/// <summary>
/// Searches Active Directory for objects specified by the given Path + filter, included in the AD_SearchObjectProperties class.
/// </summary>
/// <param name="ldapConnectionInfo">The LDAP connection information</param>
/// <param name="SearchParameters">Path, filter and returned properties needed for the query</param>
/// <returns>LdapResult class: the Collection of the SearchEntry classes.</returns>
public static List <OutputSearchEntry> AD_SearchObjects([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_SearchObjectProperties SearchParameters)
{
var ldapQueryInfo = new LdapConnectionInfo
{
LdapUri = ldapConnectionInfo.LdapUri + "/" + SearchParameters.Path,
Username = ldapConnectionInfo.Username,
Password = ldapConnectionInfo.Password
};
List <SearchResult> tmpObjectEntries;
// Search objects.
using (var ldap = new LdapService(ldapQueryInfo))
tmpObjectEntries = ldap.SearchObjectsByFilterSpecifyProperties(SearchParameters.Filter, SearchParameters.PropertiesToLoad, SearchParameters.PageSize);
// Create & return result list.
var retOutputs = new List <OutputSearchEntry>();
foreach (var item in tmpObjectEntries)
{
var outputClass = new OutputSearchEntry
{
SearchEntry = item
};
retOutputs.Add(outputClass);
}
return(retOutputs);
}
/// <summary>
/// Delete AD user.
/// </summary>
/// <param name="ldapConnectionInfo">Properties to define LDAP connection</param>
/// <param name="userProperties">Properties to define the user to be deleted</param>
/// <returns>operationSuccessful = true if operation is ok.</returns>
public static Output AD_DeleteUser([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_DeleteUserProperties userProperties)
{
var ret_output = new Output();
List <DirectoryEntry> tmpObjectEntries;
ret_output.operationSuccessful = false;
ldapConnectionInfo.LdapUri = ldapConnectionInfo.LdapUri + "/" + userProperties.Path;
string filter = "(&(objectClass=user)(cn=" + userProperties.Cn + "))";
using (var ldap = new LdapService(ldapConnectionInfo))// @"(&(objectClass=user)(cn=MattiMeikalainen))
{
tmpObjectEntries = ldap.SearchObjectsByFilter(filter);
if (tmpObjectEntries.Count > 0)
{
ldap.DeleteAdUser(tmpObjectEntries[0]);
}
else
{
throw new System.Exception($"Did not find any entries matching filter {filter} from {ldapConnectionInfo.LdapUri}");
}
}
ret_output.operationSuccessful = true;
return(ret_output);
}
/// <summary>
/// Rename AD user.
/// </summary>
/// <param name="ldapConnectionInfo">Properties to define LDAP connection</param>
/// <param name="userProperties">Properties to define the user to be renamed</param>
/// <returns>operationSuccessful = true if operation is ok.</returns>
public static OutputUser AD_RenameUser([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_RenameUserProperties userProperties)
{
var ldapOperationResult = new OutputUser {
OperationSuccessful = false, User = null
};
List <DirectoryEntry> tmpObjectEntries;
ldapConnectionInfo.LdapUri = ldapConnectionInfo.LdapUri + "/" + userProperties.Path;
var filter = "(&(objectClass=user)(cn=" + userProperties.Cn + "))";
// @"(&(objectClass=user)(cn=MattiMeikalainen))
using (var ldap = new LdapService(ldapConnectionInfo))
{
tmpObjectEntries = ldap.SearchObjectsByFilter(filter);
if (tmpObjectEntries.Count == 1)
{
ldapOperationResult.User = ldap.RenameAdUser(tmpObjectEntries[0], userProperties.NewCn);
}
else if (tmpObjectEntries.Count == 0)
{
throw new Exception($"Did not find any entries matching filter {filter} from {ldapConnectionInfo.LdapUri}");
}
else if (tmpObjectEntries.Count > 1)
{
throw new Exception($"Found more than one entry matching filter {filter} from {ldapConnectionInfo.LdapUri}");
}
}
ldapOperationResult.OperationSuccessful = true;
return(ldapOperationResult);
}
/// <summary>
/// Remove AD object from a set of groups.
