com.unboundid.ldap.sdk.extensions

Class WhoAmIExtendedRequest

java.lang.Object

com.unboundid.ldap.sdk.LDAPRequest

com.unboundid.ldap.sdk.ExtendedRequest

com.unboundid.ldap.sdk.extensions.WhoAmIExtendedRequest

All Implemented Interfaces:

ProtocolOp, ReadOnlyLDAPRequest, java.io.Serializable

@NotMutable
 @ThreadSafety(level=NOT_THREADSAFE)
public final class WhoAmIExtendedRequest
extends ExtendedRequest

This class provides an implementation of the LDAP "Who Am I?" extended request as defined in RFC 4532. It may be used to request the current authorization identity associated with the client connection.

The "Who Am I?" extended operation is similar to the AuthorizationIdentityRequestControl in that it can be used to request the authorization identity for the connection. The primary difference between them is that the authorization identity request control can only be included in a bind request (and the corresponding response control will be included in the bind result), while the "Who Am I?" extended operation can be used at any time through a separate operation.

Example

The following example demonstrates the use of the "Who Am I?" extended operation.

 // Use the "Who Am I?" extended request to determine the identity of the
 // currently-authenticated user.
 WhoAmIExtendedResult whoAmIResult;
 try
 {
   whoAmIResult = (WhoAmIExtendedResult)
        connection.processExtendedOperation(new WhoAmIExtendedRequest());
   // This doesn't necessarily mean that the operation was successful, since
   // some kinds of extended operations return non-success results under
   // normal conditions.
 }
 catch (LDAPException le)
 {
   // For an extended operation, this generally means that a problem was
   // encountered while trying to send the request or read the result.
   whoAmIResult = new WhoAmIExtendedResult(new ExtendedResult(le));
 }

 LDAPTestUtils.assertResultCodeEquals(whoAmIResult, ResultCode.SUCCESS);
 String authzID = whoAmIResult.getAuthorizationID();
 if (authzID.equals("") || authzID.equals("dn:"))
 {
   // The user is authenticated anonymously.
 }
 else if (authzID.startsWith("dn:"))
 {
   // The DN of the authenticated user should be authzID.substring(3)
 }
 else if (authzID.startsWith("u:"))
 {
   // The username of the authenticated user should be authzID.substring(2)
 }
 else
 {
   // The authorization ID isn't in any recognizable format.  Perhaps it's
   // a raw DN or a username?
 }
 

See Also:

Serialized Form

Field Summary

Fields

Modifier and Type	Field and Description
static java.lang.String	WHO_AM_I_REQUEST_OID The OID (1.3.6.1.4.1.4203.1.11.3) for the "Who Am I?" extended request.

Fields inherited from class com.unboundid.ldap.sdk.ExtendedRequest

TYPE_EXTENDED_REQUEST_OID, TYPE_EXTENDED_REQUEST_VALUE

Constructor Summary

Constructors

Constructor and Description
WhoAmIExtendedRequest() Creates a new "Who Am I?" extended request.
WhoAmIExtendedRequest(Control[] controls) Creates a new "Who Am I?" extended request.
WhoAmIExtendedRequest(ExtendedRequest extendedRequest) Creates a new "Who Am I?" extended request from the provided generic extended request.

Method Summary

Modifier and Type	Method and Description
WhoAmIExtendedRequest	duplicate() Creates a new instance of this LDAP request that may be modified without impacting this request.
WhoAmIExtendedRequest	duplicate(Control[] controls) Creates a new instance of this LDAP request that may be modified without impacting this request.
java.lang.String	getExtendedRequestName() Retrieves the user-friendly name for the extended request, if available.
WhoAmIExtendedResult	process(LDAPConnection connection, int depth) Sends this extended request to the directory server over the provided connection and returns the associated response.
void	toString(java.lang.StringBuilder buffer) Appends a string representation of this request to the provided buffer.

