How to Integrate NDS eDirectory with Your Web Application Using How-To Article
Transcription
How to Integrate NDS eDirectory with Your Web Application Using How-To Article
How to Integrate NDS eDirectory with Your Web Application Using the eCommerce Beans for LDAP How-To Article NOVELL APPNOTES J. Jeffrey Hanson Senior Architect Financial Fusion [email protected] This article discusses the use of LDAP Beans for eCommerce in leveraging NDS eDirectory within Web Applications. Contents: • The Need for LDAP • Separating Business Logic and Presentation Using MVC • Supported Platforms and Installation Requirements • LDAP Connections • Modifying LDAP Entries • Deleting LDAP Entries • Summary • References Topics Java Beans, LDAP, NDS eDirectory Products NetWare, NDS eDirectory Audience network designers, administrators, integrators Level intermediate Prerequisite Skills familiarity with LDAP and NDS eDirectory Operating System NetWare Tools eCommerce Beans for LDAP Sample Code yes J u l y 2 0 0 1 61 The Need for LDAP Directory services are designed to assist in locating organizations, people, and other entities such as servers, printers, databases, groups, applications, and so on. They link organizations and other entities together using a hierarchical tree structure, and they maintain logical order in a network that may interconnect many sites and may support thousands of users with multiple network objects and interconnections. Many different directory services implementations exist with several different proprietary APIs used to access the directories they represent. Recently, the introduction of Lightweight Directory Access Protocol (LDAP) has evolved as a platform and directory independent mechanism for creating, managing, and accessing directory services servers. Developed at the University of Michigan at Ann Arbor, LDAP is a protocol for accessing and managing directory services. LDAP’s basic structure is based on a simple information tree called a “directory information tree” (DIT). Each leaf in the tree is an entry; the first, or top-level entry, is the root entry. An entry includes a distinguished name (DN) and any number of attribute/value pairs. The DN, which is the name of an entry, must be unique. It represents the relationship between the entry and the rest of the DIT, similar to the way in which a file’s full path name represents its relationship in a file system. The LDAP protocol defines six standard operations that can be performed: • Binding/authenticating to the directory • Searching for entries in the directory • Reading attributes of entries in the directory • Adding entries to the directory • Modifying existing entries in the directory • Removing an entry from the directory Other services defined by LDAP are referral (allowing directory servers to link to each other), replication, and encryption using SASL, SSL, user certificates, and Access Control Lists. Separating Business Logic and Presentation Using MVC Novell’s LDAP Beans for eCommerce will be used to perform several kinds of directory services management duties, as shown in the Web application examples below. Web applications typically consist of an HTTP request passed from a Web browser to a Web server, or from a Web application server where some form of business logic or data access is performed. The response is formed as HTML and passed back to the Web browser. This interaction between the client and server 62 www.novell.com/appnotes can be abstracted using the model-view-controller (MVC) pattern. The request will be initially handled by a servlet residing within the Web application environment. This servlet acts as the controller of the Web application. The controller-servlet reacts to the request by retrieving data for the client and by executing business logic for the client. The controller-servlet then passes a response, in the form of HTML, back to the client. Using one servlet to handle data access, perform business logic, form HTML responses, and so on, leads to an implementation that is not easily customized for different domains and/or client devices. To solve this problem, let the controller-servlet handle the incoming requests, but supply the controller-servlet with Java Beans that perform data access and business logic. As long as you carefully craft the interfaces that the Java Beans expose, the beans can be easily replaced with other beans that access different data sources or perform different business logic. This can all take place without re-installing the application or bringing down the server. The eCommerce beans used for data access and business logic are built using