def test_tls_require_cert(self):
# libldap defaults to secure cert validation
# see libraries/libldap/init.c
# gopts->ldo_tls_require_cert = LDAP_OPT_X_TLS_DEMAND;
self.assertEqual(_ldap.get_option(_ldap.OPT_X_TLS_REQUIRE_CERT),
_ldap.OPT_X_TLS_DEMAND)
l = self._open_conn(bind=False)
self.assertEqual(l.get_option(_ldap.OPT_X_TLS_REQUIRE_CERT),
_ldap.OPT_X_TLS_DEMAND)
def test_options(self):
oldval = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
try:
try:
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, "3")
except TypeError:
pass
else:
self.fail("expected string value to raise a TypeError")
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION2)
v = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION2)
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION3)
v = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION3)
finally:
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, oldval)
l = self._open_conn()
# Try changing some basic options and checking that they took effect
l.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION2)
v = l.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION2)
l.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION3)
v = l.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION3)
# Try setting options that will yield a known error.
try:
_ldap.get_option(_ldap.OPT_MATCHED_DN)
except ValueError:
pass
else:
self.fail("expected ValueError")
def test_options(self):
oldval = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
try:
try:
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, "3")
self.fail("expected string value to raise a type error")
except TypeError: pass
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION2)
v = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION2)
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION3)
v = _ldap.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION3)
finally:
_ldap.set_option(_ldap.OPT_PROTOCOL_VERSION, oldval)
l = self._init()
# Try changing some basic options and checking that they took effect
l.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION2)
v = l.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION2)
l.set_option(_ldap.OPT_PROTOCOL_VERSION, _ldap.VERSION3)
v = l.get_option(_ldap.OPT_PROTOCOL_VERSION)
self.assertEqual(v, _ldap.VERSION3)
# Try setting options that will yield a known error.
try:
_ldap.get_option(_ldap.OPT_MATCHED_DN)
self.fail("expected ValueError")
except ValueError:
pass
import sys
if __debug__:
# Tracing is only supported in debugging mode
import traceback
_trace_level = 0
_trace_file = sys.stderr
_trace_stack_limit = None
import _ldap
assert _ldap.__version__==__version__, \
ImportError('ldap %s and _ldap %s version mismatch!' % (__version__,_ldap.__version__))
from _ldap import *
# call into libldap to initialize it right now
LIBLDAP_API_INFO = _ldap.get_option(_ldap.OPT_API_INFO)
OPT_NAMES_DICT = {}
for k, v in vars(_ldap).items():
if k.startswith('OPT_'):
OPT_NAMES_DICT[v] = k
class DummyLock:
"""Define dummy class with methods compatible to threading.Lock"""
def __init__(self):
pass
def acquire(self):
pass
def test_tls_packages(self):
# libldap has tls_g.c, tls_m.c, and tls_o.c with ldap_int_tls_impl
package = _ldap.get_option(_ldap.OPT_X_TLS_PACKAGE)
self.assertIn(package, {"GnuTLS", "MozNSS", "OpenSSL"})
