section>
    405. 

  405. 			<title>ldap_rfc4515_escape</title>
    406. 

  406. 			<para>
    407. 

  407. 				Applies escaping rules described in <xref linkend="ldap-filter-url-encode-fn" />.
    408. 

  408. 			</para>
    409. 

  409. 			<programlisting><![CDATA[
    410. 

  410. typedef int (*ldap_rfc4515_escape_t)(str *sin, str *sout, int url_encode);
    411. 

  411. ]]>
    412. 

  412. 			</programlisting>
    413. 

  413. 			<variablelist>
    414. 

  414. 				<title>Function arguments:</title>
    415. 

  415. 				<varlistentry>
    416. 

  416. 					<term>str *sin</term>
    417. 

  417. 					<listitem>
    418. 

  418. 						<para>
    419. 

  419. 							<varname>str</varname> structure holding the string to apply the escaping rules.
    420. 

  420. 						</para>
    421. 

  421. 					</listitem>
    422. 

  422. 				</varlistentry>
    423. 

  423. 				<varlistentry>
    424. 

  424. 					<term>str *sout</term>
    425. 

  425. 					<listitem>
    426. 

  426. 						<para>
    427. 

  427. 							<varname>str</varname> structure holding the escaped string. The length of this string must be at least three times the length of <varname>sin</varname> plus one.
    428. 

  428. 						</para>
    429. 

  429. 					</listitem>
    430. 

  430. 				</varlistentry>
    431. 

  431. 				<varlistentry>
    432. 

  432. 					<term>int url_encode</term>
    433. 

  433. 					<listitem>
    434. 

  434. 						<para>
    435. 

  435. 							Flag that specifies if a '?' character gets escaped with '%3F' or not. If <varname>url_encode</varname> equals <varname>0</varname>, '?' does not get escaped.
    436. 

  436. 						</para>
    437. 

  437. 					</listitem>
    438. 

  438. 				</varlistentry>
    439. 

  439. 			</variablelist>
    440. 

  440. 			<variablelist>
    441. 

  441. 				<title>Return Values:</title>
    442. 

  442. 				<varlistentry>
    443. 

  443. 					<term>-1</term>
    444. 

  444. 					<listitem>
    445. 

  445. 						<para>
    446. 

  446. 							Internal error.
    447. 

  447. 						</para>
    448. 

  448. 					</listitem>
    449. 

  449. 				</varlistentry>
    450. 

  450. 				<varlistentry>
    451. 

  451. 					<term>0</term>
    452. 

  452. 					<listitem>
    453. 

  453. 						<para>
    454. 

  454. 							Success, <varname>sout</varname> contains escaped string.
    455. 

  455. 						</para>
    456. 

  456. 					</listitem>
    457. 

  457. 				</varlistentry>
    458. 

  458. 			</variablelist>
    459. 

  459. 		</section>
    460. 

  460. 		
    461. 

  461. 		<section>
    462. 

  462. 			<title>get_ldap_handle</title>
    463. 

  463. 			<para>
    464. 

  464. 				Returns the OpenLDAP LDAP handle for a specific LDAP session. This allows a module
    465. 

  465. 				implementor to use the OpenLDAP API functions directly, instead of using the API
    466. 

  466. 				functions exported by the &kamailio; LDAP module. The <varname>LDAP</varname> structure
    467. 

  467. 				is defined in OpenLDAP's <varname>ldap.h</varname>, which has to be included.
    468. 

  468. 			</para>
    469. 

  469. 			<programlisting><![CDATA[
    470. 

  470. typedef int (*get_ldap_handle_t)(char* _lds_name, LDAP** _ldap_handle);
    471. 

  471. ]]>
    472. 

  472. 			</programlisting>
    473. 

  473. 			<variablelist>
    474. 

  474. 				<title>Function arguments:</title>
    475. 

  475. 				<varlistentry>
    476. 

  476. 					<term>char* _lds_name</term>
    477. 

  477. 					<listitem>
    478. 

  478. 						<para>
    479. 

  479. 						LDAP session name as specified in the LDAP module configuration file.
    480. 

  480. 						</para>
    481. 

  481. 					</listitem>
    482. 

  482. 				</varlistentry>
    483. 

  483. 				<varlistentry>
    484. 

  484. 					<term>LDAP** _ldap_handle</term>
    485. 

  485. 					<listitem>
    486. 

  486. 						<para>
    487. 

  487. 						OpenLDAP LDAP handle returned by this function.
    488. 

  488. 						</para>
    489. 

  489. 					</listitem>
    490. 

  490. 				</varlistentry>
    491. 

  491. 			</variablelist>
    492. 

  492. 			<variablelist>
    493. 

  493. 				<title>Return Values:</title>
    494. 

  494. 				<varlistentry>
    495. 

  495. 					<term>-1</term>
    496. 

  496. 					<listitem>
    497. 

  497. 						<para>
    498. 

  498. 							Internal error.
    499. 

  499. 						</para>
    500. 

  500. 					</listitem>
    501. 

  501. 				</varlistentry>
    502. 

  502. 				<varlistentry>
    503. 

  503. 					<term>0</term>
    504. 

  504. 					<listitem>
    505. 

  505. 						<para>
    506. 

  506. 							Success, <varname>_ldap_handle</varname> contains the OpenLDAP LDAP handle.
    507. 

  507. 						</para>
    508. 

  508. 					</listitem>
    509. 

  509. 				</varlistentry>
    510. 

  510. 			</variablelist>
    511. 

  511. 		</section>
    512. 

  512. 		
    513. 

  513. 		<section>
    514. 

