Chinaunix首页 | 论坛 | 博客

zhiye_wang的博客

首页 |  博文目录 |  关于我

zhiye_wang

  • 博客访问: 216228
  • 博文数量: 46
  • 博客积分: 0
  • 博客等级: 民兵
  • 技术积分: 482
  • 用 户 组: 普通用户
  • 注册时间: 2014-07-18 14:14
个人简介

小菜鸟

文章分类

全部博文(46)

文章存档

2020年(2)

2017年(7)

2016年(36)

2014年(1)

我的朋友
最近访客
推荐博文
相关博文
Python实现LDAP用户名密码认证

分类: LINUX

2016-04-22 14:03:23

Python实现LDAP用户名密码认证

1 Python实现LDAP用户名密码认证,来实现统一认证


点击(此处)折叠或打开

  1. #!/usr/bin/python

  3. import ldap

  5. # ldap server's ip address.
  6. # the ldap server default port is 389, if your ldap server is use SSL port 636,
  7. # pls. change to : ldap://192.168.13.13:636
  8. ldap_path = "ldap://192.168.13.13"
  9. # ladp administrator, use to find the input user is exist in ldap.
  10. ldap_user = "Manager"
  11. # ldap administrator password.
  12. ldap_pwd = "secret"
  13. # ldap base.
  14. base_dn = "dc=maxcrc,dc=com"

  16. # get the dn of user
  17. def validateLDAPUser(user):
  18.     try:
  19.         conn = ldap.initialize(ldap_path)
  20.         # the ldap default version is version3,
  21.         #if your ldap server is use ldap version1, or version2,
  22.         # pls. change this to VERSION1 VERSION2
  23.         conn.protocol_version = ldap.VERSION3
  24.         conn.simple_bind(ldap_user, ldap_pwd)

  26.         searchScope = ldap.SCOPE_SUBTREE
  27.         searchFiltername = "uid"
  28.         retrieveAttributes = None

  30.         # ensure the user is exist in ldap
  31.         searchFilter = '(' + searchFiltername + "=" + user + ')'
  32.         ldap_result_id = conn.search(base_dn, searchScope, searchFilter, retrieveAttributes)
  33.         result_type, result_data = conn.result(ldap_result_id, 1)
  34.         if (not len(result_data) == 0):
  35.             return 1, result_data[0][0]
  36.         else:
  37.             return 0, ''

  39.     except ldap.LDAPError, e:
  40.         print e
  41.         return 0, ''

  43.     finally:
  44.         conn.unbind()
  45.         del conn

  47. #if time out, retry
  48. def get_dn(user, try_num=2):
  49.     i = 0
  50.     is_found = 0
  51.     found_result = ""
  52.     while (i < try_num):
  53.         is_found, found_result = validateLDAPUser(user)
  54.         if (is_found):
  55.             break
  56.         i += 1
  57.     return found_result

  59. # test the username is exist in ldap server, and it's password is correct.
  60. def LDAPLogin(user_name, user_pwd):
  61.     try:
  62.         if (user_name == ""):
  63.             print "Username is empty!"
  64.             return
  65.         if (user_pwd == ""):
  66.             print "Password is empty!"
  67.             return
  68.         
  69.         dn = get_dn(user_name, 2)
  70.         if (dn == ''):
  71.             print "User Not Exist"
  72.             return
  73.         else:
  74.             print "User Name Ok"
  75.         ldap_conn = ldap.initialize(ldap_path)
  76.         ldap_conn.simple_bind_s(dn, user_pwd)
  77.         print "Login Success!"
  78.     except Exception, e:
  79.         print "Login Failed!"
  80.         
  81.     finally:
  82.         ldap_conn.unbind()
  83.         del ldap_conn


  86. # param 1: in, the ldap user name, such as san.zhang
  87. # param 2: in, the password of input user.
  88. # other: pls. add a return value based on your need.
  89. LDAPLogin("zhiye.wang", "123456")


阅读(3446) | 评论(0) | 转发(0) |
0

上一篇:ubuntu安装OpenLDAP(二) 配置LDAP

下一篇:网格计算之BOINC安装方法

给主人留下些什么吧!~~
关于我们 | 关于IT168 | 联系方式 | 广告合作 | 法律声明 | 免费注册

Copyright 2001-2010 ChinaUnix.net All Rights Reserved 北京皓辰网域网络信息技术有限公司. 版权所有

感谢所有关心和支持过ChinaUnix的朋友们

16024965号-6