CSCI-4220 Network Programming

Project 6 - LDAP Based email database
Due Date: April 28th
Tape Delay Due Date: May 5th

Submission Instructions

LDAP based email address database

A LDAP server with an existing database is running on monte.cs.rpi.edu, you should use this server to test your client code. Your client code can be written to work specifically with this server and the hierarchy (namespace) of the database on this server.

The database provided contains records for each student in the course. The hierarchy looks like this:

school=RPI
    course=Network Programming
        cn=Joe Student
            cn: Joe Student
            email: joe@rpi.edu

Assignment: For this project you need to write an LDAP client (or clients) that provide the following functionality. Note that I'm showing this functionality being provided by a number of individual client programns - feel free to put this all in a single program if you want.

• Look up the email address of any person. For example a program named emaillookup that might work like this:

  > emaillookup monte "Dave Hollinger"
  hollingd@cs.rpi.edu
  

  In this case monte is the host running the LDAP server on the default LDAP port (389). It is possible that there is more than one email address in the database, so it could also look like this:

  > emaillookup monte "Dave Hollinger"
  hollingd@cs.rpi.edu
  hollid2@rpi.edu
  

• Change one email address of a person. For example a program named emailchange that might work like this:

  > emailchange monte "Joe Student" joe@rpi.edu joe@hotmail.com
  Old address: joe@rpi.edu
  New address: joe@hotmail.com
  > emaillookup monte "Joe Student"
  joe@hotmail.com
  

  In this case monte is the host running the LDAP server, and the emailchange program changed the email address associated with the person "Joe Student". Note that you need to specify which email address should be changed since there may be many.

• Add an additional email address to a person's record. For example a program named emailadd that might work like this:

  > emailadd monte "Dave Hollinger" holl@yahoo.com
  New address: holl@yahoo.com
  > emaillookup monte "Dave Hollinger"
  hollingd@cs.rpi.edu
  hollid2@rpi.edu
  holl@yahoo.com
  

• Remove an email address from a person's record. For example a program named emailremove that might work like this:

  > emailremove monte "Dave Hollinger" holl@yahoo.com
  Remiving: holl@yahoo.com
  > emaillookup monte "Dave Hollinger"
  hollingd@cs.rpi.edu
  hollid2@rpi.edu
  

LDAP Clients: There are a number of sample LDAP clients that come with the OpenLDAP distribution - they are all in /usr/local/bin on monica.cs.rpi.edu (which is probably already in your PATH). Man pages for each are available, and some samples are shown below. These generic clients are just for playing with the LDAP server, you don't need them to do this project.

ldapsearch: used to search an LDAP database. The following command line will print out all the records in the database that have a cn attribute that contains the string "dave":

>  ldapsearch -h monte "cn=*dave*"
cn=Dave Hollinger, course=Network Programming, school=RPI
objectclass=instructor
cn=Dave Hollinger
cn=David Hollinger
email=hollingd@cs.rpi.edu
email=hollid2@rpi.edu
phone=(518) 276-6722

ldapadd: used to add a new record to an LDAP database. The following command line will add the record for Joe Student:

> ldapadd -h monte
dn: cn=Joe Student, course=Network Programming, school=RPI
cn: Joe Student
email: joe@yahoo.com
email: jow@rpi.edu

Other Clients: Other clients you might want to play with include ldapdelete and ldapmodify.

Sample Code: There are a few sample LDAP clients available at http://www.cs.rpi.edu/~hollingd/netprog/code/ldap/. These are based on the code found in RFC 1823 - LDAP API and will access the database on monte. Fell free to use any parts of this code you find helpful (including the Makefile!).

Building Executables You will need to read the LDAP API RFC (RFC 1823) to understand the LDAP library. This library is installed on monica and on the CS sun workstations. If you can't use any of these machines you will need to get the openldap distribution from www.openldap.org, and build the libraries. Send Dave email if you have problem with this (it's pretty complete and should be easy to build). Installing a server requires a bit more effort, although I can give you copies of the server config files and the sample database (creating these is the only time consuming process involved in getting a server running).

On the CS machines including monica you need to add an include path to your compile command, and some libraries to your link command. Here is an example:

gcc -c -Wall -I/usr/local/include/ client.c
gcc -o client client.o -L/usr/local/lib -lldap -llber  -lkrb -ldes

Hints, Suggestions:

• Read (at least partially) the following RFCs:
  • RFC 1777 LDAP
  • RFC 1823 LDAP Application Programming Interface
  • RFC 1960 A String Representation of LDAP search Filters
  • RFC 1779 A String Representation of LDAP Distinguished Names

• Play with the general purpose LDAP client programs ldapadd, ldapsearch, ldapdelete and ldapmodify to get an idea of what LDAP is all about. Then think about writing a program to do what you need.

• Start with the sample client code (based on the code in RFC1823), add what you need. This code is available in /cs/hollingd/public.html/code/ldap or via the web.