/// </summary>
/// <param name="ldapConnectionInfo"></param>
/// <param name="target"></param>
/// <param name="groupsToRemoveFrom"></param>
/// <returns>Object { bool operationSuccessful }</returns>
public static Output AD_RemoveFromGroups([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_RemoveFromGroupsTargetProperties target, [PropertyTab] AD_RemoveFromGroupsGroupProperties groupsToRemoveFrom)
{
var result = new Output();
using (var ldap = new LdapService(ldapConnectionInfo)) result.OperationSuccessful = ldap.RemoveFromGroups(target.Dn, groupsToRemoveFrom.Groups);
return(result);
}
/// <summary>
/// Add the user in AD to group(s).
/// </summary>
/// <param name="ldapConnectionInfo"></param>
/// <param name="User"></param>
/// <param name="GroupsToAdd"></param>
/// <returns></returns>
public static Output AD_AddGroups([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_AddGroupsUserProperties User, [PropertyTab] AD_AddGroupsProperties GroupsToAdd)
{
var ldapOperationResult = new Output {
operationSuccessful = false
};
using (var ldap = new LdapService(ldapConnectionInfo))
{
ldapOperationResult.operationSuccessful = ldap.AddAdUserToGroup(User.dn, GroupsToAdd.groups);
return(ldapOperationResult);
}
}
/// <summary>
/// Update a user in the AD.
/// </summary>
/// <param name="ldapConnectionInfo">The LDAP connection information</param>
/// <param name="adUser">The user record to be updated</param>
/// <returns>LdapResult class, which carries a copy of the updated user record.</returns>
public static OutputUser AD_UpdateUser([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] UpdateADuser adUser)
{
var ldapOperationResult = new OutputUser {
operationSuccessful = false, user = null
};
using (var ldap = new LdapService(ldapConnectionInfo))
{
ldapOperationResult.user = ldap.UpdateAdUser(adUser);
ldapOperationResult.operationSuccessful = true;
return(ldapOperationResult);
}
}
public void Setup()
{
_user = "******";
_path = "CN=Users,DC=FRENDSTest01,DC=net";
_dn = "CN=MattiMeikalainen;CN=Users,DC=FRENDSTest01,DC=net";
_groupDn = "CN=Guests,CN=Builtin";
_connection = new LdapConnectionInfo
{
AuthenticationType = Authentication.Secure,
LdapUri = "LDAP://" + ConfigHandler.ReadConfigValue("HiQ.AzureADTest.Address"),
Username = ConfigHandler.ReadConfigValue("HiQ.AzureADTest.User"),
Password = ConfigHandler.ReadConfigValue("HiQ.AzureADTest.Password")
};
}
/// <summary>
/// Move a object to another OU (Organizational Unit). Returns class, which carries a copy of the updated object.
/// </summary>
/// <param name="ldapConnectionInfo"></param>
/// <param name="adObject"></param>
/// <returns>Object { DirectoryEntry ObjectEntryCopy }</returns>
public static MoveAdObjectResult AD_MoveObject([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] MoveObject adObject)
{
var result = new MoveAdObjectResult
{
OperationSuccessful = false
};
using (var ldap = new LdapService(ldapConnectionInfo))
{
result.ObjectEntryCopy = ldap.MoveAdObject(adObject);
result.OperationSuccessful = true;
}
return(result);
}
public void Setup()
{
_user = "******";
_path = "CN=Users,DC=FRENDSTest01,DC=net";
_dn = "CN=MattiMeikalainen;CN=Users,DC=FRENDSTest01,DC=net";
_groupDn = "CN=Guests,CN=Builtin";
_connection = new LdapConnectionInfo
{
AuthenticationFlags = new [] { new AuthType {
AuthenticationFlag = Authentication.Secure, Value = true
} },
LdapUri = "LDAP://" + Environment.GetEnvironmentVariable("HiQAzureADTestAddress", EnvironmentVariableTarget.User),
Username = Environment.GetEnvironmentVariable("HiQAzureADTestUser", EnvironmentVariableTarget.User),
Password = Environment.GetEnvironmentVariable("HiQAzureADTestPassword", EnvironmentVariableTarget.User),
};
_passConnection = new PasswordParameters
{
AdServer = Environment.GetEnvironmentVariable("HiQAzureADTestAddress", EnvironmentVariableTarget.User),
AdContainer = "DC=FRENDSTest01",
Username = Environment.GetEnvironmentVariable("HiQAzureADTestUser", EnvironmentVariableTarget.User),
Password = Environment.GetEnvironmentVariable("HiQAzureADTestPassword", EnvironmentVariableTarget.User),
// UserPrincipalName not confirmed to exist in test AD - TO DO!