  514. 			<title>get_last_ldap_result</title>
    515. 

  515. 			<para>
    516. 

  516. 				Returns the OpenLDAP LDAP handle and OpenLDAP result handle of the last LDAP search 
    517. 

  517. 				operation. These handles can be used as input for OpenLDAP LDAP result API functions.
    518. 

  518. 				<varname>LDAP</varname> and <varname>LDAPMessage</varname> structures are defined in 
    519. 

  519. 				OpenLDAP's <varname>ldap.h</varname>, which has to be included.
    520. 

  520. 			</para> 
    521. 

  521. 			<programlisting><![CDATA[
    522. 

  522. typedef void (*get_last_ldap_result_t)
    523. 

  523. 	     (LDAP** _last_ldap_handle, LDAPMessage** _last_ldap_result);
    524. 

  524. ]]>
    525. 

  525. 			</programlisting>
    526. 

  526. 			<variablelist>
    527. 

  527. 				<title>Function arguments:</title>
    528. 

  528. 				<varlistentry>
    529. 

  529. 					<term>LDAP** _last_ldap_handle</term>
    530. 

  530. 					<listitem>
    531. 

  531. 						<para>
    532. 

  532. 							OpenLDAP LDAP handle returned by this function.
    533. 

  533. 						</para>
    534. 

  534. 					</listitem>
    535. 

  535. 				</varlistentry>
    536. 

  536. 				<varlistentry>
    537. 

  537. 					<term>LDAPMessage** _last_ldap_result</term>
    538. 

  538. 					<listitem>
    539. 

  539. 						<para>
    540. 

  540. 							OpenLDAP result handle returned by this function.
    541. 

  541. 						</para>
    542. 

  542. 					</listitem>
    543. 

  543. 				</varlistentry>
    544. 

  544. 			</variablelist>
    545. 

  545. 		</section>
    546. 

  546. 	</section>
    547. 

  547. 	<section>
    548. 

  548. 		<title>Example Usage</title>
    549. 

  549. 		<para>
    550. 

  550. 			The following example shows how this API can be used to perform an LDAP search operation.
    551. 

  551. 			It is assumed that the API is loaded and available through the <varname>ldap_api</varname> pointer.
    552. 

  552. 		</para>
    553. 

  553. 		<programlisting><![CDATA[
    554. 

  554. ...
    555. 

  555. 	
    556. 

  556. int rc, ld_result_count, scope = 0;
    557. 

  557. char* sip_username = "test";
    558. 

  558. 

  559. /*
    560. 

  560.  * get LDAP search scope integer
    561. 

  561.  */
    562. 

  562. scope = ldap_api.ldap_str2scope("sub");
    563. 

  563. if (scope == -1)
    564. 

  564. {
    565. 

  565.     LM_ERR("ldap_str2scope failed\n");
    566. 

  566.     return -1;
    567. 

  567. }
    568. 

  568. 

  569. /*
    570. 

  570.  * perform LDAP search
    571. 

  571.  */
    572. 

  572. 

  573. if (ldap_api.ldap_params_search(
    574. 

  574.        &ld_result_count,
    575. 

  575.        "campus",
    576. 

  576.        "dc=example,dc=com",
    577. 

  577.        scope,
    578. 

  578.        NULL,
    579. 

  579.        "(&(objectClass=SIPIdentity)(SIPIdentityUserName=%s))",
    580. 

  580.        sip_username)
    581. 

  581.      != 0)
    582. 

  582. {
    583. 

  583.     LM_ERR("LDAP search failed\n");
    584. 

  584.     return -1;
    585. 

  585. }
    586. 

  586. 

  587. /*
    588. 

  588.  * check result count
    589. 

  589.  */
    590. 

  590. if (ld_result_count < 1)
    591. 

  591. {
    592. 

  592.     LM_ERR("LDAP search returned no entry\n");
    593. 

  593.     return 1;
    594. 

  594. }
    595. 

  595. 

  596. /*
    597. 

  597.  * get password attribute value 
    598. 

  598.  */
    599. 

  599.  
    600. 

  600. struct berval **attr_vals = NULL;
    601. 

  601. str ldap_pwd_attr_name = str_init("SIPIdentityPassword");
    602. 

  602. str res_password;
    603. 

  603. 

  604. rc = ldap_api.ldap_result_attr_vals(&ldap_pwd_attr_name, &attr_vals);
    605. 

  605. if (rc < 0)
    606. 

  606. {
    607. 

  607.     LM_ERR("ldap_result_attr_vals failed\n");
    608. 

  608.     ldap_api.ldap_value_free_len(attr_vals);
    609. 

  609.     return -1;
    610. 

  610. }
    611. 

  611. if (rc == 1)
    612. 

  612. {
    613. 

  613.     LM_INFO("No password attribute value found for [%s]\n", sip_username);
    614. 

  614.     ldap_api.ldap_value_free_len(attr_vals);
    615. 

  615.     return 2;
    616. 

  616. }
    617. 

  617. 

  618. res_password.s = attr_vals[0]->bv_val;
    619. 

  619. res_password.len = attr_vals[0]->bv_len;
    620. 

  620. 

  621. ldap_api.ldap_value_free_len(attr_vals);
    622. 

  622. 

  623. LM_INFO("Password for user [%s]: [%s]\n", sip_username, res_password.s);
    624. 

  624. 

  625. ...
    626. 

  626. 

  627. return 0;		
    628. 

  628. ]]>
    629. 

  629. 		</programlisting>
    630. 

  630. 	</section>
    631. 

  631. </chapter>
    632. 

  632.