mirror of
https://github.com/Pardus-LiderAhenk/ahenk
synced 2024-11-28 05:42:27 +03:00
registration bugfix
This commit is contained in:
parent
cb68699999
commit
01cbd52601
1 changed files with 0 additions and 453 deletions
|
@ -455,456 +455,3 @@ class Registration:
|
||||||
Util.execute(change_username.format(new_username, p.pw_name))
|
Util.execute(change_username.format(new_username, p.pw_name))
|
||||||
Util.execute(change_home.format(new_home_dir, new_username))
|
Util.execute(change_home.format(new_home_dir, new_username))
|
||||||
Util.execute(change_permisson.format(new_home_dir))#!/usr/bin/python3
|
Util.execute(change_permisson.format(new_home_dir))#!/usr/bin/python3
|
||||||
# -*- coding: utf-8 -*-
|
|
||||||
# Author: Volkan Şahin <volkansah.in> <bm.volkansahin@gmail.com>
|
|
||||||
|
|
||||||
import datetime
|
|
||||||
import json
|
|
||||||
import uuid
|
|
||||||
from uuid import getnode as get_mac
|
|
||||||
from base.scope import Scope
|
|
||||||
from base.messaging.anonymous_messenger import AnonymousMessenger
|
|
||||||
from base.system.system import System
|
|
||||||
from base.util.util import Util
|
|
||||||
from helper import system as sysx
|
|
||||||
import pwd
|
|
||||||
from base.timer.setup_timer import SetupTimer
|
|
||||||
from base.timer.timer import Timer
|
|
||||||
import re
|
|
||||||
import os
|
|
||||||
from base.registration.execute_cancel_sssd_authentication import ExecuteCancelSSSDAuthentication
|
|
||||||
from base.registration.execute_sssd_authentication import ExecuteSSSDAuthentication
|
|
||||||
from base.registration.execute_sssd_ad_authentication import ExecuteSSSDAdAuthentication
|
|
||||||
|
|
||||||
class Registration:
|
|
||||||
def __init__(self):
|
|
||||||
scope = Scope().get_instance()
|
|
||||||
self.logger = scope.get_logger()
|
|
||||||
self.message_manager = scope.get_message_manager()
|
|
||||||
self.event_manager = scope.get_event_manager()
|
|
||||||
self.messenger = scope.get_messenger()
|
|
||||||
self.conf_manager = scope.get_configuration_manager()
|
|
||||||
self.db_service = scope.get_db_service()
|
|
||||||
self.util = Util()
|
|
||||||
self.servicename='im.liderahenk.org'
|
|
||||||
|
|
||||||
#self.event_manager.register_event('REGISTRATION_RESPONSE', self.registration_process)
|
|
||||||
self.event_manager.register_event('REGISTRATION_SUCCESS', self.registration_success)
|
|
||||||
self.event_manager.register_event('REGISTRATION_ERROR', self.registration_error)
|
|
||||||
|
|
||||||
self.ldap_login_cancel = ExecuteCancelSSSDAuthentication()
|
|
||||||
self.ldap_login = ExecuteSSSDAuthentication()
|
|
||||||
self.ad_login = ExecuteSSSDAdAuthentication()
|
|
||||||
|
|
||||||
self.directory_server = None
|
|
||||||
|
|
||||||
if self.is_registered():
|
|
||||||
self.logger.debug('Ahenk already registered')
|
|
||||||
else:
|
|
||||||
self.register(True)
|
|
||||||
|
|
||||||
def registration_request(self, hostname,username,password):
|
|
||||||
|
|
||||||
self.logger.debug('Requesting registration')
|
|
||||||
# SetupTimer.start(Timer(System.Ahenk.registration_timeout(), timeout_function=self.registration_timeout,checker_func=self.is_registered, kwargs=None))
|
|
||||||
|
|
||||||
self.servicename = self.conf_manager.get("CONNECTION", "servicename")
|
|
||||||
|
|
||||||
self.host = hostname
|
|
||||||
self.user_name = username
|
|
||||||
self.user_password= password
|
|
||||||
|
|
||||||
if(username is None and password is None and self.host is None ):
|
|
||||||
|
|
||||||
self.host = self.conf_manager.get("CONNECTION", "host")
