LDAP Property Processor Refactor and Testing

[definitelynotagoblin]

Description

Refactoring LDAPPropertyProcessor to provide constraints and prepare for more granular testing.
Note that this expands upon the changes made for ESC6.

Motivation and Context

The goal is to prepare LDAP Property Processor for growth and continued development.

How Has This Been Tested?

Project unit tests insofar, with plans to expand testing.

Screenshots (if appropriate):

Types of changes

• Chore (a change that does not modify the application functionality)
• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)

Checklist:

• Documentation updates are needed, and have been made accordingly.
• I have added and/or updated tests to cover my changes.
• All new and existing tests passed.
• My changes include a database migration.

[definitelynotagoblin]

Maybe I should rename to AddMany?

[ddlees]

caveat: not a c# expert

I tend to agree that AddRange is a little unintuitive about what this function is doing. Some additional ideas off the top of my head:

• AddEntries
• Assign
• AddToDict

That said, whatever you end up calling it, it's probably a good idea to document the API so folks can rely on their intellisense to figure out what it does.

[definitelynotagoblin]

For the top-level ReadUserProperties and ReadComputerProperties methods especially I'm trying to pull a lot of the "how" out and make these methods more compositional.

[definitelynotagoblin]

The goal here is single-truth LDAP property mapping. It provides a dictionary of sorts of our available properties (the "how", see above) and tries to enforce that properties get added to props through our "vetted" source.

[definitelynotagoblin]

I'm not certain this will live here or that it should take this form as a method instead of a static class providing static properties, but this provides a glossary of LDAP properties and our own internal names for them.

[definitelynotagoblin]

This property breaks the mold and devalues the benefits of the new pattern a bit because it's an inverse of the LDAP property. I'm not super jazzed that this new pattern doesn't so gracefully address this so if you have any ideas or concerns here please let me know.

[definitelynotagoblin]

I don't like creating a precedent here for wild-west property names (that aren't vetted through PropertyMap) from the get out of a refactor, but I have no better solutions for this many-to-one property map at the moment.
Because we're still vetting through our single-truth mapping method I'm inclined to let it slide, but I might be the only one.

[definitelynotagoblin]

SidHistory breaks the new design a little because it provides dual functionality that can't be split without duplicating efforts (see ReadSidHistory below), and so we map the property value here instead of within GetProperties as the others. Not sure how I want to resolve this.

[definitelynotagoblin]

Cleaned this up a bit.

[definitelynotagoblin]

This may be a limitation of platform, need to test further, but failed to produce mocks for ActiveDirectorySecurityDescriptor for this test. Will remove before merging if this can't be resolved.