Skip to content

Attach response controls to exceptions #251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 9 commits into from
Closed

Attach response controls to exceptions #251

wants to merge 9 commits into from

Conversation

somay
Copy link

@somay somay commented Nov 16, 2018

Fixes: #208

exception.args[0]['ctrls'] is a list of the form of (oid: str, criticality: int, berval: bytes).

I've choose ctrls instead of controls as the key of the dictionary because the other keys are also abbreviated like desc, info.

@codecov
Copy link

codecov bot commented Nov 16, 2018
edited
Loading

Codecov Report

Merging #251 into master will increase coverage by 13.16%.
The diff coverage is 61.9%.

@@             Coverage Diff             @@
##           master     #251       +/-   ##
===========================================
+ Coverage   57.91%   71.08%   +13.16%     
===========================================
  Files          49       49               
  Lines        5910     4824     -1086     
  Branches      815      815               
===========================================
+ Hits         3423     3429        +6     
+ Misses       2157     1064     -1093     
- Partials      330      331        +1
Impacted Files Coverage Δ
Lib/slapdtest/_slapdtest.py 85.61% <100%> (+27.5%) ⬆️
Modules/constants.c 48.68% <100%> (+2.85%) ⬆️
Modules/LDAPObject.c 66.93% <33.33%> (+0.22%) ⬆️
Lib/ldap/modlist.py 84.61% <0%> (+1.59%) ⬆️
Lib/ldap/asyncsearch.py 28.82% <0%> (+4.4%) ⬆️
Lib/ldap/controls/sessiontrack.py 65.21% <0%> (+5.21%) ⬆️
Lib/ldap/schema/tokenizer.py 97.87% <0%> (+5.87%) ⬆️
Lib/ldap/schema/models.py 71.07% <0%> (+6.46%) ⬆️
Lib/ldap/cidict.py 69.23% <0%> (+7.16%) ⬆️
... and 26 more

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7ce471e...9ed502d. Read the comment docs.

encukou
encukou reviewed Nov 20, 2018
View reviewed changes
Lib/slapdtest/_slapdtest.py Outdated
:py:class:`PPolicyEnabledSlapdObject` as the slapd controller.
"""

server_class = PPolicyEnabledSlapdObject
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this necessary? PPolicyEnabledSlapdTestCase needs to be subclassed; the subclass can set its server_class directly.

Lib/slapdtest/_slapdtest.py Outdated
@@ -596,3 +623,43 @@ def setUpClass(cls):
@classmethod
def tearDownClass(cls):
cls.server.stop()


class PPolicyEnabledSlapdObject(SlapdObject):
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do you think this class will be needed for more than just one test? If not, would it be better to define the class just in the file for that test?

Lib/slapdtest/_slapdtest.py
@@ -187,6 +191,9 @@ class SlapdObject(object):
'core.schema',
)

modules = ()
overlays = ()
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Since these attributes can be overridden in subclasses, they should be documented.

Lib/slapdtest/_slapdtest.py Outdated
ldap_conn.simple_bind_s(who or self.server.root_dn, cred or self.server.root_pw)
return ldap_conn

def _make_ldap_object(self, **kwargs):
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If subclasses are supposed to call this, it should be documented.
Perhaps it would be better to add an overridable bind=True class attribute?

Modules/constants.c Outdated
@@ -104,6 +104,11 @@ LDAPerror(LDAP *l, char *msg)
ldap_memfree(matched);
}

if (pyctrls != NULL) {
PyDict_SetItemString(info, "ctrls", pyctrls);
/* Py_XDECREF(pyctrls) must be called on caller side */
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Needing to call Py_XDECREF(pyctrls) is implied by Python's calling convention – it's a borrowed reference. No need to point it out here.

Tests/t_ldapobject.py Outdated

controls = cm.exception.args[0]['ctrls']
pp = ldap.controls.DecodeControlTuples(controls)[0]
self.assertEqual(pp.error, 1) # error == 1 means AccountLockout
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we have a constant for AccountLockout somewhere?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you also check len(ldap.controls.DecodeControlTuples(controls))?

Tests/t_ldapobject.py
# Firstly cause a bind failure to lock out the account
with self.assertRaises(ldap.INVALID_CREDENTIALS):
wrong_password = 'wrong' + password
ldap_conn.simple_bind_s(user_dn, wrong_password)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you also check here that ctrls is empty?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

checked.
Thank you for quick and detailed review.

@somay somay force-pushed the issue208-controls-in-failed-responses branch from acafa3a to a0ba399 Compare November 21, 2018 07:13
@somay
Copy link
Author

somay commented Nov 22, 2018

I haven't finished yet.
I'll comment explicitly when I'm ready for your review.

@encukou encukou added the wip label Jan 7, 2019
@mistotebe
Copy link
Contributor

I have started related work on this and #177 in https://github.com/mistotebe/python-ldap/tree/exceptions, @somay could you have a look and see if these two could be reconciled (I'm happy to do that)?

@tiran
Copy link
Member

tiran commented May 2, 2019

Petr and I are at PyCon until end of next week. It may take two weeks until we are able to look into your PR.

I noticed some unrelated improvements like a memory leak fix and some changes to slapdtest. Could you please file separate bugs and PRs for these? Thanks

@mistotebe
Copy link
Contributor

@tiran sure, hope you're having fun, either of you attending this year's LDAPCon?

The linked branch is a work in progress and I've been rewriting it along the way, I guess I can split things at some point when they've settled.

Also, do you think you'll have some time to moderate the email I sent to the mailing list?

@somay
Copy link
Author

somay commented May 21, 2019
edited
Loading

@mistotebe sorry for long inactivity.
I'm also grateful if you would handle this issue in addition to your one.
Actually, I have little time to finish this PR (sorry) because I will quit my current LDAP related job soon.
Feel free to reuse my code modification and documentation.
I will try to review your draft in this week, although the scope of your PR seems much wider than mine.

@encukou
Copy link
Member

encukou commented Jun 5, 2020

Thanks to @mistotebe's work in #288, response controls will be available under ctrls.

@encukou encukou closed this Jun 5, 2020
@tiran tiran added this to the 3.3 milestone Jun 5, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@encukou encukou encukou left review comments

Assignees
No one assigned
Labels
help wanted wip
Projects
None yet
Milestone
3.3
Development

Successfully merging this pull request may close these issues.

Response controls are not attached to exceptions
4 participants
@somay @mistotebe @tiran @encukou