UserPrincipalName = "*****@*****.**",
// HiQAzureADTestUserNewPassword has not yet been set - TO DO!
NewPassword = Environment.GetEnvironmentVariable("HiQAzureADTestUserNewPassword", EnvironmentVariableTarget.User),
ContextOptionFlags = new []
{
new Context {
ContextOptionFlag = ContextOption.SimpleBind, Value = true
},
new Context {
ContextOptionFlag = ContextOption.Signing, Value = true
},
new Context {
ContextOptionFlag = ContextOption.ServerBind, Value = true
}
}
};
}
/// <summary>
/// Searches Active Directory for objects specified by the given Path + filter, included in the AD_FetchObjectProperties class.
/// </summary>
/// <param name="ldapConnectionInfo">The LDAP connection information</param>
/// <param name="SearchParameters">Path and filter needed for the query</param>
/// <returns>LdapResult class: the Collection of the DirectoryEntry classes.</returns>
public static List <OutputObjectEntry> AD_FetchObjects([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] AD_FetchObjectProperties SearchParameters)
{
var retOutputs = new List <OutputObjectEntry>();
List <DirectoryEntry> tmpObjectEntries;
ldapConnectionInfo.LdapUri = ldapConnectionInfo.LdapUri + "/" + SearchParameters.Path;
using (var ldap = new LdapService(ldapConnectionInfo)) tmpObjectEntries = ldap.SearchObjectsByFilter(SearchParameters.Filter);
foreach (var item in tmpObjectEntries)
{
var outputClass = new OutputObjectEntry
{
ObjectEntry = item
};
retOutputs.Add(outputClass);
}
return(retOutputs);
}
/// <summary>
/// Create a user to AD.
/// </summary>
/// <param name="ldapConnectionInfo">The LDAP connection information</param>
/// <param name="adUser">The user record to be created</param>
/// <param name="Password">Passes two parameters to this task: bool setPassword, which defines if a password should be set at create time, and string newPassword, containing the password to be set.</param>
/// <returns>LdapResult class, which carries a copy of the created user record.</returns>
public static OutputUser AD_CreateUser([PropertyTab] LdapConnectionInfo ldapConnectionInfo, [PropertyTab] CreateADuser adUser, AD_CreateUserProperties Password)
{
var ldapOperationResult = new OutputUser {
operationSuccessful = false, user = null
};
using (var ldap = new LdapService(ldapConnectionInfo))
{
ldapOperationResult.user = ldap.CreateAdUser(adUser);
if (Password.setPassword)
{
SetPassword.SetUserPassword(ldapConnectionInfo.LdapUri, adUser.Path, ldapConnectionInfo.Username, ldapConnectionInfo.Password, adUser.CN, Password.newPassword);
}
ldapOperationResult.operationSuccessful = true;
return(ldapOperationResult);
}
}
public LdapService(LdapConnectionInfo ldapConnectionInfo)
{
_rootEntry = new DirectoryEntry(ldapConnectionInfo.LdapUri, ldapConnectionInfo.Username, ldapConnectionInfo.Password, ldapConnectionInfo.GetAuthenticationType());
}
