4 # Copyright (c) 2000-2001 Jason Gunthorpe <jgg@debian.org>
5 # Copyright (c) 2001 Ryan Murray <rmurray@debian.org>
6 # Copyright (c) 2003 James Troup <troup@debian.org>
7 # Copyright (c) 2004-2005 Joey Schulze <joey@infodrom.org>
9 # This program is free software; you can redistribute it and/or modify
10 # it under the terms of the GNU General Public License as published by
11 # the Free Software Foundation; either version 2 of the License, or
12 # (at your option) any later version.
14 # This program is distributed in the hope that it will be useful,
15 # but WITHOUT ANY WARRANTY; without even the implied warranty of
16 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 # GNU General Public License for more details.
19 # You should have received a copy of the GNU General Public License
20 # along with this program; if not, write to the Free Software
21 # Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
23 # This script is an interactive way to manipulate fields in the LDAP directory.
24 # When run it connects to the directory using the current users ID and fetches
25 # all the attributes for the first machine. It then formats them nicely and
26 # allows the user to change them.
28 # Usage: userinfo -a <user> -u <user> -c <user> -r
29 # -a Set the authentication user (the user whose password you are
31 # -h Set the host to display
32 # -l list all hosts and their status
33 # -f list all SSH fingerprints
35 import time, os, pwd, sys, getopt, ldap, crypt, readline, copy;
36 from tempfile import mktemp
37 from os import O_CREAT, O_EXCL, O_WRONLY
38 from userdir_ldap import *;
41 AttrInfo = {"description": ["Machine Descr.", 1],
42 "hostname": ["Host names", 2],
43 "status": ["Status", 3],
45 "sponsor": ["Sponsors", 5],
46 "distribution": ["Distribution", 6],
47 "access": ["Access", 7],
48 "admin": ["Admin", 8],
49 "architecture": ["Architecture", 9],
50 "machine": ["Machine Hardware", 10],
51 "memory": ["Memory", 11],
53 "physicalHost": ["Physical Host", 13],
54 "sshRSAHostKey": ["SSH Host Keys", 14],
55 "bandwidth": ["Bandwidth", 15],
56 "purpose": ["Purposes", 16],
57 "allowedGroups": ["Groups", 17],
58 "exportOptions": ["Export-Opts", 18],
59 "ipHostNumber": ["IP Address", 19],
60 "mXRecord": ["MXRecord", 20],
61 "sshdistAuthKeysHost": ["extra authkeys ip", 21],
64 AttrPrompt = {"description": ["Purpose of the machine"],
65 "hostname": ["The hostnames for the box (ipv4/ipv6)"],
66 "status": ["Blank if Up, explaination if not"],
67 "l": ["Physical location"],
68 "sponsor": ["Sponsors and their URLs"],
69 "distribution": ["The distribution version"],
70 "access": ["all, developer only, restricted"],
71 "admin": ["Admin email address"],
72 "architecture": ["Debian Architecture string"],
73 "machine": ["Hardware description"],
74 "memory": ["Installed RAM"],
75 "disk": ["Disk Space, RAID levels, etc"],
76 "physicalHost": ["The box hosting this virtual server"],
77 "sshRSAHostKey": ["A copy of /etc/ssh/ssh_*host_key.pub"],
78 "bandwidth": ["Available outbound"],
79 "purpose": ["The purposes of this host"],
80 "allowedGroups": ["allowed Groups on this host"],
81 "exportOptions": ["additional export options"],
82 "ipHostNumber": ["IP Addresses(es) of the machine"],
83 "mXRecord": ["Mail Exchanger for this machine"],
