UNPKG

simple-ldap-client/resetPassword.js

Version:

2.04 kBJavaScriptView Raw

1'use strict'
2const ldap = require('ldapjs')
3const ldapChanges = require('./changes')
4const utils = require('./utils')
5
6function resetPassword ({adminDn, adminPassword, newPassword, userDn, upn, username, email}) {
return new Promise((resolve, reject) => {
  // console.log('starting LDAP password reset')
  // validate input
  if (
    (!userDn || userDn === '') &&
    (!upn || upn === '') &&
    (!username || username === '') &&
    (!email || email === '')
  ) {
    // inform the user of the error of their ways
    return reject('userDn, upn, username, or email is required')
  }
  // continue validating input
  if (!newPassword || newPassword === '') {
    // inform the user of the error of their ways
    return reject('newPassword is required')
  }
  // create client connection
  const client = this.getClient()
  // login to LDAP
  client.bind(adminDn, adminPassword, async (err) => {
    // console.log('ldap client bind')
    if (err) {
      console.log(err)
      client.destroy()
      return reject(err)
    }
    // set up changes to replace user password
    const changes = [ldapChanges.replacePassword(newPassword)]
    // figure out which filter to use to identify the user
    let filter
    if (username) {
      filter = '(sAMAccountName=' + username + ')'
    } else if (email) {
      filter = '(mail=' + email + ')'
    } else if (upn) {
      filter = '(userPrincipalName=' + upn + ')'
    } else if (userDn) {
      filter = '(distinguishedName=' + userDn + ')'
    }
    // find user by filter
    const opts = {
      filter,
      scope: 'sub',
      attributes: ['objectGUID']
    }
53
    try {
      const user = await utils.applyChanges.call(this, client, this.baseDn, opts, changes)
      // console.log('Password reset for ' + user.dn)
      client.destroy()
      resolve(user)
    } catch (e) {
      client.destroy()
      reject(e)
    }
  })
})
65}
66
67module.exports = resetPassword

1	`'use strict'`
2	`const ldap = require('ldapjs')`
3	`const ldapChanges = require('./changes')`
4	`const utils = require('./utils')`
5
6	`function resetPassword ({adminDn, adminPassword, newPassword, userDn, upn, username, email}) {`
7	`return new Promise((resolve, reject) => {`
8	`// console.log('starting LDAP password reset')`
9	`// validate input`
10	`if (`
11	`(!userDn \|\| userDn === '') &&`
12	`(!upn \|\| upn === '') &&`
13	`(!username \|\| username === '') &&`
14	`(!email \|\| email === '')`
15	`) {`
16	`// inform the user of the error of their ways`
17	`return reject('userDn, upn, username, or email is required')`
18	`}`
19	`// continue validating input`
20	`if (!newPassword \|\| newPassword === '') {`
21	`// inform the user of the error of their ways`
22	`return reject('newPassword is required')`
23	`}`
24	`// create client connection`
25	`const client = this.getClient()`
26	`// login to LDAP`
27	`client.bind(adminDn, adminPassword, async (err) => {`
28	`// console.log('ldap client bind')`
29	`if (err) {`
30	`console.log(err)`
31	`client.destroy()`
32	`return reject(err)`
33	`}`
34	`// set up changes to replace user password`
35	`const changes = [ldapChanges.replacePassword(newPassword)]`
36	`// figure out which filter to use to identify the user`
37	`let filter`
38	`if (username) {`
39	`filter = '(sAMAccountName=' + username + ')'`
40	`} else if (email) {`
41	`filter = '(mail=' + email + ')'`
42	`} else if (upn) {`
43	`filter = '(userPrincipalName=' + upn + ')'`
44	`} else if (userDn) {`
45	`filter = '(distinguishedName=' + userDn + ')'`
46	`}`
47	`// find user by filter`
48	`const opts = {`
49	`filter,`
50	`scope: 'sub',`
51	`attributes: ['objectGUID']`
52	`}`
53
54	`try {`
55	`const user = await utils.applyChanges.call(this, client, this.baseDn, opts, changes)`
56	`// console.log('Password reset for ' + user.dn)`
57	`client.destroy()`
58	`resolve(user)`
59	`} catch (e) {`
60	`client.destroy()`
61	`reject(e)`
62	`}`
63	`})`
64	`})`
65	`}`
66
67	`module.exports = resetPassword`