the “Command” pattern and will make up the model for this application. The design can be taken even further towards shielding from customization problems and, at the same time, provide a clean mechanism for supporting multiple client devices. Do this by using Java Server Pages as the means to produce the user interface that is passed back to the client. Java Server Pages (JSP) are simply HTML pages with a few special tags introduced, which allow Java code to be embedded within the HTML. A JSP is compiled on the server, on its first invocation, into a Java servlet. The resulting servlet handles the duties of forming the response that is passed back to the client. An HTML author can customize the JSP at any point after its creation, and the server will then re-compile the JSP on its next invocation. Then the customization will be exposed to the client. This eliminates the need to re-compile any other part of the application and can be done while the server and application are running. Java Server Pages make up the view portion of the application. Supported Platforms and Installation Requirements Novell’s eCommerce LDAP Beans are supported on the following platforms: • Java 2 Platform, Standard Edition, v1.2 or greater • NDS eDirectory version 8.0 or greater • iPlanet Directory Server version 4.1 or greater J u l y 2 0 0 1 63 The following libraries and packages are prerequisites in order to use Novell’s eCommerce LDAP Beans: 1. 2. 3. JNDI 1.2.1 Class Libraries and the LDAP 1.2.2 Service Provider. This software is included in the Java 2 SDK, v1.3. However, if you are using the Java 2 SDK, v1.2, you will need to follow these steps to install the software as an installed extension: • Download and uncompress the JNDI 1.2.1 Class Libraries and the LDAP 1.2.2 Service Provider from the JNDI Web site (http://java.sun.com/products/jnd). • Copy the libraries (jndi.jar, ldap.jar, providerutil.jar) from both packages to JAVA\lib\ext directory, where JAVA is the Java Runtime home (e.g. sys:\java or c:\jdk1.2.2\jre). An implementation of JSSE 1.0.2 is also required when using TLS/SSL with the eCommerce LDAP Beans. Sun’s JSSE 1.0.2 package meets this requirement. Follow these steps to install Sun’s implementation of JSSE: • Download and uncompress the JSSE 1.0.2 software from the JSSE Web site (http://java.sun.com/products/jsse). • Copy the library (jsse.jar) from the package to JAVA\lib\ext directory, where JAVA is the Java Runtime home (e.g. sys:\java or c:\jdk1.2.2\jre). If you are not going to use a TLS/SSL connection, you must enable clear text passwords by doing the following: • Run ConsoleOne and select your default container under the NDS tree. • Right-click on the LDAP Group object and select Properties. • On the General tab, mark “Allow Clear Text Passwords.” LDAP Connections Interacting with an LDAP server requires a number of items, including a connection to the server. Connecting to a server requires initializing a session with the LDAP server over the server’s LDAP port (typically 389). If the session initialization is successful, a connection handle is returned, which contains information about the connection to the LDAP server. When you use the standard LDAP API functions to interact with the LDAP server, you need to pass the connection handle as a parameter to most of the functions. When using Novell’s eCommerce Beans for LDAP, the connection handle is hidden and the interaction with an LDAP server is simplified. This is demonstrate in the following examples. 64 www.novell.com/appnotes Authenticating Methods for LDAP Authentication Method 1 - Standard: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.AuthenticateLdap" scope="request" /> <% // Set the input properties of the command bean bean.setURL(request.getParameter("URL")); bean.setDN(request.getParameter("DN")); bean.setPassword(request.getParameter("password")); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean // Save connection object in session session.putValue("Connection", bean.getLdapConnection()); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">AuthenticateLdap Standard</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Authentication Method 2 - SSL Connection: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> J u l y 2 0 0 1 65 <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.AuthenticateLdap" scope="request" /> <% // Set the input properties of the command bean bean.setURL(request.getParameter("URL")); bean.setDN(request.getParameter("DN")); bean.setPassword(request.getParameter("password")); bean.setProtocol("ssl"); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean // Save connection object in session session.putValue("Connection", bean.getLdapConnection()); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">AuthenticateLdap - SSL Connection</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Authentication Method 3 - Context-less login: Context-less login involves logging in using an e-mail address or any other entry attribute. There are two phases during the operation of context-less login. During the first phase, set the URL, CN, or Filter and Password. When execute() is called, the bean searches for matches to the CN or Filter. If only one match is found, the bean tries to authenticate using the Password. An exception is thrown if no matches are returned from the search. If more than one match is returned from the search, the isAuthenticated() method returns false. During the second phase, get the DNs from the bean. Choose one DN from the list and set the DN. When execute() is called the second time, the bean uses the distinguished name of the authentication object. 66 www.novell.com/appnotes <%@ page import="com.novell.ecb.Connection" %> <%@ page import="com.novell.ecb.ldap.LdapConnection" %> <%@ page import="com.novell.ecb.ldap.ContextlessLoginLdap" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.ContextlessLoginLdap" scope="request" /> <% // Check request for dn parameter String dn = request.getParameter("DN"); // Initial requst if (dn == null) { // Set the input properties of the command bean bean.setLdapSearchConnection((LdapConnection)session.getValue("Con nection")); bean.setURL(request.getParameter("URL")); bean.setCN(request.getParameter("cn")); bean.setPassword(request.getParameter("password")); // Call the execute method of the command bean bean.execute(); } // Followup request else { // Get command bean from session bean = (ContextlessLoginLdap)session.getValue("ContextlessLogin"); session.removeValue("ContextlessLogin"); // Set the input properties of the command bean bean.setDN(dn); // Call the execute method of the command bean bean.execute(); } // Query the output properties of the command bean // Check authentication if (bean.isAuthenticated()) { // Query the output properties of the command bean // Save connection object in session session.putValue("Connection", bean.getLdapConnection()); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> J u l y 2 0 0 1 67 <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">ContextlessLoginLdap</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> <% } else { // Save command bean in session session.putValue("ContextlessLogin", bean); %> <FORM name="AuthenticateLdap3" action="AuthenticateLdap3.jsp" method="post"> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD bgcolor="#6B8899" colspan="2" width="400"> <DIV class="tablehead2">ContextlessLoginLdap</DIV> </TD> </TR> <TR bgcolor="white"> <TD colspan="2"> <DIV class="formdescriptext"></DIV> </TD> </TR> <TR bgcolor="white"> <TD nowrap></TD> <TD nowrap></TD> </TR> <TR bgcolor="white"> <TD colspan="2"> <DIV class="head3indent">DN</DIV> </TD> </TR> <% // Query the output properties of the command bean // Loop through possible DNs String[] dns = bean.getDNs(); for(int i=0; i<dns.length; i++) { %> <TR bgcolor="white"> <TD nowrap colspan="2"><DIV class="indent1"><INPUT type="radio" name="DN" value="<%=dns[i]%>"<%=(i==0)?" checked":""%>> <%=dns[i]%></DIV></TD> </TR> <% } %> <TR bgcolor="white"> 68 www.novell.com/appnotes <TD nowrap></TD> <TD nowrap></TD> </TR> <TR bgcolor="white"> <TD nowrap></TD> <TD nowrap></TD> </TR> <TR bgcolor="white"> <TD></TD> <TD><INPUT type="submit" name="Submit" value="Submit"> <INPUT type="reset"></TD> </TR> <TR bgcolor="white"> <TD colspan="2"> <HR noshade size="2"> </TD> </TR> </TBODY> </TABLE> </FORM> <% } %> </BODY> </HTML> Authentication Method 4 - Public: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.AuthenticateLdap" scope="request" /> <% // Set the input properties of the command bean bean.setURL(request.getParameter("URL")); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean // Save connection object in session session.putValue("Connection", bean.getLdapConnection()); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">AuthenticateLdap - Public</DIV> </TD> </TR> <TR> J u l y 2 0 0 1 69 <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Maintaining State for an LDAP Connection Since the HTTP protocol is stateless, which means state is not maintained across multiple requests from the same user, there needs to be a way to preserve the state of the user’s session. This is done by exploiting the state-saving mechanism presented by the HttpSession object exposed