Proyecto

General

Perfil

Descargar (10,1 KB) Estadísticas
| Revisión:

root/controlies/Plugins/Users.py @ 98

61 manumora
##############################################################################
# -*- coding: utf-8 -*-
# Project: ControlIES
# Module: Users.py
# Purpose: Users class
# Language: Python 2.5
# Date: 7-Feb-2011.
# Ver: 7-Feb-2011.
# Author: Manuel Mora Gordillo
# Copyright: 2011 - Manuel Mora Gordillo <manuito @no-spam@ gmail.com>
#
# ControlIES is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
# ControlIES is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
# You should have received a copy of the GNU General Public License
76 manumora
# along with ControlIES. If not, see <http://www.gnu.org/licenses/>.
61 manumora
#
##############################################################################

import ldap
import logging
import hashlib
82 manumora
import base64
61 manumora
from math import ceil
from operator import itemgetter
80 manumora
from Utils import Utils, LdapUtils
61 manumora
class Users(object):

def __init__(self):
pass

63 manumora
def __init__(self,ldap,type,name,surname,nif,user,password,password2,departments,classrooms):
61 manumora
self.ldap = ldap
self.type = type
self.name = name
self.surname = surname
self.nif = nif
self.user = user
self.password = password
self.password2 = password2
63 manumora
self.departments = departments
self.classrooms = classrooms

61 manumora
def validation(self,action):

if action == "add":
if self.type == "none":
return "type"

if self.name == "":
return "name"

if self.surname == "":
return "surname"

if self.nif == "":
return "nif"

if self.user == "":
return "user"

if action == "add":
if self.existsUsername():
return "userAlreadyExists"

if self.password == "":
return "password"

if self.password2 == "":
return "password2"

if self.password != self.password2:
return "distinctPassword"

elif action == "modify":
if self.password == "" and self.password2 != "":
return "password"

if self.password != "" and self.password2 == "":
return "password2"

if self.password != "" and self.password2 != "" and self.password != self.password2:
return "distinctPassword"

return "OK"

def process(self,action):
if action == "add":
val = self.validation(action)

if val != "OK":
return val
else:
response = self.add()
return response

if action == "modify":
val = self.validation(action)

if val != "OK":
return val
else:
response = self.modify()
return response


def list(self,args):

filter = self.buildFilter(args)
search = self.ldap.search("ou=People",filter,["employeeNumber","uid","cn","uidnumber","gidnumber","homedirectory"])

# grid parameters
limit = int(args['rows'][0])
page = int(args['page'][0])
start = limit * page - limit
finish = start + limit;

# sort by field
sortBy = args['sidx'][0]
if sortBy == "uid":
sortBy = "id"

# reverse Sort
reverseSort = False
if args['sord'][0] == "asc":
reverseSort = True

# type of user (Teacher/Student)
try:
searchType = args['type'][0]
except LookupError:
searchType = "none"

rows = []
for i in search:

typeRow="Alumno"
if i[0][1]["homeDirectory"][0][0:14]=="/home/profesor":
typeRow="Profesor"

if searchType == typeRow or searchType=="none":
row = {
"id":i[0][1]["uid"][0],
"cell":[typeRow, i[0][1]["cn"][0], i[0][1]["uid"][0], i[0][1]["uidNumber"][0], i[0][1]["gidNumber"][0], i[0][1]["employeeNumber"][0]],
"type": typeRow,
"cn":i[0][1]["cn"][0],
"uidNumber":i[0][1]["uidNumber"][0],
"gidNumber":i[0][1]["gidNumber"][0],
"employeeNumber":i[0][1]["employeeNumber"][0]
}
rows.append(row)

# grid parameters
if len(rows) > 0:
totalPages = ceil( len(rows) / int(limit) )
else:
totalPages = 0

if page > totalPages:
page = totalPages

# sort rows
result = sorted(rows, key=itemgetter(sortBy), reverse=reverseSort)

return { "page":page, "total":totalPages, "records":len(rows), "rows":result[start:finish] }


def buildFilter(self, args):
filter = "(&(uid=*)"

try:
filter = filter + "(uid=*" + args['uid'][0] + "*)"
except LookupError:
pass

try:
filter = filter + "(cn=*" + args['cn'][0] + "*)"
except LookupError:
pass

try:
filter = filter + "(uidNumber=" + args['uidNumber'][0] + ")"
except LookupError:
pass

try:
filter = filter + "(gidNumber=" + args['gidNumber'][0] + ")"
except LookupError:
pass

try:
filter = filter + "(employeeNumber=*" + args['employeeNumber'][0] + "*)"
except LookupError:
pass

filter = filter + ")"
return filter


def add(self):

80 manumora
maxID = str(LdapUtils.getMaxID(self.ldap))
61 manumora
passwd = hashlib.sha1(self.password).hexdigest()

attr = [
('objectclass', ['top','posixAccount','shadowAccount','person','inetOrgPerson']),
('uid', [self.user]),
('cn', [self.name] ),
('employeenumber', [self.nif] ),
('sn', [self.surname] ),
('uidnumber', [maxID] ),
('gidnumber', [maxID] ),
('loginshell', ['/bin/bash'] ),
80 manumora
('homeDirectory', [LdapUtils.whatHome(self.type) + self.user] ),
61 manumora
#('jpegPhoto', ['jpegPhoto'] ),
('userpassword', [passwd])
]

self.ldap.add("uid="+self.user+",ou=People", attr)
64 manumora
# Add private group
attr = [
('objectclass', ['top','posixGroup','lisGroup']),
('grouptype', ['private']),
('gidnumber', [maxID] ),
('cn', [self.user] ),
('description', [self.name+' personal group'] )
]

self.ldap.add("cn="+self.user+",ou=Group", attr)
63 manumora
64 manumora
# Add selected groups
attr = [
(ldap.MOD_ADD, 'member', ['uid='+self.user+',ou=People,dc=instituto,dc=extremadura,dc=es'] ),
(ldap.MOD_ADD, 'memberUid', [self.user] )
]

for n in self.departments:
self.ldap.modify('cn='+ n +',ou=Group', attr)

for n in self.classrooms:
self.ldap.modify('cn='+ n +',ou=Group', attr)

