nss-pam-ldapd commit: r1381 - nss-pam-ldapd/pynslcd

[Date Prev][Date Next] [Thread Prev][Thread Next]

From: Commits of the nss-pam-ldapd project <nss-pam-ldapd-commits [at] lists.arthurdejong.org>
To: nss-pam-ldapd-commits [at] lists.arthurdejong.org
Reply-to: nss-pam-ldapd-users [at] lists.arthurdejong.org
Subject: nss-pam-ldapd commit: r1381 - nss-pam-ldapd/pynslcd
Date: Sun, 6 Mar 2011 16:58:15 +0100 (CET)

Author: arthur
Date: Sun Mar  6 16:58:14 2011
New Revision: 1381
URL: http://arthurdejong.org/viewvc/nss-pam-ldapd?view=rev&revision=1381

Log:
implement module for netgroup lookups

Added:
   nss-pam-ldapd/pynslcd/netgroup.py
Modified:
   nss-pam-ldapd/pynslcd/Makefile.am
   nss-pam-ldapd/pynslcd/pynslcd.py

Modified: nss-pam-ldapd/pynslcd/Makefile.am
==============================================================================
--- nss-pam-ldapd/pynslcd/Makefile.am   Sun Mar  6 16:09:20 2011        (r1380)
+++ nss-pam-ldapd/pynslcd/Makefile.am   Sun Mar  6 16:58:14 2011        (r1381)
@@ -20,8 +20,8 @@
 pynslcddir = $(datadir)/pynslcd
 
 pynslcd_PYTHON = pynslcd.py cfg.py common.py tio.py mypidfile.py \
-                 alias.py ether.py group.py host.py network.py pam.py \
-                 passwd.py shadow.py
+                 alias.py ether.py group.py host.py netgroup.py network.py \
+                 pam.py passwd.py shadow.py
 nodist_pynslcd_PYTHON = constants.py config.py
 CLEANFILES = $(nodist_pynslcd_PYTHON)
 

Added: nss-pam-ldapd/pynslcd/netgroup.py
==============================================================================
--- /dev/null   00:00:00 1970   (empty, because file is newly added)
+++ nss-pam-ldapd/pynslcd/netgroup.py   Sun Mar  6 16:58:14 2011        (r1381)
@@ -0,0 +1,80 @@
+
+# netgroup.py - lookup functions for netgroups
+#
+# Copyright (C) 2011 Arthur de Jong
+#
+# This library is free software; you can redistribute it and/or
+# modify it under the terms of the GNU Lesser General Public
+# License as published by the Free Software Foundation; either
+# version 2.1 of the License, or (at your option) any later version.
+#
+# This library is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
+# Lesser General Public License for more details.
+#
+# You should have received a copy of the GNU Lesser General Public
+# License along with this library; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
+# 02110-1301 USA
+
+import constants
+import common
+
+import struct
+import ldap.filter
+import socket
+import re
+
+
+_netgroup_triple_re = 
re.compile(r'^\s*\(\s*(?P<host>.*)\s*,\s*(?P<user>.*)\s*,\s*(?P<domain>.*)\s*\)\s*$')
+
+
+class NetgroupRequest(common.Request):
+
+    filter = '(objectClass=nisNetgroup)'
+
+    attmap_cn                = 'cn'
+    attmap_nisNetgroupTriple = 'nisNetgroupTriple'
+    attmap_memberNisNetgroup = 'memberNisNetgroup'
+
+    attributes = ( 'cn', 'nisNetgroupTriple', 'memberNisNetgroup' )
+
+    def write(self, entry):
+        dn, attributes = entry
+        # get names and check against requested user name
+        names = attributes.get(self.attmap_cn, [])
+        if self.name:
+            if self.name not in names:
+                return
+            names = ( self.name, )
+        if not names:
+            print 'Error: entry %s does not contain %s value' % ( dn, 
self.attmap_cn)
+        # write the netgroup triples
+        for triple in attributes.get(self.attmap_nisNetgroupTriple, []):
+            m = _netgroup_triple_re.match(triple)
+            if not m:
+                print 'Warning: entry %s contains invalid %s value: %r' % ( 
dn, self.attmap_nisNetgroupTriple, triple)
+            else:
+                self.fp.write_int32(constants.NSLCD_RESULT_BEGIN)
+                self.fp.write_int32(constants.NSLCD_NETGROUP_TYPE_TRIPLE)
+                self.fp.write_string(m.group('host'))
+                self.fp.write_string(m.group('user'))
+                self.fp.write_string(m.group('domain'))
+        # write netgroup members
+        for member in attributes.get(self.attmap_memberNisNetgroup, []):
+            self.fp.write_int32(constants.NSLCD_RESULT_BEGIN)
+            self.fp.write_int32(constants.NSLCD_NETGROUP_TYPE_NETGROUP)
+            self.fp.write_string(member)
+
+
+class NetgroupByNameRequest(NetgroupRequest):
+
+    action = constants.NSLCD_ACTION_NETGROUP_BYNAME
+
+    def read_parameters(self):
+        self.name = self.fp.read_string()
+
+    def mk_filter(self):
+        return '(&%s(%s=%s))' % ( self.filter,
+                  self.attmap_cn, ldap.filter.escape_filter_chars(self.name) )

Modified: nss-pam-ldapd/pynslcd/pynslcd.py
==============================================================================
--- nss-pam-ldapd/pynslcd/pynslcd.py    Sun Mar  6 16:09:20 2011        (r1380)
+++ nss-pam-ldapd/pynslcd/pynslcd.py    Sun Mar  6 16:58:14 2011        (r1381)
@@ -142,6 +142,7 @@
 handlers.update(common.get_handlers('ether'))
 handlers.update(common.get_handlers('group'))
 handlers.update(common.get_handlers('host'))
+handlers.update(common.get_handlers('netgroup'))
 handlers.update(common.get_handlers('network'))
 handlers.update(common.get_handlers('pam'))
 handlers.update(common.get_handlers('passwd'))
-- 
To unsubscribe send an email to
nss-pam-ldapd-commits-unsubscribe@lists.arthurdejong.org or see
http://lists.arthurdejong.org/nss-pam-ldapd-commits

nss-pam-ldapd commit: r1381 - nss-pam-ldapd/pynslcd, Commits of the nss-pam-ldapd project

Prev by Date: nss-pam-ldapd propchange: r1361 - svn:log
Next by Date: nss-pam-ldapd commit: r1382 - nss-pam-ldapd/nslcd
Previous by thread: nss-pam-ldapd propchange: r1361 - svn:log
Next by thread: nss-pam-ldapd commit: r1382 - nss-pam-ldapd/nslcd