基于springldap的增删改查以及验证

package com.spring.dao; import java.util.List; import javax.naming.NamingException; import javax.naming.directory.Attributes; import javax.naming.directory.BasicAttribute; import javax.naming.directory.BasicAttributes; import javax.naming.directory.DirContext; import javax.naming.directory.ModificationItem; import org.springframework.beans.factory.support.ReplaceOverride; import org.springframework.ldap.core.AttributesMapper; import org.springframework.ldap.core.DirContextAdapter; import org.springframework.ldap.core.DirContextOperations; import org.springframework.ldap.core.DistinguishedName; import org.springframework.ldap.core.LdapTemplate; import org.springframework.ldap.filter.AndFilter; import org.springframework.ldap.filter.EqualsFilter; import com.spring.bean.UserBean; @SuppressWarnings("unchecked") public class UserDao { private LdapTemplate ldapTemplate; public void setLdapTemplate(LdapTemplate ldapTemplate) { this.ldapTemplate = ldapTemplate; } /* * 批量查询 */ public List UserList() { return ldapTemplate.search("", "(objectclass=idm-user)", new AttributesMapper() { public Object mapFromAttributes(Attributes attrs) throws NamingException { return attrs.get("idm-oid").get(); } }); } /* * search单查 */ public List<UserBean> getUser(String id) { AndFilter andFilter = new AndFilter(); andFilter.and(new EqualsFilter("objectclass", "idm-user")); andFilter.and(new EqualsFilter("idm-oid", id)); return ldapTemplate.search("", andFilter.encode(), new LdapAttributeMapper()); } /* * lookup单查 */ public UserBean getUserBean(UserBean bean) { DistinguishedName dn = new DistinguishedName(); dn.add("idm-oid", bean.getId()); return (UserBean) ldapTemplate.lookup(dn, new LdapAttributeMapper()); } /* * 添加 */ public void addUser(UserBean bean) { Attributes attr = new BasicAttributes(); attr.put("objectclass", "top"); attr.put("objectclass", "idm-user"); attr.put("idm-oid", bean.getId()); attr.put("idm-name", bean.getName()); attr.put("idm-staticPwd", bean.getStaticPwd()); DistinguishedName dn = new DistinguishedName(); /* * 加不加下面这句 主要看配置文件的 <property name="base" * value="ou=user,dc=domain,dc=com" /> * 怎么写的，如果已经定位到ou不写ou,如果只定位到dc那必须写上下面这句 把ou的地址加上 dn.add("ou","user"); */ dn.add("idm-oid", bean.getId()); //ldapTemplate.bind(1, 2, 3);1:dn 2:DirContextAdapter 3:Attributes ldapTemplate.bind(dn, null, attr); } /* * 删除 */ public void delUser(UserBean bean) { DistinguishedName dn = new DistinguishedName(); dn.add("idm-oid", bean.getId()); ldapTemplate.unbind(dn); } /* * rebind修改 */ public void updateUser(UserBean bean) { Attributes attr = new BasicAttributes(); attr.put("objectclass", "idm-user"); if (bean.getId() != null) attr.put("idm-oid", bean.getId()); if (bean.getName() != null) attr.put("idm-name", bean.getName()); if (bean.getStaticPwd() != null) attr.put("idm-staticPwd", bean.getStaticPwd()); DistinguishedName dn = new DistinguishedName(); dn.add("idm-oid", bean.getId()); ldapTemplate.rebind(dn, null, attr); } /* * modify两种修改方法 */ public void modifyUser(UserBean bean) { DistinguishedName dn = new DistinguishedName(); dn.add("idm-oid", bean.getId()); // 只能修改一个属性的方法 /* * ModificationItem itm1 = new ModificationItem( * DirContext.REPLACE_ATTRIBUTE, new BasicAttribute("idm-name", * bean.getName())); ldapTemplate.modifyAttributes(dn, new * ModificationItem[] { itm }); */ // 修改多个属性的方法1 /*DirContextOperations dic = ldapTemplate.lookupContext(dn); // dic.setAttributeValues("objectclass", // new String[] { "top", "idm-user" }); dic.setAttributeValue("idm-name", bean.getName()); dic.setAttributeValue("idm-staticPwd", bean.getStaticPwd()); ldapTemplate.modifyAttributes(dic);*/ //修改多个属性的方法2 DirContextAdapter context = (DirContextAdapter) ldapTemplate.lookup(dn); context.setAttributeValue("idm-name", bean.getName()); context.setAttributeValue("idm-staticPwd", bean.getStaticPwd()); ldapTemplate.modifyAttributes(dn, context.getModificationItems()); } }