Add LDAPS/SSL support to TNS tools with trustall option for OUD

[oehrlis]

Description

The TNS tools (tns_add.sh, tns_delete.sh, tns_dump.sh, tns_load.sh, tns_modify.sh, tns_search.sh, tns_test.sh) currently only support regular LDAP connections. This enhancement adds LDAPS (LDAP over SSL/TLS) support with trustall option for Oracle Unified Directory (OUD) tools.

Motivation

Enable secure LDAP connections when managing TNS entries in LDAP directories, particularly for production environments where encrypted connections are required.

Proposed Changes

1. Add new -s command-line option to enable LDAPS
2. Add TVDLDAP_LDAPS environment variable for configuration file support
3. Implement ldaps_options() function in tns_functions.sh to return OUD-specific SSL parameters
4. Update all LDAP command invocations to include SSL options when enabled

Implementation Details

• For OUD tools: Use -Z -X flags (SSL with trustall)
• For OpenLDAP/Oracle DB tools: Reserved for future implementation
• Default port for LDAPS: 636 (defined but not auto-switched)
• Backward compatible: Default behavior remains unchanged (LDAPS disabled)

Usage Examples

# Command line
tns_add.sh -s -S myservice -N "(DESCRIPTION=...)"

# Environment variable
export TVDLDAP_LDAPS=TRUE
tns_add.sh -S myservice -N "(DESCRIPTION=...)"

# Configuration file
echo "TVDLDAP_LDAPS=TRUE" >> $TVDLDAP_ETC_DIR/tvdldap_custom.conf

[oehrlis]

---

Issue Finalization Comments

### Implementation Summary

Successfully implemented LDAPS support across all TNS tools following a consistent pattern:

#### Core Infrastructure ([tns_functions.sh](http://_vscodecontentref_/8))
- Added `TVDLDAP_DEFAULT_LDAPS="FALSE"` default value
- Added `TVDLDAP_DEFAULT_LDAPSPORT=636` for future use
- Exported `TVDLDAP_LDAPS` environment variable
- Implemented `ldaps_options()` function returning `-Z -X` for OUD tools

#### Per-Script Changes (Applied to 7 scripts)
Each script received identical modifications:
1. **Usage documentation**: Added `-s` option with description
2. **getopts handling**: Added `s` option to enable `TVDLDAP_LDAPS`
3. **Initialization**: Called `ldaps_options=$(ldaps_options)`
4. **Debug output**: Added SSL/LDAPS configuration display
5. **LDAP commands**: Inserted `${ldaps_options}` in all ldapsearch, ldapadd, ldapmodify, and ldapdelete calls

#### Key Design Decisions
- **Trustall approach**: Using `-X` flag for simplified initial implementation
- **OUD-only**: Current implementation targets OUD tools; OpenLDAP and Oracle DB support can be added later
- **Backward compatible**: Default behavior unchanged, opt-in via `-s` flag
- **Consistent pattern**: All scripts follow identical implementation for maintainability

#### Verification
- ✅ All 8 files (7 scripts + 1 function file) modified successfully
- ✅ No syntax errors detected
- ✅ Consistent parameter ordering: `-h HOST -p PORT ${ldaps_options} ${binddn} ${bindpwd}`
- ✅ Debug output includes SSL configuration

#### Future Enhancements
- Add certificate validation support (beyond trustall)
- Implement LDAPS for OpenLDAP and Oracle DB tools
- Add automatic port switching (389 → 636) when SSL enabled
- Support for custom truststore/keystore configuration

### Status
✅ **Completed and ready for testing**