4 # Copyright (c) 2000-2001 Jason Gunthorpe <jgg@debian.org>
5 # Copyright (c) 2001 Ryan Murray <rmurray@debian.org>
6 # Copyright (c) 2003 James Troup <troup@debian.org>
7 # Copyright (c) 2004-2005 Joey Schulze <joey@infodrom.org>
9 # This program is free software; you can redistribute it and/or modify
10 # it under the terms of the GNU General Public License as published by
11 # the Free Software Foundation; either version 2 of the License, or
12 # (at your option) any later version.
14 # This program is distributed in the hope that it will be useful,
15 # but WITHOUT ANY WARRANTY; without even the implied warranty of
16 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 # GNU General Public License for more details.
19 # You should have received a copy of the GNU General Public License
20 # along with this program; if not, write to the Free Software
21 # Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 # This script is an interactive way to manipulate fields in the LDAP directory.
24 # When run it connects to the directory using the current users ID and fetches
25 # all the attributes for the first machine. It then formats them nicely and
26 # allows the user to change them.
28 # Usage: userinfo -a <user> -u <user> -c <user> -r
29 # -a Set the authentication user (the user whose password you are
31 # -h Set the host to display
32 # -l list all hosts and their status
33 # -f list all SSH fingerprints
35 import time, os, pwd, sys, getopt, ldap, crypt, readline, copy;
36 from tempfile import mktemp
37 from os import O_CREAT, O_EXCL, O_WRONLY
38 from userdir_ldap import *;
41 AttrInfo = {"description": ["Machine Descr.", 1],
42 "hostname": ["Host names", 2],
43 "status": ["Status", 3],
45 "sponsor": ["Sponsors", 5],
46 "distribution": ["Distribution", 6],
47 "access": ["Access", 7],
48 "admin": ["Admin", 8],
49 "architecture": ["Architecture", 9],
50 "machine": ["Machine Hardware", 10],
51 "memory": ["Memory", 11],
53 "physicalHost": ["Physical Host", 13],
54 "sshRSAHostKey": ["SSH Host Keys", 14],
55 "bandwidth": ["Bandwidth", 15],
56 "purpose": ["Purposes", 16],
57 "allowedGroups": ["Groups", 17],
58 "exportOptions": ["Export-Opts", 18],
59 "ipHostNumber": ["IP Address", 19],
60 "mXRecord": ["MXRecord", 20],
63 AttrPrompt = {"description": ["Purpose of the machine"],
64 "hostname": ["The hostnames for the box (ipv4/ipv6)"],
65 "status": ["Blank if Up, explaination if not"],
66 "l": ["Physical location"],
67 "sponsor": ["Sponsors and their URLs"],
68 "distribution": ["The distribution version"],
69 "access": ["all, developer only, restricted"],
70 "admin": ["Admin email address"],
71 "architecture": ["Debian Architecture string"],
72 "machine": ["Hardware description"],
73 "memory": ["Installed RAM"],
74 "disk": ["Disk Space, RAID levels, etc"],
75 "physicalHost": ["The box hosting this virtual server"],
76 "sshRSAHostKey": ["A copy of /etc/ssh/ssh_*host_key.pub"],
77 "bandwidth": ["Available outbound"],
78 "purpose": ["The purposes of this host"],
79 "allowedGroups": ["allowed Groups on this host"],
80 "exportOptions": ["additional export options"],
81 "ipHostNumber": ["IP Addresses(es) of the machine"],
82 "mXRecord": ["Mail Exchanger for this machine"],