84 "sshdistAuthKeysHost": ["additional hosts for sshdist's authkeys file"],
87 # Create a map of IDs to desc,value,attr
89 for at in AttrInfo.keys():
90 if (AttrInfo[at][1] != 0):
91 OrderedIndex[AttrInfo[at][1]] = [AttrInfo[at][0], "", at];
92 OrigOrderedIndex = copy.deepcopy(OrderedIndex);
94 # Print out the automatic time stamp information
95 def PrintModTime(Attrs):
96 Stamp = GetAttr(Attrs,"modifyTimestamp","");
98 Time = (int(Stamp[0:4]),int(Stamp[4:6]),int(Stamp[6:8]),
99 int(Stamp[8:10]),int(Stamp[10:12]),int(Stamp[12:14]),0,0,-1);
100 print "%-24s:" % ("Record last modified on"), time.strftime("%a %d/%m/%Y %X UTC",Time),
101 print "by",ldap.explode_dn(GetAttr(Attrs,"modifiersName"),1)[0];
103 Stamp = GetAttr(Attrs,"createTimestamp","");
105 Time = (int(Stamp[0:4]),int(Stamp[4:6]),int(Stamp[6:8]),
106 int(Stamp[8:10]),int(Stamp[10:12]),int(Stamp[12:14]),0,0,-1);
107 print "%-24s:" % ("Record created on"), time.strftime("%a %d/%m/%Y %X UTC",Time);
109 # Display all of the attributes in a numbered list
110 def ShowAttrs(Attrs):
114 for at in Attrs[1].keys():
115 if AttrInfo.has_key(at):
116 if AttrInfo[at][1] == 0:
117 print " %-18s:" % (AttrInfo[at][0]),
118 for x in Attrs[1][at]:
122 OrderedIndex[AttrInfo[at][1]][1] = Attrs[1][at];
124 Keys = OrderedIndex.keys();
127 if at < 100 or RootMode != 0:
128 print " %3u) %-18s: " % (at,OrderedIndex[at][0]),
129 for x in OrderedIndex[at][1]:
130 print "'%s'" % (re.sub('[\n\r]','?',x)),
134 """Display a one-line overview for a given host"""
135 for i in ['host','architecture','distribution','access','status']:
136 if i not in Attrs[1].keys():
138 print "%-12s %-10s %-38s %-25s %s" % (\
139 Attrs[1]['host'][0], \
140 Attrs[1]['architecture'][0], \
141 Attrs[1]['distribution'][0], \
142 Attrs[1]['access'][0], \
143 Attrs[1]['status'][0])
145 # Change a single attribute
146 def ChangeAttr(Attrs,Attr):
147 if (Attr in ["sponsor", "sshRSAHostKey", "purpose", "allowedGroups", "exportOptions", "ipHostNumber", "mXRecord", "sshdistAuthKeysHost"]):
148 return MultiChangeAttr(Attrs,Attr);
150 print "Old value: '%s'" % (GetAttr(Attrs,Attr,""));
151 print "Press enter to leave unchanged and a single space to set to empty";
152 NewValue = raw_input("New? ");
156 print "Leaving unchanged.";
159 # Single space designates delete, trap the delete error
160 if (NewValue == " "):
163 l.modify_s(HostDn,[(ldap.MOD_DELETE,Attr,None)]);
164 except ldap.NO_SUCH_ATTRIBUTE:
168 Attrs[1][Attr] = [""];
173 l.modify_s(HostDn,[(ldap.MOD_REPLACE,Attr,NewValue)]);
174 Attrs[1][Attr] = [NewValue];
177 def MultiChangeAttr(Attrs,Attr):
178 # Make sure that we have an entry
179 if not Attrs[1].has_key(Attr):
182 Attrs[1][Attr].sort();
183 print "Old values: ",Attrs[1][Attr];
185 Mode = raw_input("[D]elete or [A]dd? ").upper()
186 if (Mode != 'D' and Mode != 'A'):
189 NewValue = raw_input("Value? ");
192 print "Leaving unchanged.";
199 l.modify_s(HostDn,[(ldap.MOD_DELETE,Attr,NewValue)]);
200 except ldap.NO_SUCH_ATTRIBUTE:
204 Attrs[1][Attr].remove(NewValue);
209 l.modify_s(HostDn,[(ldap.MOD_ADD,Attr,NewValue)]);
210 Attrs[1][Attr].append(NewValue);
218 fd = os.open(name, O_CREAT | O_EXCL | O_WRONLY, 0600)
226 # Main program starts here
227 User = pwd.getpwuid(os.getuid())[0];