|
|
||||||
|
|
||||||
user_name= os.getlogin()
|
|
||||||
self.logger.debug('User : '+ str(user_name))
|
|
||||||
pout = Util.show_registration_message(user_name,'Makineyi Lider MYS sistemine kaydetmek için bilgileri ilgili alanlara giriniz. LÜTFEN DEVAM EDEN İŞLEMLERİ SONLANDIRDIĞINZA EMİN OLUNUZ !',
|
|
||||||
'LIDER MYS SISTEMINE KAYIT', self.host)
|
|
||||||
self.logger.debug('pout : ' + str(pout))
|
|
||||||
field_values = pout.split(' ')
|
|
||||||
user_registration_info = list(field_values)
|
|
||||||
|
|
||||||
if self.host == '':
|
|
||||||
self.host = user_registration_info[0]
|
|
||||||
self.user_name = user_registration_info[1]
|
|
||||||
self.user_password = user_registration_info[2]
|
|
||||||
self.directory_server = user_registration_info[3]
|
|
||||||
|
|
||||||
else:
|
|
||||||
self.user_name = user_registration_info[0]
|
|
||||||
self.user_password = user_registration_info[1]
|
|
||||||
self.directory_server = user_registration_info[2]
|
|
||||||
|
|
||||||
#anon_messenger = AnonymousMessenger(self.message_manager.registration_msg(user_name,user_password), self.host,self.servicename)
|
|
||||||
#anon_messenger.connect_to_server()
|
|
||||||
|
|
||||||
self.logger.debug('Requesting registration')
|
|
||||||
SetupTimer.start(Timer(System.Ahenk.registration_timeout(), timeout_function=self.registration_timeout,checker_func=self.is_registered, kwargs=None))
|
|
||||||
anon_messenger = AnonymousMessenger(self.message_manager.registration_msg(self.user_name,self.user_password,self.directory_server), self.host,self.servicename)
|
|
||||||
anon_messenger.connect_to_server()
|
|
||||||
|
|
||||||
def ldap_registration_request(self):
|
|
||||||
self.logger.info('Requesting LDAP registration')
|
|
||||||
self.messenger.send_Direct_message(self.message_manager.ldap_registration_msg())
|
|
||||||
|
|
||||||
def registration_success(self, reg_reply):
|
|
||||||
self.logger.info('Registration update starting')
|
|
||||||
try:
|
|
||||||
if self.directory_server == "LDAP":
|
|
||||||
dn = str(reg_reply['agentDn'])
|
|
||||||
self.logger.info('Current dn:' + dn)
|
|
||||||
self.logger.info('updating host name and service')
|
|
||||||
self.update_registration_attrs(dn)
|
|
||||||
self.install_and_config_ldap(reg_reply)
|
|
||||||
else: #
|
|
||||||
dn = str(reg_reply['agentDn'])
|
|
||||||
self.logger.info('Current dn:' + dn)
|
|
||||||
self.logger.info('updating host name and service')
|
|
||||||
self.update_registration_attrs(dn)
|
|
||||||
self.install_and_config_ad(reg_reply)
|
|
||||||
|
|
||||||
|
|
||||||
except Exception as e:
|
|
||||||
self.logger.error('Registration error. Error Message: {0}.'.format(str(e)))
|
|
||||||
print(e)
|
|
||||||
raise
|
|
||||||
|
|
||||||
def update_registration_attrs(self, dn=None):
|
|
||||||
self.logger.debug('Registration configuration is updating...')
|
|
||||||
self.db_service.update('registration', ['dn', 'registered'], [dn, 1], ' registered = 0')
|
|
||||||
|
|
||||||
if self.conf_manager.has_section('CONNECTION'):
|
|
||||||
self.conf_manager.set('CONNECTION', 'uid',
|
|
||||||
self.db_service.select_one_result('registration', 'jid', ' registered=1'))
|
|
||||||
self.conf_manager.set('CONNECTION', 'password',
|
|
||||||
self.db_service.select_one_result('registration', 'password', ' registered=1'))
|
|
||||||
|
|
||||||
if self.host and self.servicename:
|
|
||||||
self.conf_manager.set('CONNECTION', 'host', self.host)
|
|
||||||
self.conf_manager.set('CONNECTION', 'servicename', self.servicename)
