Treat unicodePwd field differently for AD/Samba compatibility

Niklas Voss · Niklas Voss · commit 83bb9f7937de · 2020-12-11T17:34:26.000+01:00
diff --git a/go.mod b/go.mod
@@ -5,6 +5,7 @@ go 1.15
 require (
 	github.com/go-ldap/ldap/v3 v3.2.4
 	github.com/hashicorp/terraform-plugin-sdk/v2 v2.0.4
+	golang.org/x/text v0.3.3
 )
 
 replace google.golang.org/api v0.28.0 => github.com/googleapis/google-api-go-client v0.28.0
diff --git a/provider/resource_ldap_object.go b/provider/resource_ldap_object.go
@@ -13,6 +13,7 @@ import (
 
 	"github.com/go-ldap/ldap/v3"
 	"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"
+	"golang.org/x/text/encoding/unicode"
 )
 
 func resourceLDAPObject() *schema.Resource {
@@ -133,7 +134,8 @@ func resourceLDAPObjectCreate(d *schema.ResourceData, meta interface{}) error {
 				// each map should only have one entry (see resource declaration)
 				for name, value := range attribute.(map[string]interface{}) {
 					log.Printf("[DEBUG] ldap_object::create - %q has attribute[%v] => %v (%T)", dn, name, value, value)
-					m[name] = append(m[name], value.(string))
+					v := toAttributeValue(name, value.(string))
+					m[name] = append(m[name], v)
 				}
 			}
 			// now loop through the map and add attributes with theys value(s)
@@ -373,7 +375,8 @@ func computeAndAddDeltas(modify *ldap.ModifyRequest, os, ns *schema.Set) error {
 			for _, m := range ns.List() {
 				for mk, mv := range m.(map[string]interface{}) {
 					if k == mk {
-						values = append(values, mv.(string))
+						v := toAttributeValue(k, mv.(string))
+						values = append(values, v)
 					}
 				}
 			}
@@ -394,7 +397,8 @@ func computeAndAddDeltas(modify *ldap.ModifyRequest, os, ns *schema.Set) error {
 		for _, m := range ns.List() {
 			for mk, mv := range m.(map[string]interface{}) {
 				if k == mk {
-					values = append(values, mv.(string))
+					v := toAttributeValue(k, mv.(string))
+					values = append(values, v)
 				}
 			}
 		}
@@ -403,3 +407,12 @@ func computeAndAddDeltas(modify *ldap.ModifyRequest, os, ns *schema.Set) error {
 	}
 	return nil
 }
+
+func toAttributeValue(name, value string) string {
+	if name == "unicodePwd" {
+		utf16 := unicode.UTF16(unicode.LittleEndian, unicode.IgnoreBOM)
+		pwdEncoded, _ := utf16.NewEncoder().String("\"" + value + "\"")
+		return pwdEncoded
+	}
+	return value
+}

Original file line number	Diff line number	Diff line change
`@@ -5,6 +5,7 @@ go 1.15`
`5`	`5`	`require (`
`6`	`6`	`github.com/go-ldap/ldap/v3 v3.2.4`
`7`	`7`	`github.com/hashicorp/terraform-plugin-sdk/v2 v2.0.4`
	`8`	`+ golang.org/x/text v0.3.3`
`8`	`9`	`)`
`9`	`10`
`10`	`11`	`replace google.golang.org/api v0.28.0 => github.com/googleapis/google-api-go-client v0.28.0`
Original file line number	Diff line number	Diff line change
`@@ -13,6 +13,7 @@ import (`
`13`	`13`
`14`	`14`	`"github.com/go-ldap/ldap/v3"`
`15`	`15`	`"github.com/hashicorp/terraform-plugin-sdk/v2/helper/schema"`
	`16`	`+ "golang.org/x/text/encoding/unicode"`
`16`	`17`	`)`
`17`	`18`
`18`	`19`	`func resourceLDAPObject() *schema.Resource {`
`@@ -133,7 +134,8 @@ func resourceLDAPObjectCreate(d *schema.ResourceData, meta interface{}) error {`
`133`	`134`	`// each map should only have one entry (see resource declaration)`
`134`	`135`	`for name, value := range attribute.(map[string]interface{}) {`
`135`	`136`	`log.Printf("[DEBUG] ldap_object::create - %q has attribute[%v] => %v (%T)", dn, name, value, value)`
`136`		`- m[name] = append(m[name], value.(string))`
	`137`	`+ v := toAttributeValue(name, value.(string))`
	`138`	`+ m[name] = append(m[name], v)`
`137`	`139`	`}`
`138`	`140`	`}`
`139`	`141`	`// now loop through the map and add attributes with theys value(s)`
`@@ -373,7 +375,8 @@ func computeAndAddDeltas(modify ldap.ModifyRequest, os, ns schema.Set) error {`
`373`	`375`	`for _, m := range ns.List() {`
`374`	`376`	`for mk, mv := range m.(map[string]interface{}) {`
`375`	`377`	`if k == mk {`
`376`		`- values = append(values, mv.(string))`
	`378`	`+ v := toAttributeValue(k, mv.(string))`
	`379`	`+ values = append(values, v)`
`377`	`380`	`}`
`378`	`381`	`}`
`379`	`382`	`}`
`@@ -394,7 +397,8 @@ func computeAndAddDeltas(modify ldap.ModifyRequest, os, ns schema.Set) error {`
`394`	`397`	`for _, m := range ns.List() {`
`395`	`398`	`for mk, mv := range m.(map[string]interface{}) {`
`396`	`399`	`if k == mk {`
`397`		`- values = append(values, mv.(string))`
	`400`	`+ v := toAttributeValue(k, mv.(string))`
	`401`	`+ values = append(values, v)`
`398`	`402`	`}`
`399`	`403`	`}`
`400`	`404`	`}`
`@@ -403,3 +407,12 @@ func computeAndAddDeltas(modify ldap.ModifyRequest, os, ns schema.Set) error {`
`403`	`407`	`}`
`404`	`408`	`return nil`
`405`	`409`	`}`
	`410`	`+`
	`411`	`+func toAttributeValue(name, value string) string {`
	`412`	`+ if name == "unicodePwd" {`
	`413`	`+ utf16 := unicode.UTF16(unicode.LittleEndian, unicode.IgnoreBOM)`
	`414`	`+ pwdEncoded, _ := utf16.NewEncoder().String("\"" + value + "\"")`
	`415`	`+ return pwdEncoded`
	`416`	`+ }`
	`417`	`+ return value`
	`418`	`+}`