UNPKG

activedirectory

Version:

ActiveDirectory is an ldapjs client for authN (authentication) and authZ (authorization) for Microsoft Active Directory with range retrieval support for large Active Directory installations.

github.com/gheeres/node-activedirectory

gheeres/node-activedirectory

148 lines (133 loc) 4.9 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
var assert = require('assert'); var _ = require('underscore'); var ActiveDirectory = require('../index'); var config = require('./config'); describe('ActiveDirectory', function() { var ad; var settings = require('./settings').findUsers; var timeout = 6000; // The timeout in milliseconds before a test is considered failed. before(function() { ad = new ActiveDirectory(config); }); describe('#findUsers()', function() { settings.users.forEach(function(user) { it('should return ' + (user.results || []).length + ' users for query \'' + JSON.stringify(user.query) + '\'', function(done) { this.timeout(timeout); ad.findUsers(user.query, function(err, users) { if (err) return(done(err)); assert(users || ((user.results || []).length === (users || []).length)); assert.equal((user.results || []).length, (users || []).length); (user.results || []).forEach(function(expectedUser) { var lowerCaseExpectedUser = (expectedUser || '').toLowerCase(); assert(_.any(users || [], function(result) { return(lowerCaseExpectedUser === (result.cn || '').toLowerCase()); })); }); done(); }); }); }); it('should return default user attributes when not specified', function(done) { var defaultAttributes = [ 'dn', 'userPrincipalName', 'sAMAccountName', 'mail', 'lockoutTime', 'whenCreated', 'pwdLastSet', 'userAccountControl', 'employeeID', 'sn', 'givenName', 'initials', 'cn', 'displayName', 'comment', 'description' ]; var user = settings.users[0]; ad.findUsers(user.query, function(err, users) { if (err) return(done(err)); assert(users); (users || []).forEach(function(user) { var attributes = _.keys(user) || []; assert(attributes.length <= defaultAttributes.length); attributes.forEach(function(attribute) { var lowerCaseAttribute = (attribute || '').toLowerCase(); assert(_.any(defaultAttributes, function(defaultAttribute) { return(lowerCaseAttribute === (defaultAttribute || '').toLowerCase()); })); }); }); done(); }); }); }); describe('#findUsers(opts)', function() { it('should include groups/membership if opts.includeMembership[] = [ \'all\' ]', function(done) { this.timeout(timeout); var user = settings.users[0]; var opts = { includeMembership: [ 'all' ], filter: user.query }; ad.findUsers(opts, function(err, users) { if (err) return(done(err)); assert(users); // Not verifying actual group results, just verifying that groups attribute // exists. assert(_.any(users || [], function(user) { return(user.groups); })); done(); }); }); it('should include groups/membership if opts.includeMembership[] = [ \'user\' ]', function(done) { this.timeout(timeout); var user = settings.users[0]; var opts = { includeMembership: [ 'user' ], filter: user.query }; ad.findUsers(opts, function(err, users) { if (err) return(done(err)); assert(users); // Not verifying actual group results, just verifying that groups attribute // exists. Not all users may have groups. assert(_.any(users || [], function(user) { return(user.groups); })); done(); }); }); it('should not include groups/membership if opts.includeMembership disabled', function(done) { var user = settings.users[0]; var opts = { includeMembership: false, filter: user.query }; ad.findUsers(opts, function(err, users) { if (err) return(done(err)); assert(users); // Not verifying actual group results, just verifying that groups attribute // exists. assert(_.all(users || [], function(user) { return(! user.group); })); done(); }); }); it('should return only requested attributes', function(done) { var user = settings.users[0]; var opts = { attributes: [ 'cn' ], filter: user.query }; ad.findUsers(opts, function(err, users) { if (err) return(done(err)); assert(users); (users || []).forEach(function(user) { var keys = _.keys(user) || []; assert(keys.length <= opts.attributes.length); if (keys.length === opts.attributes.length) { assert(_.any(opts.attributes, function(attribute) { return(_.any(keys, function(key) { return(key === attribute); })); })); } }); done(); }); }); }); });