|
|
||||||
|
|
||||||
# TODO get file path?
|
|
||||||
with open('/etc/ahenk/ahenk.conf', 'w') as configfile:
|
|
||||||
self.conf_manager.write(configfile)
|
|
||||||
self.logger.debug('Registration configuration file is updated')
|
|
||||||
|
|
||||||
def install_and_config_ldap(self, reg_reply):
|
|
||||||
self.logger.info('ldap install process starting')
|
|
||||||
server_address = str(reg_reply['ldapServer'])
|
|
||||||
dn = str(reg_reply['ldapBaseDn'])
|
|
||||||
version = str(reg_reply['ldapVersion'])
|
|
||||||
admin_dn = str(reg_reply['ldapUserDn']) # get user full dn from server.. password same
|
|
||||||
#admin_password = self.user_password # same user get from server
|
|
||||||
admin_password = self.db_service.select_one_result('registration', 'password', ' registered=1')
|
|
||||||
self.ldap_login.authenticate(server_address, dn, admin_dn, admin_password)
|
|
||||||
|
|
||||||
if server_address != '' and dn != '' and version != '' and admin_dn != '' and admin_password != '':
|
|
||||||
self.logger.info("SSSD configuration process starting....")
|
|
||||||
self.logger.info("SSSD configuration process starting....")
|
|
||||||
else :
|
|
||||||
raise Exception(
|
|
||||||
'LDAP Ayarları yapılırken hata oluştu. Lütfen ağ bağlantınızı kontrol ediniz. Deponuzun güncel olduğundan emin olunuz.')
|
|
||||||
|
|
||||||
def install_and_config_ad(self, reg_reply):
|
|
||||||
self.logger.info('AD install process starting')
|
|
||||||
domain_name = str(reg_reply['adDomainName'])
|
|
||||||
host_name = str(reg_reply['adHostName'])
|
|
||||||
ip_address = str(reg_reply['adIpAddress'])
|
|
||||||
password = str(reg_reply['adAdminPassword'])
|
|
||||||
|
|
||||||
if domain_name is None or host_name is None or ip_address is None or password is None :
|
|
||||||
self.logger.error("Registration params is null")
|
|
||||||
return
|
|
||||||
|
|
||||||
self.ad_login.authenticate(domain_name, host_name, ip_address, password)
|
|
||||||
|
|
||||||
def registration_error(self, reg_reply):
|
|
||||||
self.re_register()
|
|
||||||
|
|
||||||
def is_registered(self):
|
|
||||||
try:
|
|
||||||
if str(System.Ahenk.uid()):
|
|
||||||
return True
|
|
||||||
else:
|
|
||||||
return False
|
|
||||||
except:
|
|
||||||
return False
|
|
||||||
|
|
||||||
def is_ldap_registered(self):
|
|
||||||
dn = self.db_service.select_one_result('registration', 'dn', 'registered = 1')
|
|
||||||
if dn is not None and dn != '':
|
|
||||||
return True
|
|
||||||
else:
|
|
||||||
return False
|
|
||||||
|
|
||||||
def register(self, uuid_depend_mac=False):
|
|
||||||
cols = ['jid', 'password', 'registered', 'params', 'timestamp']
|
|
||||||
vals = [str(System.Os.hostname()), str(self.generate_uuid(uuid_depend_mac)), 0,
|
|
||||||
str(self.get_registration_params()), str(datetime.datetime.now().strftime("%d-%m-%Y %I:%M"))]
|
|
||||||
|
|
||||||
self.db_service.delete('registration', ' 1==1 ')
|
|
||||||
self.db_service.update('registration', cols, vals)
|
|
||||||
self.logger.debug('Registration parameters were created')
|
|
||||||
|
|
||||||
def get_registration_params(self):
|
|
||||||
parts = []
|
|
||||||
for part in System.Hardware.Disk.partitions():
|
|
||||||
parts.append(part[0])
|
|
||||||
|
|
||||||
params = {
|
|
||||||
'ipAddresses': str(System.Hardware.Network.ip_addresses()).replace('[', '').replace(']', ''),