234 (options, arguments) = getopt.getopt(sys.argv[1:], "nh:a:rlf")
235 except getopt.GetoptError, data:
239 for (switch, val) in options:
242 elif (switch == '-a'):
244 elif (switch == '-r'):
246 elif (switch == '-n'):
248 elif (switch == '-l'):
251 elif (switch == '-f'):
256 l = passwdAccessLDAP(BaseDn, BindUser)
259 l.simple_bind_s("","")
262 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=*")
265 hosts.append(hAttrs[1]['host'][0])
268 print "%-12s %-10s %-38s %-25s %s" % ("Host name","Arch","Distribution","Access","Status")
272 if host == hAttrs[1]['host'][0]:
275 elif FingerPrints == 1:
277 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + Host)
279 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=*")
282 hosts.append(hAttrs[1]['host'][0])
285 tmpfile = CalcTempFile()
288 if host == hAttrs[1]['host'][0]:
289 if 'sshRSAHostKey' in hAttrs[1].keys():
290 for key in hAttrs[1]['sshRSAHostKey']:
291 tmp = open(tmpfile, 'w')
292 tmp.write(key + '\n')
294 fp = os.popen('/usr/bin/ssh-keygen -l -f ' + tmpfile, "r")
295 input = fp.readline()
297 fingerprint = input.split(' ')
298 print "%s %s root@%s" % (fingerprint[0], fingerprint[1], host)
302 HostDn = "host=" + Host + "," + HostBaseDn;
304 # Query the server for all of the attributes
305 Attrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + Host);
307 print "Host",Host,"was not found.";
310 # repeatedly show the account configuration
317 print " a) Arbitary Change";
318 print " n) New Host";
319 print " d) Delete Host";
320 print " u) Switch Hosts";
324 Response = raw_input("Change? ");
325 if (Response == "x" or Response == "X" or Response == "q" or
326 Response == "quit" or Response == "exit"):
329 # Change who we are looking at
330 if (Response == 'u' or Response == 'U'):
331 NewHost = raw_input("Host? ");
334 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
336 print "Host",NewHost,"was not found.";
340 HostDn = "host=" + Host + "," + HostBaseDn;
341 OrderedIndex = copy.deepcopy(OrigOrderedIndex);
344 # Create a new entry and change to it Change who we are looking at
345 if (Response == 'n' or Response == 'N'):
346 NewHost = raw_input("Host? ");
349 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
351 print "Host",NewHost,"already exists.";
353 NewHostName = raw_input("Hostname? ");
356 Dn = "host=" + NewHost + "," + HostBaseDn;
357 l.add_s(Dn,[("host", NewHost),
358 ("hostname", NewHostName),
359 ("objectClass", ("top", "debianServer"))]);
362 NAttrs = l.search_s(HostBaseDn,ldap.SCOPE_ONELEVEL,"host=" + NewHost);
364 print "Host",NewHost,"was not found.";
368 HostDn = "host=" + Host + "," + HostBaseDn;
369 OrderedIndex = copy.deepcopy(OrigOrderedIndex);
372 # Handle changing an arbitary value
373 if (Response == "a"):
374 Attr = raw_input("Attr? ");
375 ChangeAttr(Attrs[0],Attr);
378 if (Response == 'd'):
379 Really = raw_input("Really (type yes)? ");
382 print "Deleting",HostDn;
386 # Convert the integer response
389 if (not OrderedIndex.has_key(ID) or (ID > 100 and RootMode == 0)):
395 # Print the what to do prompt
396 print "Changing LDAP entry '%s' (%s)" % (OrderedIndex[ID][0],OrderedIndex[ID][2]);
397 print AttrPrompt[OrderedIndex[ID][2]][0];
398 ChangeAttr(Attrs[0],OrderedIndex[ID][2]);
projects / mirror / userdir-ldap.git / blob