Methods inherited from class com.unboundid.ldap.sdk.ExtendedRequest

encodeProtocolOp, getLastMessageID, getOID, getOperationType, getProtocolOpType, getValue, hasValue, responseReceived, toCode, writeTo

Methods inherited from class com.unboundid.ldap.sdk.LDAPRequest

followReferrals, getControl, getControlList, getControls, getIntermediateResponseListener, getReferralConnector, getReferralConnectorInternal, getReferralDepth, getResponseTimeoutMillis, hasControl, hasControl, setFollowReferrals, setIntermediateResponseListener, setReferralConnector, setReferralDepth, setResponseTimeoutMillis, toString

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Field Detail

WHO_AM_I_REQUEST_OID

@NotNull
public static final java.lang.String WHO_AM_I_REQUEST_OID

The OID (1.3.6.1.4.1.4203.1.11.3) for the "Who Am I?" extended request.

See Also:

Constant Field Values

Constructor Detail

WhoAmIExtendedRequest

public WhoAmIExtendedRequest()

Creates a new "Who Am I?" extended request.

WhoAmIExtendedRequest

public WhoAmIExtendedRequest(@Nullable
                             Control[] controls)

Creates a new "Who Am I?" extended request.

Parameters:

controls - The set of controls to include in the request.

WhoAmIExtendedRequest

public WhoAmIExtendedRequest(@NotNull
                             ExtendedRequest extendedRequest)
                      throws LDAPException

Creates a new "Who Am I?" extended request from the provided generic extended request.

Parameters:

extendedRequest - The generic extended request to use to create this "Who Am I?" extended request.

Throws:

LDAPException - If a problem occurs while decoding the request.

Method Detail

process

@NotNull
public WhoAmIExtendedResult process(@NotNull
                                             LDAPConnection connection,
                                             int depth)
                                      throws LDAPException

Sends this extended request to the directory server over the provided connection and returns the associated response.

Overrides:

process in class ExtendedRequest

Parameters:

connection - The connection to use to communicate with the directory server.

depth - The current referral depth for this request. It should always be one for the initial request, and should only be incremented when following referrals.

Returns:

An LDAP result object that provides information about the result of the extended operation processing.

Throws:

LDAPException - If a problem occurs while sending the request or reading the response.

duplicate

@NotNull
public WhoAmIExtendedRequest duplicate()

Creates a new instance of this LDAP request that may be modified without impacting this request.. Subclasses should override this method to return a duplicate of the appropriate type.

Specified by:

duplicate in interface ReadOnlyLDAPRequest

Overrides:

duplicate in class ExtendedRequest

Returns:

A new instance of this LDAP request that may be modified without impacting this request.

duplicate

@NotNull
public WhoAmIExtendedRequest duplicate(@Nullable
                                                Control[] controls)

Creates a new instance of this LDAP request that may be modified without impacting this request. The provided controls will be used for the new request instead of duplicating the controls from this request.. Subclasses should override this method to return a duplicate of the appropriate type.

Specified by:

duplicate in interface ReadOnlyLDAPRequest

Overrides:

duplicate in class ExtendedRequest

Parameters:

controls - The set of controls to include in the duplicate request.

Returns:

A new instance of this LDAP request that may be modified without impacting this request.

getExtendedRequestName

@NotNull
public java.lang.String getExtendedRequestName()

Retrieves the user-friendly name for the extended request, if available. If no user-friendly name has been defined, then the OID will be returned.

Overrides:

getExtendedRequestName in class ExtendedRequest

Returns:

The user-friendly name for this extended request, or the OID if no user-friendly name is available.

toString

public void toString(@NotNull
                     java.lang.StringBuilder buffer)

Appends a string representation of this request to the provided buffer.

Specified by:

toString in interface ProtocolOp

Specified by:

toString in interface ReadOnlyLDAPRequest

Overrides:

toString in class ExtendedRequest

Parameters:

buffer - The buffer to which to append a string representation of this request.