2016年3月8日 星期二

JAVA junit測試 AD帳密驗證 + search AD displayName(顯示名稱) 

  1. package junit.test.AD;
  2.  
  3. import java.util.Hashtable;
  4.  
  5. import javax.naming.AuthenticationException;
  6. import javax.naming.CommunicationException;
  7. import javax.naming.Context;
  8. import javax.naming.NamingEnumeration;
  9. import javax.naming.NamingException;
  10. import javax.naming.directory.Attributes;
  11. import javax.naming.directory.SearchControls;
  12. import javax.naming.directory.SearchResult;
  13. import javax.naming.ldap.InitialLdapContext;
  14. import javax.naming.ldap.LdapContext;
  15.  
  16. import org.junit.Test;
  17.  
  18.  
  19. public class AdTest {
  20.  @Test
  21.  public void test() {
  22. //  ResourceBundle res = ResourceBundle.getBundle("config");
  23. //  String ldapURL = res.getString("Active.directory.ldapURL");
  24.   String ldapURL = "ldap://172.23.101.108:389" ;
  25.   System.out.println(ldapURL);
  26.   String account = "admin";
  27.   String password = "p@ssw0rd";
  28.   try{
  29.      LDAP_AUTH_AD(ldapURL, account, password);
  30.    System.out.println("認證成功!");
  31.   } catch (Exception e) {
  32.    System.out.println(e.getMessage());
  33.   }
  34.  }
  35.  public static void LDAP_AUTH_AD(String ldap_url, String account, String password) throws Exception {
  36.      if (account.isEmpty() || password.isEmpty()) throw new Exception("認證失敗!");
  37.         Hashtable env = new Hashtable();
  38.         env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  39.         env.put(Context.PROVIDER_URL, ldap_url);
  40.         env.put(Context.SECURITY_AUTHENTICATION, "simple");
  41.         env.put(Context.SECURITY_PRINCIPAL, account+"@mizuho.com");
  42.         env.put(Context.SECURITY_CREDENTIALS, password);
  44.         LdapContext ctx = null;
  45.         try {
  46.             ctx = new InitialLdapContext(env, null);
  47.         } catch (AuthenticationException e) {
  48.          /**
  49.          * error Code 說明 : 
  50.          * 525 : 用戶沒有找到
  51.          * 52e : 證號不正確
  52.          * 530 : 此時間不允許登入(not permitted to logon at this time)
  53.          * 532 : 密碼期滿
  54.          * 533 : 帳號不可用
  55.          * 701 : 帳戶期滿
  56.          * 773 : 用戶必須重設密碼
  57.          * data 後面為錯誤代碼
  58.          */
  59.          throw new Exception(e.getMessage() + "認證失敗!");
  60.         } catch (CommunicationException e) {
  61.          throw new Exception("找不到伺服器!");
  62.         } catch (Exception e) {
  63.          throw new Exception("發生未知的錯誤!");
  64.         } finally {
  65.             if (ctx != null) {
  66.                 try {
  67.                     ctx.close();
  68.                 } catch (NamingException e) {
  69.                 }
  70.             }
  71.         }      
  72.     }
  73.  @Test
  74.  public void testQueryAdUser() throws NamingException {
  75.   String userId = "admin" ;
  76.   String ldapURL = "ldap://172.23.101.108:389" ;
  77.   String domainName = "mizuho.com";
  78.   String account = "admin";
  79.   String password = "p@ssw0rd";
  80.   
  81.   Hashtable env = new Hashtable();
  82.         env.put(Context.INITIAL_CONTEXT_FACTORY, "com.sun.jndi.ldap.LdapCtxFactory");
  83.         env.put(Context.PROVIDER_URL, ldapURL);
  84.         env.put(Context.SECURITY_AUTHENTICATION, "simple");
  85.         env.put(Context.SECURITY_PRINCIPAL, account+"@"+domainName);
  86.         env.put(Context.SECURITY_CREDENTIALS, password);
  87.         
  88.         LdapContext ldapContext = new InitialLdapContext(env, null);
  89.   
  90.   SearchControls searchCtls = new SearchControls();
  91.   String returnedAtts[] = { "sn", "givenName", "samAccountName","displayName" };
  92.   
  93.   searchCtls.setReturningAttributes(returnedAtts);
  94.   searchCtls.setSearchScope(SearchControls.SUBTREE_SCOPE);
  95.   String searchFilter = "(&(userPrincipalName="+userId+"@"+domainName+"))";
  96.   String searchBase = "dc=mizuho,dc=com";
  97.   
  98.   // initialize counter to total the results
  99.   int totalResults = 0;
  101.   // Search for objects using the filter
  102.   NamingEnumeration answer = ldapContext.search(searchBase,
  103.     searchFilter, searchCtls);
  105.   // Loop through the search results
  106.   while (answer.hasMoreElements()) {
  107.    SearchResult sr = (SearchResult) answer.next();
  109.    totalResults++;
  111.    System.out.println(">>>" + sr.getName());
  112.    String displayName = sr.getName().replace("CN=", "");
  113.    displayName = displayName.split(",")[0] ;
  114.    System.out.println("displayName >>" + displayName);
  115.    Attributes attrs = sr.getAttributes();
  116.    System.out.println(">>>>>>" + attrs.get("samAccountName"));
  117.   }
  118.   System.out.println("Total results: " + totalResults);
  119.   ldapContext.close();
  120.  }
  121. }
張貼者:
標籤: , ,

沒有留言:

張貼留言

訂閱: 張貼留言 (Atom)