Skip to content

Commit

Permalink
Use flush for all ldiff changes to an openldap_access resource
Browse files Browse the repository at this point in the history 
Flushes happen every time a resource changes, whether it is creation,
destroy or modify. Ensure we do not needlesly copy-paste the ldapmodify
code in those three separate instances.

This also ensures that if a new property is ever added, we do not need
create a separate setter.

This commit thus also fixes a bug where if a `what` of an
openldap_access resource changed, it would not trigger an update.
The setter for that property was lost in the refactor of commit
91e9723. -> Fixes voxpupuli#420.
  • Loading branch information
@JonasVerhofste
JonasVerhofste committed Oct 24, 2024
1 parent 28a4084 commit 815a4f6
Showing 1 changed file with 30 additions and 46 deletions.
76 changes: 30 additions & 46 deletions lib/puppet/provider/openldap_access/olc.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -97,48 +97,30 @@ def exists?
end

def create
t = Tempfile.new('openldap_access')
t << "dn: #{getDn(resource[:suffix])}\n"
t << "add: olcAccess\n"
t << if resource[:position]
"olcAccess: {#{resource[:position]}}to #{resource[:what]}\n"
else
"olcAccess: to #{resource[:what]}\n"
end
resource[:access].flatten.each do |a|
t << " #{a}\n"
end
t.close
Puppet.debug(File.read(t.path))
begin
ldapmodify(t.path)
rescue StandardError => e
raise Puppet::Error, "LDIF content:\n#{File.read t.path}\nError message: #{e.message}"
@property_flush << 'add: olcAccess'

@property_flush << if resource[:position]
"olcAccess: {#{resource[:position]}}to #{resource[:what]}"
else
"olcAccess: to #{resource[:what]}"
end

@property_flush << resource[:access].flatten.map do |a|
" #{a}"
end
end

def destroy
t = Tempfile.new('openldap_access')
t << "dn: #{getDn(@property_hash[:suffix])}\n"
t << "changetype: modify\n"
t << "delete: olcAccess\n"
t << "olcAccess: {#{@property_hash[:position]}}\n"
t.close
Puppet.debug(File.read(t.path))
begin
ldapmodify(t.path)
rescue StandardError => e
raise Puppet::Error, "LDIF content:\n#{File.read t.path}\nError message: #{e.message}"
end
@property_flush << [
'changetype: modify',
'delete: olcAccess',
"olcAccess: {#{@property_hash[:position]}}",
]
end

def initialize(value = {})
super(value)
@property_flush = {}
end

def access=(value)
@property_flush[:access] = value.flatten
@property_flush = []
end

def self.getCountOfOlcAccess(suffix)
Expand Down Expand Up @@ -172,30 +154,32 @@ def getCurrentOlcAccess(suffix)
end

def flush
unless @property_flush.empty?
if @property_flush.empty?
current_olcAccess = getCurrentOlcAccess(resource[:suffix])
t = Tempfile.new('openldap_access')
t << "dn: #{getDn(resource[:suffix])}\n"
t << "changetype: modify\n"
t << "replace: olcAccess\n"
@property_flush << [
'changetype: modify',
'replace: olcAccess',
]
position = resource[:position] || @property_hash[:position]
current_olcAccess.each do |olc_access|
if olc_access[:position].to_i == position.to_i
t << "olcAccess: {#{position}}to #{resource[:what]}\n"
@property_flush << "olcAccess: {#{position}}to #{resource[:what]}"
resource[:access].flatten.each do |a|
t << " #{a}\n"
@property_flush << " #{a}"
end
else
t << "olcAccess: {#{olc_access[:position]}}#{olc_access[:content]}\n"
@property_flush << "olcAccess: {#{olc_access[:position]}}#{olc_access[:content]}"
end
end
self.class.getCountOfOlcAccess(resource[:suffix])
t.close
Puppet.debug(File.read(t.path))
end
@property_flush.prepend("dn: #{getDn(resource[:suffix])}")
Tempfile.create('openldap_access') do |t|
t.puts(@property_flush)
Puppet.debug(t.read)
begin
ldapmodify(t.path)
rescue StandardError => e
raise Puppet::Error, "LDIF content:\n#{File.read t.path}\nError message: #{e.message}"
raise Puppet::Error, "LDIF content:\n#{t.read}\nError message: #{e.message}"
end
end
@property_hash = resource.to_hash
Expand Down

0 comments on commit 815a4f6

Please sign in to comment.