GUACAMOLE-1881: reading domain name from ldap extension

Josna battula · Josna battula · commit 0e99388d5ec3 · 2024-01-16T16:38:44.000+13:00
diff --git a/extensions/guacamole-auth-ldap/src/main/java/org/apache/guacamole/auth/ldap/AuthenticationProviderService.java b/extensions/guacamole-auth-ldap/src/main/java/org/apache/guacamole/auth/ldap/AuthenticationProviderService.java
@@ -286,18 +286,23 @@ public LDAPAuthenticatedUser authenticateUser(Credentials credentials)
                     CredentialsInfo.USERNAME_PASSWORD);
 
         try {
-        
+
             // Retrieve group membership of the user that just authenticated
             Set<String> effectiveGroups =
                     userGroupService.getParentUserGroupIdentifiers(config, config.getBindDN());
 
             // Return AuthenticatedUser if bind succeeds
             LDAPAuthenticatedUser authenticatedUser = authenticatedUserProvider.get();
+
+            Map<String, String> tokens = getAttributeTokens(config);
+            String domainName = getDomainToken(credentials);
+            if (domainName != null) {
+                tokens.put(TokenName.canonicalize("domain-name", LDAP_ATTRIBUTE_TOKEN_PREFIX), domainName);
+            }
             authenticatedUser.init(config, credentials,
-                    getAttributeTokens(config), effectiveGroups);
+                    tokens, effectiveGroups);
 
             return authenticatedUser;
-
         }
 
         catch (GuacamoleException | RuntimeException | Error e) {
@@ -306,6 +311,26 @@ public LDAPAuthenticatedUser authenticateUser(Credentials credentials)
         }
 
     }
+    /**
+     * Returns parameter current ldap domain token generated from user credentials
+     * If no multiple LDAP are configured on GUACAMOLE_HOME
+     * a null is returned.
+     *
+     * @param credentials
+     *     The credentials to use for authentication.
+     *
+     * @return
+     *     Domain name by splitting logged username when multiple LDAP configuration is available
+     *     or null if no such configuration
+     */
+    private String getDomainToken(Credentials credentials) {
+       String ldapDomainName = null;
+        // Creating custom LDAP attribute token - domain name - when configured to multiple LDAP
+        if (credentials.getUsername().contains("\\")) {
+           ldapDomainName =credentials.getUsername().split("\\\\")[0];
+        }
+        return ldapDomainName;
+    }
 
     /**
      * Returns parameter tokens generated from LDAP attributes on the user
@@ -356,7 +381,6 @@ private Map<String, String> getAttributeTokens(ConnectedLDAPConfiguration config
                 tokens.put(TokenName.canonicalize(attr.getId(),
                         LDAP_ATTRIBUTE_TOKEN_PREFIX), attr.getString());
             }
-
         }
         catch (LdapException e) {
             throw new GuacamoleServerException("Could not query LDAP user attributes.", e);
