Files
@ 8d272d91d3d2
Branch filter:
Location: majic-ansible-roles/roles/ldap_server/molecule/default/tests/helpers.py - annotation
8d272d91d3d2
756 B
text/x-python
MAR-165: Deploy Diffie-Helman parameters for LDAP server in the ldap_server role:
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
- Not relevant for Debian Strech because of a bug in the OpenLDAP
version it ships with.
- This should allow use of DHE ciphers with LDAP server.
- Generated DH parameters only help pick one of the parameters from
RFC-7919 (based on the size of generated ones).
- Make the cipher test lists distro-specific due to differences
between supported algorithms in respective GnuTLS versions.
d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 d77f12671189 | import io
import ldif
def parse_ldif(ldif_input):
"""
Helper function that parses the passed-in LDIF string. This is a
simple wrapper around the Python LDAP ldif.LDIFRecordList class.
Entries are returned as list of (dn, attributes)
tuples. Attributes are represented by a dictionary mapping
attribute names to list of associated values.
:param ldif_input: LDIF to parse.
:type ldif_input: str
:returns: List of parsed entries.
:rtype: list[tuple(str, dict{str: list[str]})]
Returns:
"""
parser = ldif.LDIFRecordList(io.StringIO(ldif_input))
try:
parser.parse()
except Exception as e:
raise ValueError("Failed to parse input: %s" % str(e))
return parser.all_records
|