85 # Create a map of IDs to desc,value,attr
87 for at in AttrInfo.keys():
88 if (AttrInfo[at][1] != 0):
89 OrderedIndex[AttrInfo[at][1]] = [AttrInfo[at][0], "", at];
90 OrigOrderedIndex = copy.deepcopy(OrderedIndex);
92 # Print out the automatic time stamp information
93 def PrintModTime(Attrs):
94 Stamp = GetAttr(Attrs,"modifyTimestamp","");
96 Time = (int(Stamp[0:4]),int(Stamp[4:6]),int(Stamp[6:8]),
97 int(Stamp[8:10]),int(Stamp[10:12]),int(Stamp[12:14]),0,0,-1);
98 print "%-24s:" % ("Record last modified on"), time.strftime("%a %d/%m/%Y %X UTC",Time),
99 print "by",ldap.explode_dn(GetAttr(Attrs,"modifiersName"),1)[0];
101 Stamp = GetAttr(Attrs,"createTimestamp","");
103 Time = (int(Stamp[0:4]),int(Stamp[4:6]),int(Stamp[6:8]),
104 int(Stamp[8:10]),int(Stamp[10:12]),int(Stamp[12:14]),0,0,-1);
105 print "%-24s:" % ("Record created on"), time.strftime("%a %d/%m/%Y %X UTC",Time);
107 # Display all of the attributes in a numbered list
108 def ShowAttrs(Attrs):
112 for at in Attrs[1].keys():
113 if AttrInfo.has_key(at):
114 if AttrInfo[at][1] == 0:
115 print " %-18s:" % (AttrInfo[at][0]),
116 for x in Attrs[1][at]:
120 OrderedIndex[AttrInfo[at][1]][1] = Attrs[1][at];
122 Keys = OrderedIndex.keys();
125 if at < 100 or RootMode != 0:
126 print " %3u) %-18s: " % (at,OrderedIndex[at][0]),
127 for x in OrderedIndex[at][1]:
128 print "'%s'" % (re.sub('[\n\r]','?',x)),
132 """Display a one-line overview for a given host"""
133 for i in ['host','architecture','distribution','access','status']:
134 if i not in Attrs[1].keys():
136 print "%-12s %-10s %-38s %-25s %s" % (\
137 Attrs[1]['host'][0], \
138 Attrs[1]['architecture'][0], \
139 Attrs[1]['distribution'][0], \
140 Attrs[1]['access'][0], \
141 Attrs[1]['status'][0])
143 # Change a single attribute
144 def ChangeAttr(Attrs,Attr):
145 if (Attr in ["sponsor", "sshRSAHostKey", "purpose", "allowedGroups", "exportOptions", "ipHostNumber", "mXRecord"]):
146 return MultiChangeAttr(Attrs,Attr);
148 print "Old value: '%s'" % (GetAttr(Attrs,Attr,""));
149 print "Press enter to leave unchanged and a single space to set to empty";
150 NewValue = raw_input("New? ");
154 print "Leaving unchanged.";
157 # Single space designates delete, trap the delete error
158 if (NewValue == " "):
161 l.modify_s(HostDn,[(ldap.MOD_DELETE,Attr,None)]);
162 except ldap.NO_SUCH_ATTRIBUTE:
166 Attrs[1][Attr] = [""];
171 l.modify_s(HostDn,[(ldap.MOD_REPLACE,Attr,NewValue)]);
172 Attrs[1][Attr] = [NewValue];
175 def MultiChangeAttr(Attrs,Attr):
176 # Make sure that we have an entry
177 if not Attrs[1].has_key(Attr):
180 Attrs[1][Attr].sort();
181 print "Old values: ",Attrs[1][Attr];
183 Mode = raw_input("[D]elete or [A]dd? ").upper()
184 if (Mode != 'D' and Mode != 'A'):
187 NewValue = raw_input("Value? ");
190 print "Leaving unchanged.";
197 l.modify_s(HostDn,[(ldap.MOD_DELETE,Attr,NewValue)]);
198 except ldap.NO_SUCH_ATTRIBUTE:
202 Attrs[1][Attr].remove(NewValue);
207 l.modify_s(HostDn,[(ldap.MOD_ADD,Attr,NewValue)]);
208 Attrs[1][Attr].append(NewValue);
216 fd = os.open(name, O_CREAT | O_EXCL | O_WRONLY, 0600)
224 # Main program starts here
225 User = pwd.getpwuid(os.getuid())[0];
232 (options, arguments) = getopt.getopt(sys.argv[1:], "nh:a:rlf")
