Node-ext-ldap

------------------

- Remove ``ILDAPProps.check_duplicates`` respective
``LDAPProps.check_duplicates``.
[rnix]

- ``rdn`` can be queried via ``attrlist`` in ``LDAPNode.search`` explicitely.
[rnix]

- Introduce ``get_nodes`` keyword argument in ``LDAPNode.search``. When set,
search result contains ``LDAPNode`` instances instead of DN's in result.
[rnix]

- ``LDAPNode.search`` returns DN's instead of RDN's in result. This fixes
searches with scope SUBTREE where result items can potentially contain
duplicate RDN's.
[rnix]

- Introduce ``node_by_dn`` on ``LDAPNode``.
[rnix]

- remove bbb code: no python 2.4 support (2.7+ now), usage of LDAPProperties
mandatory now.
[jensens]

- Overhaul LDAP UGM implementation.
[rnix]

- LDAP Node only returns direct children in ``__iter__``, even if search
scope subtree.
[rnix]

- LDAPNode keys cannot be aliased any longer. Removed ``_key_attr`` and
``_rdn_attr``.
child.

- LDAPNode does not provide secondary keys any longer. Removed
``_seckey_attrs``.
[rnix]

- Deprecate ``node.ext.ldap._node.AttributesBehavior`` in favor of
``node.ext.ldap._node.LDAPAttributesBehavior``.
[rnix]

- Remove deprecated ``node.ext.ldap._node.AttributesPart``.
[rnix]

- Don't fail on ``UNWILLING_TO_PERFORM`` exceptions when authenticating. That
might be thrown, if the LDAP server disallows us to authenticate an ``admin``
user, while we are interested in the local ``admin`` user.
[thet]

- Add ``ignore_cert`` option to ignore TLS/SSL certificate errors for self
signed certificates when using the ``ldaps`` uri schema.
[thet]

- Housekeeping.
[rnix]

-----

- Added possibility to hook external LDIF layer for testldap server via
buildout configuration.
[rnix]

- Update openldap version in buildout configs.
[rnix]

-----

- Add new property to allow disable ``check_duplicates``.
This avoids following Exception when connecting ldap servers with
non-unique attributes used as keys. [saily]
::

Traceback (most recent call last):
...
RuntimeError: Key not unique: <key>='<value>'.

- ensure attrlist values are strings
[rnix, 2013-12-03]

-----

- Add ``expired`` property to ``node.ext.ldap.ugm._api.LDAPUser``.
[rnix, 2012-12-17]

- Introduce ``node.ext.ldap.ugm._api.calculate_expired`` helper function.
[rnix, 2012-12-17]

- Lookup ``expired`` attribut from LDAP in
``node.ext.ldap.ugm._api.LDAPUser.authenticate``.
[rnix, 2012-12-17]

-----

- Encode DN in ``node.ext.ldap._node.LDAPStorage._ldap_modify``.
[rnix, 2012-11-08]

- Encode DN in ``node.ext.ldap._node.LDAPStorage._ldap_delete``.
[rnix, 2012-11-08]

- Encode DN in ``node.ext.ldap.ugm._api.LDAPUsers.passwd``.
[rnix, 2012-11-08]

- Encode DN in ``node.ext.ldap.ugm._api.LDAPUsers.authenticate``.
[rnix, 2012-11-07]

- Encode ``baseDN`` in ``LDAPPrincipal.member_of_attr``.
[rnix, 2012-11-06]

- Encode ``baseDN`` in ``AttributesBehavior.load``.
[rnix, 2012-11-06]

- Python 2.7 compatibility.
[rnix, 2012-10-16]

- PEP-8.
[rnix, 2012-10-16]

- Fix ``LDAPPrincipals.idbydn`` handling UTF-8 DN's properly.
[rnix, 2012-10-16]

- Rename parts to behaviors.
[rnix, 2012-07-29]

- adopt to ``node`` 0.9.8.
[rnix, 2012-07-29]

- Adopt to ``plumber`` 1.2.
[rnix, 2012-07-29]

- Do not convert cookie to unicode in ``LDAPSession.search``. Cookie value is
no utf-8 string but octet string as described in
http://tools.ietf.org/html/rfc2696.html.
[rnix, 2012-07-27]

- Add ``User.group_ids``.
[rnix, 2012-07-26]

-----

- Fix schema to not bind to test BaseDN only and make binding deferred.
[jensens, 2012-05-30]