|
|
||||||
'macAddresses': str(System.Hardware.Network.mac_addresses()).replace('[', '').replace(']', ''),
|
|
||||||
'hostname': System.Os.hostname(),
|
|
||||||
'os.name': System.Os.name(),
|
|
||||||
'os.version': System.Os.version(),
|
|
||||||
'os.kernel': System.Os.kernel_release(),
|
|
||||||
'os.distributionName': System.Os.distribution_name(),
|
|
||||||
'os.distributionId': System.Os.distribution_id(),
|
|
||||||
'os.distributionVersion': System.Os.distribution_version(),
|
|
||||||
'os.architecture': System.Os.architecture(),
|
|
||||||
'hardware.cpu.architecture': System.Hardware.Cpu.architecture(),
|
|
||||||
'hardware.cpu.logicalCoreCount': System.Hardware.Cpu.logical_core_count(),
|
|
||||||
'hardware.cpu.physicalCoreCount': System.Hardware.Cpu.physical_core_count(),
|
|
||||||
'hardware.disk.total': System.Hardware.Disk.total(),
|
|
||||||
'hardware.disk.used': System.Hardware.Disk.used(),
|
|
||||||
'hardware.disk.free': System.Hardware.Disk.free(),
|
|
||||||
'hardware.disk.partitions': str(parts),
|
|
||||||
'hardware.monitors': str(System.Hardware.monitors()),
|
|
||||||
'hardware.screens': str(System.Hardware.screens()),
|
|
||||||
'hardware.usbDevices': str(System.Hardware.usb_devices()),
|
|
||||||
'hardware.printers': str(System.Hardware.printers()),
|
|
||||||
'hardware.systemDefinitions': str(System.Hardware.system_definitions()),
|
|
||||||
'hardware.model.version': str(System.Hardware.machine_model()),
|
|
||||||
'hardware.memory.total': System.Hardware.Memory.total(),
|
|
||||||
'hardware.network.ipAddresses': str(System.Hardware.Network.ip_addresses()),
|
|
||||||
'sessions.userNames': str(System.Sessions.user_name()),
|
|
||||||
'bios.releaseDate': System.BIOS.release_date()[1].replace('\n', '') if System.BIOS.release_date()[
|
|
||||||
0] == 0 else 'n/a',
|
|
||||||
'bios.version': System.BIOS.version()[1].replace('\n', '') if System.BIOS.version()[0] == 0 else 'n/a',
|
|
||||||
'bios.vendor': System.BIOS.vendor()[1].replace('\n', '') if System.BIOS.vendor()[0] == 0 else 'n/a',
|
|
||||||
'hardware.baseboard.manufacturer': System.Hardware.BaseBoard.manufacturer()[1].replace('\n', '') if
|
|
||||||
System.Hardware.BaseBoard.manufacturer()[0] == 0 else 'n/a',
|
|
||||||
'hardware.baseboard.version': System.Hardware.BaseBoard.version()[1].replace('\n', '') if
|
|
||||||
System.Hardware.BaseBoard.version()[0] == 0 else 'n/a',
|
|
||||||
'hardware.baseboard.assetTag': System.Hardware.BaseBoard.asset_tag()[1].replace('\n', '') if
|
|
||||||
System.Hardware.BaseBoard.asset_tag()[0] == 0 else 'n/a',
|
|
||||||
'hardware.baseboard.productName': System.Hardware.BaseBoard.product_name()[1].replace('\n', '') if
|
|
||||||
System.Hardware.BaseBoard.product_name()[0] == 0 else 'n/a',
|
|
||||||
'hardware.baseboard.serialNumber': System.Hardware.BaseBoard.serial_number()[1].replace('\n', '') if
|
|
||||||
System.Hardware.BaseBoard.serial_number()[0] == 0 else 'n/a',
|
|
||||||
}
|
|
||||||
|
|
||||||
return json.dumps(params)
|
|
||||||
|
|
||||||
def unregister(self):
|
|
||||||
self.logger.debug('Ahenk is unregistering...')
|
|
||||||
self.db_service.delete('registration', ' 1==1 ')
|
|
||||||
self.logger.debug('Ahenk is unregistered')
|
|
||||||
|
|
||||||
def re_register(self):
|
|
||||||
self.logger.debug('Reregistrating...')