233 except getopt.GetoptError, data:
237 for (switch, val) in options:
240 elif (switch == '-a'):
242 elif (switch == '-r'):
244 elif (switch == '-n'):
246 elif (switch == '-l'):
249 elif (switch == '-f'):
254 l = passwdAccessLDAP(BaseDn, BindUser)
257 l.simple_bind_s("","")
260 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=*")
263 hosts.append(hAttrs[1]['host'][0])
266 print "%-12s %-10s %-38s %-25s %s" % ("Host name","Arch","Distribution","Access","Status")
270 if host == hAttrs[1]['host'][0]:
273 elif FingerPrints == 1:
275 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + Host)
277 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=*")
280 hosts.append(hAttrs[1]['host'][0])
283 tmpfile = CalcTempFile()
286 if host == hAttrs[1]['host'][0]:
287 if 'sshRSAHostKey' in hAttrs[1].keys():
288 for key in hAttrs[1]['sshRSAHostKey']:
289 tmp = open(tmpfile, 'w')
290 tmp.write(key + '\n')
292 fp = os.popen('/usr/bin/ssh-keygen -l -f ' + tmpfile, "r")
293 input = fp.readline()
295 fingerprint = input.split(' ')
296 print "%s %s root@%s" % (fingerprint[0], fingerprint[1], host)
300 HostDn = "host=" + Host + "," + HostBaseDn;
302 # Query the server for all of the attributes
303 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + Host);
305 print "Host",Host,"was not found.";
308 # repeatedly show the account configuration
315 print " a) Arbitary Change";
316 print " n) New Host";
317 print " d) Delete Host";
318 print " u) Switch Hosts";
322 Response = raw_input("Change? ");
323 if (Response == "x" or Response == "X" or Response == "q" or
324 Response == "quit" or Response == "exit"):
327 # Change who we are looking at
328 if (Response == 'u' or Response == 'U'):
329 NewHost = raw_input("Host? ");
332 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
334 print "Host",NewHost,"was not found.";
338 HostDn = "host=" + Host + "," + HostBaseDn;
339 OrderedIndex = copy.deepcopy(OrigOrderedIndex);
342 # Create a new entry and change to it Change who we are looking at
343 if (Response == 'n' or Response == 'N'):
344 NewHost = raw_input("Host? ");
347 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
349 print "Host",NewHost,"already exists.";
351 NewHostName = raw_input("Hostname? ");
354 Dn = "host=" + NewHost + "," + HostBaseDn;
355 l.add_s(Dn,[("host", NewHost),
356 ("hostname", NewHostName),
357 ("objectClass", ("top", "debianServer"))]);
360 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
362 print "Host",NewHost,"was not found.";
366 HostDn = "host=" + Host + "," + HostBaseDn;
367 OrderedIndex = copy.deepcopy(OrigOrderedIndex);
370 # Handle changing an arbitary value
371 if (Response == "a"):
372 Attr = raw_input("Attr? ");
373 ChangeAttr(Attrs[0],Attr);
376 if (Response == 'd'):
377 Really = raw_input("Really (type yes)? ");
380 print "Deleting",HostDn;
384 # Convert the integer response
387 if (not OrderedIndex.has_key(ID) or (ID > 100 and RootMode == 0)):
393 # Print the what to do prompt
394 print "Changing LDAP entry '%s' (%s)" % (OrderedIndex[ID][0],OrderedIndex[ID][2]);
395 print AttrPrompt[OrderedIndex[ID][2]][0];
396 ChangeAttr(Attrs[0],OrderedIndex[ID][2]);
projects / mirror / userdir-ldap.git / blob