mirror of
https://github.com/freedombox/FreedomBox.git
synced 2026-02-04 08:13:38 +00:00
87eecb7c62
Increment users module version so existing users will get FreedomBox copy of ldapscripts config file. Avoid reconfiguration of slapd during module upgrade, because this will move the existing database. Signed-off-by: James Valleroy <jvalleroy@mailbox.org> Reviewed-by: Sunil Mohan Adapa <sunil@medhas.org>
109 lines
2.8 KiB
Python
109 lines
2.8 KiB
Python
#
|
|
# This file is part of Plinth.
|
|
#
|
|
# This program is free software: you can redistribute it and/or modify
|
|
# it under the terms of the GNU Affero General Public License as
|
|
# published by the Free Software Foundation, either version 3 of the
|
|
# License, or (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU Affero General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU Affero General Public License
|
|
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
#
|
|
"""
|
|
Plinth module to manage users
|
|
"""
|
|
|
|
import subprocess
|
|
|
|
from django.utils.translation import ugettext_lazy as _
|
|
|
|
from plinth import action_utils, actions
|
|
from plinth.menu import main_menu
|
|
|
|
version = 2
|
|
|
|
is_essential = True
|
|
|
|
managed_packages = [
|
|
'ldapscripts', 'ldap-utils', 'libnss-ldapd', 'libpam-ldapd', 'nslcd',
|
|
'slapd'
|
|
]
|
|
|
|
first_boot_steps = [
|
|
{
|
|
'id': 'users_firstboot',
|
|
'url': 'users:firstboot',
|
|
'order': 1
|
|
},
|
|
]
|
|
|
|
name = _('Users and Groups')
|
|
|
|
# List of all Plinth user groups
|
|
groups = set()
|
|
|
|
|
|
def init():
|
|
"""Intialize the user module."""
|
|
menu = main_menu.get('system')
|
|
menu.add_urlname(name, 'glyphicon-user', 'users:index')
|
|
|
|
|
|
def setup(helper, old_version=None):
|
|
"""Install and configure the module."""
|
|
helper.install(managed_packages)
|
|
if old_version is None:
|
|
helper.call('post', actions.superuser_run, 'users', ['first-setup'])
|
|
helper.call('post', actions.superuser_run, 'users', ['setup'])
|
|
|
|
|
|
def diagnose():
|
|
"""Run diagnostics and return the results."""
|
|
results = []
|
|
|
|
results.append(action_utils.diagnose_port_listening(389, 'tcp4'))
|
|
results.append(action_utils.diagnose_port_listening(389, 'tcp6'))
|
|
|
|
results.append(_diagnose_ldap_entry('dc=thisbox'))
|
|
results.append(_diagnose_ldap_entry('ou=people'))
|
|
results.append(_diagnose_ldap_entry('ou=groups'))
|
|
|
|
return results
|
|
|
|
|
|
def _diagnose_ldap_entry(search_item):
|
|
"""Diagnose that an LDAP entry exists."""
|
|
result = 'failed'
|
|
|
|
try:
|
|
subprocess.check_output(
|
|
['ldapsearch', '-x', '-b', 'dc=thisbox', search_item])
|
|
result = 'passed'
|
|
except subprocess.CalledProcessError:
|
|
pass
|
|
|
|
return [
|
|
_('Check LDAP entry "{search_item}"').format(search_item=search_item),
|
|
result
|
|
]
|
|
|
|
|
|
def create_group(group):
|
|
"""Add an LDAP group."""
|
|
actions.superuser_run('users', options=['create-group', group])
|
|
register_group(group)
|
|
|
|
|
|
def remove_group(group):
|
|
"""Remove an LDAP group."""
|
|
actions.superuser_run('users', options=['remove-group', group])
|
|
|
|
|
|
def register_group(group):
|
|
groups.add(group)
|