|
|
||||||
self.unregister()
|
|
||||||
self.register(False)
|
|
||||||
|
|
||||||
def generate_uuid(self, depend_mac=True):
|
|
||||||
if depend_mac is False:
|
|
||||||
self.logger.debug('uuid creating randomly')
|
|
||||||
return uuid.uuid4() # make a random UUID
|
|
||||||
else:
|
|
||||||
self.logger.debug('uuid creating according to mac address')
|
|
||||||
return uuid.uuid3(uuid.NAMESPACE_DNS,
|
|
||||||
str(get_mac())) # make a UUID using an MD5 hash of a namespace UUID and a mac address
|
|
||||||
|
|
||||||
def generate_password(self):
|
|
||||||
return uuid.uuid4()
|
|
||||||
|
|
||||||
def registration_timeout(self):
|
|
||||||
self.logger.error(
|
|
||||||
'Could not reach registration response from Lider. Be sure XMPP server is reachable and it supports anonymous message, Lider is running properly '
|
|
||||||
'and it is connected to XMPP server! Check your Ahenk configuration file (/etc/ahenk/ahenk.conf)')
|
|
||||||
self.logger.error('Ahenk is shutting down...')
|
|
||||||
print('Ahenk is shutting down...')
|
|
||||||
Util.show_message(os.getlogin(),':0',"Lider MYS sistemine ulaşılamadı. Lütfen sunucu adresini kontrol ediniz....","HATA")
|
|
||||||
System.Process.kill_by_pid(int(System.Ahenk.get_pid_number()))
|
|
||||||
|
|
||||||
def purge_and_unregister(self):
|
|
||||||
try:
|
|
||||||
self.logger.info('Ahenk conf cleaned')
|
|
||||||
self.logger.info('Ahenk conf cleaning from db')
|
|
||||||
self.unregister()
|
|
||||||
self.ldap_login_cancel.cancel();
|
|
||||||
self.logger.info('Cleaning ahenk conf..')
|
|
||||||
self.clean()
|
|
||||||
self.logger.info('Ahenk conf cleaned from db')
|
|
||||||
self.logger.info('Enable Users')
|
|
||||||
self.enable_local_users()
|
|
||||||
Util.shutdown()
|
|
||||||
except Exception as e:
|
|
||||||
self.logger.error("Error while running purge_and_unregister process.. Error Message " + str(e))
|
|
||||||
#System.Process.kill_by_pid(int(System.Ahenk.get_pid_number()))
|
|
||||||
#sys.exit(2)
|
|
||||||
|
|
||||||
def change_configs_after_purge(self):
|
|
||||||
# pattern for clearing file data from spaces, tabs and newlines
|
|
||||||
pattern = re.compile(r'\s+')
|
|
||||||
|
|
||||||
ldap_back_up_file_path = "/usr/share/ahenk/pam_scripts_original/ldap"
|
|
||||||
ldap_original_file_path = "/usr/share/pam-configs/ldap"
|
|
||||||
|
|
||||||
pam_script_back_up_file_path = "/usr/share/ahenk/pam_scripts_original/pam_script"
|
|
||||||
pam_script_original_file_path = "/usr/share/pam-configs/pam_script"
|
|
||||||
|
|
||||||
if self.util.is_exist(ldap_back_up_file_path):
|
|
||||||
self.logger.info("Replacing {0} with {1}".format(ldap_original_file_path, ldap_back_up_file_path))
|
|
||||||
self.util.copy_file(ldap_back_up_file_path, ldap_original_file_path)
|
|
||||||
self.logger.info("Deleting {0}".format(ldap_back_up_file_path))
|
|
||||||
self.util.delete_file(ldap_back_up_file_path)
|
|
||||||
|
|
||||||
if self.util.is_exist(pam_script_back_up_file_path):
|
|
||||||
self.logger.info(
|
|
||||||
"Replacing {0} with {1}".format(pam_script_original_file_path, pam_script_back_up_file_path))
|
|
||||||
self.util.copy_file(pam_script_back_up_file_path, pam_script_original_file_path)
|
|
||||||
self.logger.info("Deleting {0}".format(pam_script_back_up_file_path))
|
|
||||||
self.util.delete_file(pam_script_back_up_file_path)
|
|
||||||
|
|
||||||
(result_code, p_out, p_err) = self.util.execute("DEBIAN_FRONTEND=noninteractive pam-auth-update --package")
|
|
||||||
if result_code == 0:
|
|
||||||