61 manumora
return "OK"


def modify(self):

passwd = hashlib.sha1(self.password).hexdigest()

attr = [
(ldap.MOD_REPLACE, 'cn', [self.name] ),
(ldap.MOD_REPLACE, 'employeenumber', [self.nif] ),
(ldap.MOD_REPLACE, 'sn', [self.surname] ),
(ldap.MOD_REPLACE, 'userpassword', [passwd])
]

64 manumora
self.ldap.modify("uid="+self.user+",ou=People", attr)
63 manumora
64 manumora
# Get current groups
63 manumora
currentGroups = self.getUserGroups()

81 manumora
groupsDepartments = Utils.cmpLists(currentGroups["departments"], self.departments)
groupsClassrooms = Utils.cmpLists(currentGroups["classrooms"], self.classrooms)
64 manumora
# Delete unselected groups
81 manumora
deleteDepartments = groupsDepartments["onlyInList1"]
deleteClassrooms = groupsClassrooms["onlyInList1"]
64 manumora
63 manumora
attr = [
(ldap.MOD_DELETE, 'member', ['uid='+self.user+',ou=People,dc=instituto,dc=extremadura,dc=es'] ),
(ldap.MOD_DELETE, 'memberUid', [self.user] )
]

64 manumora
for d in deleteDepartments:
self.ldap.modify('cn='+ d +',ou=Group', attr)

for d in deleteClassrooms:
self.ldap.modify('cn='+ d +',ou=Group', attr)

# Add selected groups
81 manumora
newDepartments = groupsDepartments["onlyInList2"]
newClassrooms = groupsClassrooms["onlyInList2"]
63 manumora
64 manumora
attr = [
(ldap.MOD_ADD, 'member', ['uid='+self.user+',ou=People,dc=instituto,dc=extremadura,dc=es'] ),
(ldap.MOD_ADD, 'memberUid', [self.user] )
]

for n in newDepartments:
self.ldap.modify('cn='+ n +',ou=Group', attr)

for n in newClassrooms:
self.ldap.modify('cn='+ n +',ou=Group', attr)

61 manumora
return "OK"

64 manumora
61 manumora
def delete(self):

self.ldap.delete('uid='+ self.user +',ou=People')
64 manumora
self.ldap.delete("cn="+self.user+",ou=Group")

# Delete unselected groups
currentGroups = self.getUserGroups()
61 manumora
64 manumora
attr = [
(ldap.MOD_DELETE, 'member', ['uid='+self.user+',ou=People,dc=instituto,dc=extremadura,dc=es'] ),
(ldap.MOD_DELETE, 'memberUid', [self.user] )
]
61 manumora
64 manumora
for d in currentGroups["departments"]:
self.ldap.modify('cn='+ d +',ou=Group', attr)

for d in currentGroups["classrooms"]:
self.ldap.modify('cn='+ d +',ou=Group', attr)

return "OK"


61 manumora
def existsUsername(self):

result = self.ldap.search("ou=People","uid="+self.user,["uid"])

if len(result) > 0:
return True

return False


def searchNewUsername(self):

result = self.ldap.search("ou=People","uid=*",["uid"])
users = []
for i in result:
users.append(i[0][1]['uid'][0])

n = self.name.lower().split(" ")

username = ""
if len(n) > 0:
username = n[0][0:1]

if len(n) > 1:
username = username + n[1]

if len(n) > 2:
username = username + n[2][0:1]

num = 1
searching = username + "0" + str(num)

found = True
while found:
try:
users.index(searching)
num = num + 1

if len(str(num)) == 1:
searching = username + "0" + str(num)
else:
searching = username + str(num)
except:
found = False

return searching

62 manumora
def getUserGroups(self):
result = self.ldap.search("ou=Group","(&(memberUid="+self.user+")(|(groupType=school_department)(groupType=school_class)))",["cn","groupType"])

departments = []
classrooms = []
for g in result:
if g[0][1]["groupType"][0] == "school_department":
departments.append(g[0][1]["cn"][0])
elif g[0][1]["groupType"][0] == "school_class":
classrooms.append(g[0][1]["cn"][0])

departments.sort()
classrooms.sort()
return { "departments":departments, "classrooms":classrooms }

61 manumora
def getUserData(self):
62 manumora
self.getUserGroups()
82 manumora
result = self.ldap.search("ou=People","uid="+self.user,["uid","cn","sn","employeenumber","homedirectory","jpegPhoto"])
61 manumora
type = "student"
if result[0][0][1]["homeDirectory"][0][0:14]=="/home/profesor":
type = "teacher"

84 manumora
try:
photo = base64.b64encode(result[0][0][1]["jpegPhoto"][0])
except:
photo = ""

61 manumora
dataUser = {
"user":result[0][0][1]["uid"][0],
"name":result[0][0][1]["cn"][0],
"surname":result[0][0][1]["sn"][0],
"nif":result[0][0][1]["employeeNumber"][0],
84 manumora
"photo":photo,
62 manumora
"type":type,
"groups":self.getUserGroups()
61 manumora
}

return dataUser