X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=ud-host;h=3490e6d5369ad1a3af57e33b326f68da1047fcf8;hb=ea13500e6d3103252a8531e65cddb58d5b2e3c15;hp=78ca40aab73d6a421d21f0836b535c7e157c41d7;hpb=632ee8b5a37aca3e299a9ac48ae53f63bbbe36f4;p=mirror%2Fuserdir-ldap.git diff --git a/ud-host b/ud-host index 78ca40a..3490e6d 100755 --- a/ud-host +++ b/ud-host @@ -1,5 +1,25 @@ #!/usr/bin/env python # -*- mode: python -*- + +# Copyright (c) 2000-2001 Jason Gunthorpe +# Copyright (c) 2001 Ryan Murray +# Copyright (c) 2003 James Troup +# Copyright (c) 2004-2005 Joey Schulze +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA. + # This script is an interactive way to manipulate fields in the LDAP directory. # When run it connects to the directory using the current users ID and fetches # all the attributes for the first machine. It then formats them nicely and @@ -9,8 +29,12 @@ # -a Set the authentication user (the user whose password you are # going to enter) # -h Set the host to display +# -l list all hosts and their status +# -f list all SSH fingerprints -import string, time, os, pwd, sys, getopt, ldap, crypt, whrandom, readline, copy; +import string, time, os, pwd, sys, getopt, ldap, crypt, readline, copy; +from tempfile import mktemp +from os import O_CREAT, O_EXCL, O_WRONLY from userdir_ldap import *; RootMode = 0; @@ -26,8 +50,10 @@ AttrInfo = {"description": ["Machine Descr.", 1], "machine": ["Machine Hardware", 10], "memory": ["Memory", 11], "disk": ["Disk", 12], + "physicalHost": ["Physical Host", 13], "sshRSAHostKey": ["SSH Host Keys", 14], - "bandwidth": ["Bandwidth", 15]}; + "bandwidth": ["Bandwidth", 15], + "purpose": ["Purposes", 16],}; AttrPrompt = {"description": ["Purpose of the machine"], "hostname": ["The hostnames for the box (ipv4/ipv6)"], @@ -37,12 +63,14 @@ AttrPrompt = {"description": ["Purpose of the machine"], "distribution": ["The distribution version"], "access": ["all, developer only, restricted"], "admin": ["Admin email address"], - "architecture": ["Debian Arhitecture string"], + "architecture": ["Debian Architecture string"], "machine": ["Hardware description"], "memory": ["Installed RAM"], "disk": ["Disk Space, RAID levels, etc"], + "physicalHost": ["The box hosting this virtual server"], "sshRSAHostKey": ["A copy of /etc/ssh/ssh_*host_key.pub"], - "bandwidth": ["Available outbound"]}; + "bandwidth": ["Available outbound"], + "purpose": ["The purposes of this host"],}; # Create a map of IDs to desc,value,attr OrderedIndex = {}; @@ -90,9 +118,21 @@ def ShowAttrs(Attrs): print "'%s'" % (re.sub('[\n\r]','?',x)), print; +def Overview(Attrs): + """Display a one-line overview for a given host""" + for i in ['host','architecture','distribution','access','status']: + if i not in Attrs[1].keys(): + Attrs[1][i] = [''] + print "%-12s %-10s %-38s %-25s %s" % (\ + Attrs[1]['host'][0], \ + Attrs[1]['architecture'][0], \ + Attrs[1]['distribution'][0], \ + Attrs[1]['access'][0], \ + Attrs[1]['status'][0]) + # Change a single attribute def ChangeAttr(Attrs,Attr): - if (Attr == "sponsor" or Attr == "hostname" or Attr == "sshRSAHostKey"): + if (Attr in ["sponsor", "sshRSAHostKey", "purpose"]): return MultiChangeAttr(Attrs,Attr); print "Old value: '%s'" % (GetAttr(Attrs,Attr,"")); @@ -158,11 +198,32 @@ def MultiChangeAttr(Attrs,Attr): Attrs[1][Attr].append(NewValue); print; +def