self.logger.info("'DEBIAN_FRONTEND=noninteractive pam-auth-update --package' has run successfully")
|
|
||||||
else:
|
|
||||||
self.logger.error(
|
|
||||||
"'DEBIAN_FRONTEND=noninteractive pam-auth-update --package' could not run successfully: " + p_err)
|
|
||||||
|
|
||||||
# Configure nsswitch.conf
|
|
||||||
file_ns_switch = open("/etc/nsswitch.conf", 'r')
|
|
||||||
file_data = file_ns_switch.read()
|
|
||||||
|
|
||||||
# cleared file data from spaces, tabs and newlines
|
|
||||||
text = pattern.sub('', file_data)
|
|
||||||
|
|
||||||
did_configuration_change = False
|
|
||||||
if "passwd:compatldap[NOTFOUND=return]db" in text:
|
|
||||||
file_data = file_data.replace("passwd: compat ldap [NOTFOUND=return] db", "passwd: compat")
|
|
||||||
did_configuration_change = True
|
|
||||||
|
|
||||||
if "group:compatldap[NOTFOUND=return]db" in text:
|
|
||||||
file_data = file_data.replace("group: compat ldap [NOTFOUND=return] db", "group: compat")
|
|
||||||
did_configuration_change = True
|
|
||||||
|
|
||||||
if "shadow:compatldap" in text:
|
|
||||||
file_data = file_data.replace("shadow: compat ldap", "shadow: compat")
|
|
||||||
did_configuration_change = True
|
|
||||||
|
|
||||||
if "#gshadow:files" in text:
|
|
||||||
file_data = file_data.replace("#gshadow: files", "gshadow: files")
|
|
||||||
did_configuration_change = True
|
|
||||||
|
|
||||||
if did_configuration_change:
|
|
||||||
self.logger.info("nsswitch.conf configuration has been configured")
|
|
||||||
else:
|
|
||||||
self.logger.info("nsswitch.conf has already been configured")
|
|
||||||
|
|
||||||
file_ns_switch.close()
|
|
||||||
file_ns_switch = open("/etc/nsswitch.conf", 'w')
|
|
||||||
file_ns_switch.write(file_data)
|
|
||||||
file_ns_switch.close()
|
|
||||||
|
|
||||||
# Configure ldap-cache
|
|
||||||
nss_update_cron_job_file_path = "/etc/cron.daily/nss-updatedb"
|
|
||||||
if self.util.is_exist(nss_update_cron_job_file_path):
|
|
||||||
self.util.delete_file(nss_update_cron_job_file_path)
|
|
||||||
self.logger.info("{0} is deleted.".format(nss_update_cron_job_file_path))
|
|
||||||
|
|
||||||
# Configure lightdm.service
|
|
||||||
pardus_xfce_path = "/usr/share/lightdm/lightdm.conf.d/99-pardus-xfce.conf"
|
|
||||||
if self.util.is_exist(pardus_xfce_path):
|
|
||||||
self.logger.info("99-pardus-xfce.conf exists. Deleting file.")
|
|
||||||
self.util.delete_file(pardus_xfce_path)
|
|
||||||
|
|
||||||
self.util.execute("systemctl restart nscd.service")
|
|
||||||
self.logger.info("Operation finished")
|
|
||||||
|
|
||||||
def clean(self):
|
|
||||||
print('Ahenk cleaning..')
|
|
||||||
import configparser
|
|
||||||
try:
|
|
||||||
config = configparser.ConfigParser()
|
|
||||||
config._interpolation = configparser.ExtendedInterpolation()
|
|
||||||
config.read(System.Ahenk.config_path())
|
|
||||||
db_path = config.get('BASE', 'dbPath')
|
|
||||||
|
|
||||||
if Util.is_exist(System.Ahenk.fifo_file()):
|
|
||||||
Util.delete_file(System.Ahenk.fifo_file())
|
|
||||||
|
|
||||||
if Util.is_exist(db_path):
|
|
||||||
Util.delete_file(db_path)
|
|
||||||
|
|
||||||
if Util.is_exist(System.Ahenk.pid_path()):
|
|
||||||
Util.delete_file(System.Ahenk.pid_path())
|
|
||||||
|
|
||||||
config.set('CONNECTION', 'uid', '')
|
|
||||||
config.set('CONNECTION', 'password', '')
|
|
||||||
config.set('MACHINE', 'user_disabled', '0')
|
|
||||||
|
|
||||||
with open(System.Ahenk.config_path(), 'w') as file:
|
|
||||||
config.write(file)
|
|
||||||
file.close()
|
|
||||||
print('Ahenk cleaned.')
