[midPoint] AdLdapConnector - Do not read schema

[João Paulo Ribeiro]

Hello!

I am trying to define an ADLdapConnector resource on midPoint that uses a
fixed schema. I would like the midPoint/connector to never invoke schema
read operations on the underlying LDAP server. To achieve this, I tried the
following configurations, but none of them were successful:

1. I fixed a complete schema in <schema><definition>[full schema
here]</definition></schema>
2. I disabled the schema reading capability (I tried removing the
<cap:schema/> declaration from the <capabilities><native> section and also
declaring
<configuredCapabilities><cap:schema><cap:enabled>false</cap:enabled></cap:schema></configuredCapabilities>)
3. I set the configuration property
<icfcldap:readSchema>false</icfcldap:readSchema>

About the "readSchema" configuration property, investigating the
connector-ldap code, I saw that it is defined in the
AbstractLdapConfiguration class, but it seems to not be referenced anywhere
else in the code. Is it actually a property in an operational state??

The exception that is thrown by the connector code when I try to execute
"Test Connection" operations and when trying to read the resource objects
(query executed in the "Resource Objects" tab):

java.lang.IllegalStateException: Must be at least one ObjectClassInfo
object! at
org.identityconnectors.framework.common.objects.SchemaBuilder.build(SchemaBuilder.java:460)
 at
com.evolveum.polygon.connector.ldap.schema.AbstractSchemaTranslator.translateSchema(AbstractSchemaTranslator.java:160)
 at
com.evolveum.polygon.connector.ldap.schema.AbstractSchemaTranslator.prepareConnIdSchema(AbstractSchemaTranslator.java:187)
 at
com.evolveum.polygon.connector.ldap.AbstractLdapConnector.prepareConnIdSchema(AbstractLdapConnector.java:445)
 at
com.evolveum.polygon.connector.ldap.AbstractLdapConnector.executeQuery(AbstractLdapConnector.java:508)
 at
com.evolveum.polygon.connector.ldap.AbstractLdapConnector.executeQuery(AbstractLdapConnector.java:93)
 at
org.identityconnectors.framework.impl.api.local.operations.SearchImpl.rawSearch(SearchImpl.java:197)
 at
org.identityconnectors.framework.impl.api.local.operations.SearchImpl.search(SearchImpl.java:133)
 at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native
Method)
 at
java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
 at
java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.base/java.lang.reflect.Method.invoke(Method.java:569)
 at
org.identityconnectors.framework.impl.api.local.operations.ConnectorAPIOperationRunnerProxy.invoke(ConnectorAPIOperationRunnerProxy.java:99)
 at jdk.proxy2/jdk.proxy2.$Proxy231.search(Unknown Source)
 at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native
Method)
 at
java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
 at
java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.base/java.lang.reflect.Method.invoke(Method.java:569)
 at
org.identityconnectors.framework.impl.api.local.operations.ThreadClassLoaderManagerProxy.invoke(ThreadClassLoaderManagerProxy.java:96)
 at jdk.proxy2/jdk.proxy2.$Proxy231.search(Unknown Source)
 at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native
Method)
 at
java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:77)
 at
java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
 at java.base/java.lang.reflect.Method.invoke(Method.java:569)
 at
org.identityconnectors.framework.impl.api.BufferedResultsProxy$BufferedResultsHandler.run(BufferedResultsProxy.java:165)

Can someone please tell me if I'm doing something wrong or if this is
actually a limitation of the connector?

Thanks in advance.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20241216/757190a7/attachment.htm>