CalcTempFile(): + unique = 0 + while unique == 0: + name = mktemp() + try: + fd = os.open(name, O_CREAT | O_EXCL | O_WRONLY, 0600) + except OSError: + continue + os.close(fd) + unique = 1 + return name + + # Main program starts here User = pwd.getpwuid(os.getuid())[0]; BindUser = User; +ListMode = 0 +FingerPrints = 0 +Host = None # Process options -(options, arguments) = getopt.getopt(sys.argv[1:], "nh:a:r") +try: + (options, arguments) = getopt.getopt(sys.argv[1:], "nh:a:rlf") +except getopt.GetoptError, data: + print data + sys.exit(1) + for (switch, val) in options: if (switch == '-h'): Host = val; @@ -172,26 +233,62 @@ for (switch, val) in options: RootMode = 1; elif (switch == '-n'): BindUser = ""; + elif (switch == '-l'): + BindUser = ""; + ListMode = 1 + elif (switch == '-f'): + BindUser = ""; + FingerPrints = 1 if (BindUser != ""): - print "Accessing LDAP entry", -if (BindUser != User): - if (BindUser != ""): - print "as '" + BindUser + "'"; -else: - print; -if (BindUser != ""): - Password = getpass(BindUser + "'s password: "); - -# Connect to the ldap server -l = ldap.open(LDAPServer); -UserDn = "uid=" + BindUser + "," + BaseDn; -if (BindUser != ""): - l.simple_bind_s(UserDn,Password); + l = passwdAccessLDAP(LDAPServer, BaseDn, BindUser) else: - l.simple_bind_s("",""); + l = ldap.open(LDAPServer); + l.simple_bind_s("","") + +HBaseDn = HostBaseDn + +if ListMode == 1: + Attrs = l.search_s(HBaseDn,ldap.SCOPE_ONELEVEL,"host=*") + hosts = [] + for hAttrs in Attrs: + hosts.append(hAttrs[1]['host'][0]) + hosts.sort() + + print "%-12s %-10s %-38s %-25s %s" % ("Host name","Arch","Distribution","Access","Status") + print "-"*115 + for host in hosts: + for hAttrs in Attrs: + if host == hAttrs[1]['host'][0]: + Overview(hAttrs) + sys.exit(0) +elif FingerPrints == 1: + if Host is not None: + Attrs = l.search_s(HBaseDn,ldap.SCOPE_ONELEVEL,"host=" + Host) + else: + Attrs = l.search_s(HBaseDn,ldap.SCOPE_ONELEVEL,"host=*") + hosts = [] + for hAttrs in Attrs: + hosts.append(hAttrs[1]['host'][0]) + hosts.sort() + + tmpfile = CalcTempFile() + for host in hosts: + for hAttrs in Attrs: + if host == hAttrs[1]['host'][0]: + if 'sshRSAHostKey' in hAttrs[1].keys(): + for key in hAttrs[1]['sshRSAHostKey']: + tmp = open(tmpfile, 'w') + tmp.write(key + '\n') + tmp.close() + fp = os.popen('/usr/bin/ssh-keygen -l -f ' + tmpfile, "r") + input = fp.readline() + fp.close() + fingerprint = input.split(' ') + print "%s %s root@%s" % (fingerprint[0], fingerprint[1], host) + os.unlink(tmpfile) + sys.exit(0) -HBaseDn = "ou=hosts,dc=debian,dc=org"; HostDn = "host=" + Host + "," + HBaseDn; # Query the server for all of the attributes @@ -215,7 +312,7 @@ while(1): # Prompt Response = raw_input("Change? "); - if (Response == "x" or Response == "X" or Response == "q" or + if (Response == "x" or Response == "X" or Response == "q" or Response == "quit" or Response == "exit"): break; @@ -243,9 +340,13 @@ while(1): if len(NAttrs) != 0: print "Host",NewHost,"already exists."; continue; + NewHostName = raw_input("Hostname? "); + if NewHost == "": + continue; Dn = "host=" + NewHost + "," + HBaseDn; - l.add_s(Dn,[("host",NewHost), - ("objectclass","top")]); + l.add_s(Dn,[("host", NewHost), + ("hostname", NewHostName), + ("objectClass", ("top", "debianServer"))]); # Switch NAttrs = l.search_s(HBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);