|
|
||||||
except Exception as e:
|
|
||||||
self.logger.error("Error while running clean command. Error Message " + str(e))
|
|
||||||
print('Error while running clean command. Error Message {0}'.format(str(e)))
|
|
||||||
|
|
||||||
def enable_local_users(self):
|
|
||||||
passwd_cmd = 'passwd -u {}'
|
|
||||||
change_home = 'usermod -m -d {0} {1}'
|
|
||||||
change_username = 'usermod -l {0} {1}'
|
|
||||||
content = self.util.read_file('/etc/passwd')
|
|
||||||
for p in pwd.getpwall():
|
|
||||||
if not sysx.shell_is_interactive(p.pw_shell):
|
|
||||||
continue
|
|
||||||
if p.pw_uid == 0:
|
|
||||||
continue
|
|
||||||
if p.pw_name in content:
|
|
||||||
new_home_dir = p.pw_dir.rstrip('-local/') + '/'
|
|
||||||
new_username = p.pw_name.rstrip('-local')
|
|
||||||
self.util.execute(passwd_cmd.format(p.pw_name))
|
|
||||||
self.util.execute(change_username.format(new_username, p.pw_name))
|
|
||||||
self.util.execute(change_home.format(new_home_dir, new_username))
|
|
||||||
self.logger.debug("User: '{0}' will be enabled and changed username and home directory of username".format(p.pw_name))
|
|
||||||
|
|
||||||
|
|
||||||
def disable_local_users(self):
|
|
||||||
passwd_cmd = 'passwd -l {}'
|
|
||||||
change_home = 'usermod -m -d {0} {1}'
|
|
||||||
change_username = 'usermod -l {0} {1}'
|
|
||||||
content = Util.read_file('/etc/passwd')
|
|
||||||
kill_all_process = 'killall -KILL -u {}'
|
|
||||||
change_permisson = "chmod -R 700 {}"
|
|
||||||
|
|
||||||
add_user_conf_file = "/etc/adduser.conf"
|
|
||||||
file_dir_mode = open(add_user_conf_file, 'r')
|
|
||||||
file_data = file_dir_mode.read()
|
|
||||||
file_data = file_data.replace("DIR_MODE=0755", "DIR_MODE=0700")
|
|
||||||
file_dir_mode.close()
|
|
||||||
|
|
||||||
file_dir_mode = open(add_user_conf_file, 'w')
|
|
||||||
file_dir_mode.write(file_data)
|
|
||||||
file_dir_mode.close()
|
|
||||||
|
|
||||||
self.logger.info("add user mode changed to 0700 in file {}".format(add_user_conf_file))
|
|
||||||
|
|
||||||
for p in pwd.getpwall():
|
|
||||||
self.logger.info("User: '{0}' will be disabled and changed username and home directory of username".format(p.pw_name))
|
|
||||||
if not sysx.shell_is_interactive(p.pw_shell):
|
|
||||||
continue
|
|
||||||
if p.pw_uid == 0:
|
|
||||||
continue
|
|
||||||
if p.pw_name in content:
|
|
||||||
new_home_dir = p.pw_dir.rstrip('/') + '-local/'
|
|
||||||
new_username = p.pw_name+'-local'
|
|
||||||
Util.execute(kill_all_process.format(p.pw_name))
|
|
||||||
Util.execute(passwd_cmd.format(p.pw_name))
|
|
||||||
Util.execute(change_username.format(new_username, p.pw_name))
|
|
||||||
Util.execute(change_home.format(new_home_dir, new_username))
|
|
||||||
Util.execute(change_permisson.format(new_home_dir))
|
|
Loading…
Reference in a new issue