Code Example

Subject: Code Example
Author: SteveHB
In response to: LDAP Tree Delete Control -- Code Example
Posted on: 04/04/2007 05:39:11 PM

/**
 *  A code example of Tree Delete Control JNDI Client for AD
 *  Note: This example has been tested to work with Active Directory 2003
 */
import javax.naming.*;
import javax.naming.directory.*;
import javax.naming.ldap.*;
import java.util.Hashtable;

public class TreeDeleteControlJndiClient 
{		   
  static final String  TREE_DELETE_CONTROL_OID = "1.2.840.113556.1.4.805";

  public static void main(String[] args)
  {
    Hashtable env = new Hashtable();

    env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
    env.put(Context.PROVIDER_URL, "ldap://myAactiveDirectory:389");
    env.put(Context.SECURITY_AUTHENTICATION, "simple");
    env.put(Context.SECURITY_PRINCIPAL, "testUser@myDomain.com");
    env.put(Context.SECURITY_CREDENTIALS, "password");
  	
    try{
  	
      // Create the initial directory context
      LdapContext ctx = new InitialLdapContext(env, null);
		
      System.out.println("Initial binding done!");
      
      /* Query the server to see if the Tree Delete Control is supported */ 
      if (!isTreeDeleteControlSupported(ctx)){
        System.out.println("The server does not support Tree Delete Control.");
        System.exit(1);
      }
      
      /* Activate the control */
      Control[] tdCtls = new Control[]{new TreeDeleteControl()};
      ctx.setRequestControls(tdCtls);
      String delete_dn = "ou=Sales,cn=Users,dc=mydomain,dc=com";
      ctx.destroySubcontext(delete_dn);
    	
      // Close the LDAP association
      ctx.close();
	    
    }catch (Exception e){
    	e.printStackTrace();
    }
  }

  /**
   * Is Tree Delete Control supported?
   *
   * Query the rootDSE object to find out if the Tree Delete Control
   * is supported.
   */
  static boolean isTreeDeleteControlSupported(LdapContext ctx) 
	throws NamingException
  {
    SearchControls ctl = new SearchControls();
    ctl.setReturningAttributes(new String[]{"supportedControl"});
    ctl.setSearchScope(SearchControls.OBJECT_SCOPE);

    /* search for the rootDSE object */
    NamingEnumeration results = ctx.search("", "(objectClass=*)", ctl);

    while(results.hasMore()){
      SearchResult entry = (SearchResult)results.next();
      NamingEnumeration attrs = entry.getAttributes().getAll();
      while (attrs.hasMore()){
      	Attribute attr = (Attribute)attrs.next();
      	NamingEnumeration vals = attr.getAll();
        while (vals.hasMore()){
          String value = (String) vals.next();
          if (value.equals(TREE_DELETE_CONTROL_OID))
            return true;
        }
      }
    }
    return false;
  }
}


class TreeDeleteControl implements Control 
{
  public byte[] getEncodedValue() {
    return new byte[] {};
  }

  public String getID() {
    return "1.2.840.113556.1.4.805";
  }

  public boolean isCritical() {
    return true;
  }
}

>
> On 04/04/2007 05:38:01 PM SteveHB wrote:

Tree Delete Control

TreeDeleteControl ::= SEQUENCE { controlType 1.2.840.113556.1.4.805, criticality BOOLEAN DEFAULT FALSE, controlValue (absent) }

This control allows a client to delete an entire subtree. This control will delete an entire subtree of a container entry. This control is beneficial in extending the functionality of the LDAP protocol and may be useful in administration in an LDAP environment.

References:

Next Post: javax.naming.ContextNotEmptyException SteveHB 04/04/2007 05:49:50 PM
Previous Post: LDAP Tree Delete Control -- Code Example SteveHB 04/04/2007 05:38:01 PM
Next Topic: JNDI Backslash Problem: Part I -- SearchResult.getName() JNDI 05/18/2007 08:18:11 PM
Previous Topic: Tree Delete Control SteveHB 03/30/2007 11:13:55 AM
Index: by Date
Index: by Topic