as an implicit object in all JSP pages. The session object can be used to store objects containing any arbitrary data that should be kept track of during the session with each client. The following example demonstrates how to use the implicit session object to store the LDAP connection object returned from the AuthenticateLdap bean: <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.AuthenticateLdap" scope="request" /> <% // Set the input properties of the command bean bean.setURL(request.getParameter("URL")); bean.setDN(request.getParameter("DN")); bean.setPassword(request.getParameter("password")); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean // Save connection object in session session.putValue("Connection", bean.getLdapConnection()); %> Browsing LDAP Entries The following code demonstrates how to browse LDAP entries. <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD bgcolor="#CCCC99" width="400"> 70 www.novell.com/appnotes <DIV class="tablehead1">ListLdapEntries</DIV> </TD> </TR> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.ListLdapEntries" scope="request" /> <% // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean String[] names = bean.getNames(); for (int i=0; i < names.length; i++) { String color = (i % 2 == 0) ? "#FFFFFF" : "#EFEEE9"; %> <TR bgcolor="<%=color%>"> <TD> <DIV class="indent1"><%=names[i]%></DIV> </TD> </TR> <% } %> </TBODY> </TABLE> </BODY> </HTML> Searching for LDAP entries The following is an example of Search Method 1: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">SearchLdapEntries - Match Attributes</DIV> </TD> </TR> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.SearchLdapEntries" scope="request" /> J u l y 2 0 0 1 71 <% // Allow a null attribute value String attrValue = request.getParameter("attrValue"); if (attrValue != null && attrValue.length() == 0) { attrValue = null; } // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); bean.addMatchingAttribute(request.getParameter("attrName"), attrValue); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean String[] names = bean.getNames(); for (int i=0; i < names.length; i++) { String color = (i % 2 == 0)? "#FFFFFF" : "#EFEEE9"; %> <TR bgcolor="<%=color%>"> <TD> <DIV class="indent1"><%=names[i]%></DIV> </TD> </TR> <% } %> </TBODY> </TABLE> </BODY> </HTML> Search Method 2: The following is an example of Search Method 2. <%@ page import="com.novell.ecb.Connection" %> <%@ page import="com.novell.ecb.ldap.SearchLdapEntries" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">SearchLdapEntries - Filter</DIV> </TD> </TR> 72 www.novell.com/appnotes <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.SearchLdapEntries" scope="request" /> <% // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); bean.setFilter(request.getParameter("filter")); String scopeString = request.getParameter("scope"); if (scopeString .equalsIgnoreCase("object")) { bean.setSearchScope(SearchLdapEntries.OBJECT_SCOPE); } else if (scopeString .equalsIgnoreCase("onelevel")) { bean.setSearchScope(SearchLdapEntries.ONELEVEL_SCOPE); } else if (scopeString .equalsIgnoreCase("subtree")) { bean.setSearchScope(SearchLdapEntries.SUBTREE_SCOPE); } // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean String[] names = bean.getNames(); for (int i = 0; i < names.length; i++) { String color = (i % 2 == 0)? "#FFFFFF" : "#EFEEE9"; %> <TR bgcolor="<%=color%>"> <TD> <DIV class="indent1"><%=names[i]%></DIV> </TD> </TR> <% } %> </TBODY> </TABLE> </BODY> </HTML> Creating LDAP Entries The code that follows shows how to create LDAP entries. <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> J u l y 2 0 0 1 73 <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.CreateLdapEntry" scope="request" /> <% // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); bean.addAttribute("objectClass", request.getParameter("objectClass")); // Call the execute method of the command bean bean.execute(); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">CreateLdapEntry</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Reading LDAP Entries The following is an example of reading LDAP entries. <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.ReadLdapEntry" scope="request" /> <% try { // Instantiate the command bean ReadLdapEntry bean = new ReadLdapEntry(); // Set the input properties of the command bean bean.setLdapConnection(connection); 74 www.novell.com/appnotes bean.setName("cn=wcoyote, o=acme"); // Call the execute method of the command bean bean.execute(); // Query the output properties of the command bean String cn = bean.getStringValue("cn"); String sn = bean.getStringValue("sn"); } catch (CommandException e) { // Handle exception out.println(e.toString()); } %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">ReadLdapEntry</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Modifying LDAP Entries The following code is used to modify attributes. <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.ModifyLdapEntry" scope="request" /> <% // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); String opString = request.getParameter("op"); if (opString.equalsIgnoreCase("add")) // Add an attribute J u l y 2 0 0 1 75 { bean.addAttribute(request.getParameter("attrName"), request.getParameter("attrValue")); } else if (opString.equalsIgnoreCase("remove")) // Remove an attribute { bean.removeAttribute(request.getParameter("attrName")); } else if (opString.equalsIgnoreCase("replace")) // Replace an attribute { bean.replaceAttribute(request.getParameter("attrName"), request.getParameter("attrValue")); } // Call the execute method of the command bean bean.execute(); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">ModifyLdapEntry</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Changing Password: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.ChangePasswordLdapEntry" scope="request" /> <% try { // Set the input properties of the command bean bean.setLdapConnection((Connection)session.getValue("Connection")) ; 76 www.novell.com/appnotes bean.setName("cn=wcoyote, o=acme"); bean.setOldPassword("password"); bean.setNewPassword("newPassword"); // Call the execute method of the command bean bean.execute(); } catch (CommandException e) { // Handle exception out.println(e.toString()); } %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">ChangePasswordLdapEntry</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Setting Password: <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.SetPasswordLdapEntry" scope="request" /> <% try { // Instantiate the command bean SetPasswordLdapEntry bean = new SetPasswordLdapEntry(); // Set the input properties of the command bean bean.setLdapConnection((Connection)session.getValue("Connection")) ; bean.setName("cn=wcoyote, o=acme"); bean.setPassword("password"); // Call the execute method of the command bean bean.execute(); J u l y 2 0 0 1 77 } catch (CommandException e) { // Handle exception out.println(e.toString()); } %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">SetPasswordLdapEntry</DIV> </TD> </TR> <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Deleting LDAP Entries The following code is an example code for deleting LDAP entries. <%@ page import="com.novell.ecb.Connection" %> <%@ page errorPage="..error.jsp" %> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <!-- Instantiate the command bean --> <jsp:useBean id="bean" class="com.novell.ecb.ldap.DeleteLdapEntry" scope="request" /> <% // Set the input properties of the command bean bean.setConnection((Connection)session.getValue("Connection")); bean.setName(request.getParameter("name")); // Call the execute method of the command bean bean.execute(); %> <TABLE border="0" cellpadding="0" cellspacing="3" bgcolor="white"> <TBODY> <TR> <TD colspan="2" bgcolor="#CCCC99" width="400"> <DIV class="tablehead1">DeleteLdapEntry</DIV> </TD> </TR> 78 www.novell.com/appnotes <TR> <TD> <DIV class="indent1"><B><FONT color="green" size="+1">Success!</FONT></B></DIV> </TD> <TD></TD> </TR> </TBODY> </TABLE> </BODY> </HTML> Summary Novell’s eCommerce Beans for LDAP provide Java components for integrating Web applications with Net services and LDAP directories. These components are 100 percent Java and use open protocols. Their architecture uses the Model-View-Controller (MVC) and Command design patterns. These components enable authentication and read/write directory access along with features such as contextless login and SSL security. Using Novell’s eCommerce Beans for LDAP as the foundation for directory service access allows Web application developers to build on a platform that is secure, transportable, re-usable, and scalable. References http://developer.netscape.com/docs/manuals/dirsdk/dirsdk.htm http://developer.novell.com/ndk/doc/ecb/ldap/index.html http://www.ietf.org/html.charters/ldapbis-charter.html http://www.ietf.cnri.reston.va.us/html.charters/ldup-charter.html http://www.ietf.cnri.reston.va.us/html.charters/ldapext-charter.html Copyright © 2001 by Novell, Inc. All rights reserved. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying and recording, for any purpose without the express written permission of Novell. All product names mentioned are trademarks of their respective companies or distributors. J u l y 2 0 0 1 79