phi/src/phi/ldap/user.py

from ldap3 import ALL_ATTRIBUTES
from phi.ldap.utils import get_response, make_user_dict, add_entry, delete_entry
from phi.logging import get_logger

log = get_logger(__name__)


def get_user_by_uid(client, uid):
    log.info("Searching entry with identifier: {}".format(uid))

    filter_ = "({}={})".format('uid', uid)
    log.debug("Search filter: {}".format(filter_))

    response_id = client.connection.search(
        client.base_dn, filter_,
        search_scope='SUBTREE',
        attributes=[ALL_ATTRIBUTES]
    )

    response = get_response(client, response_id)

    if not response:
        return None

    if len(response) > 1:
        log.error("Looking for exactly one result but server gave {}. "
                  "Taking the first and ignoring the rest."
                  .format(len(response)))

    return make_user_dict(client, response[0])


def get_all_users(client):
    log.info("Searching all the users")

    dn = 'ou=Hackers,{}'.format(client.base_dn)
    log.debug("Search dn: {}".format(dn))

    response_id = client.connection.search(
        dn, '(objectclass=person)',
        search_scope='SUBTREE',
        attributes=[ALL_ATTRIBUTES]
    )

    response = get_response(client, response_id)

    users = [make_user_dict(client, entry) for entry in response]
    return users


def add_user(client, uid, cn, sn, mail, password):
    dn = 'uid={},ou=Hackers,{}'.format(uid, client.base_dn)

    attributes={
        'objectClass': [
            'inetOrgPerson',
            'organizationalPerson',
            'person', 'top'
            ],
        'cn': cn,
        'sn': sn,
        'mail': mail,
        'userPassword': password  # TODO: use hashed password
    }

    add_entry(client, dn, attributes)


def delete_user(client, user):
    delete_entry(client, user['dn'])


def delete_user_by_uid(client, uid):
    dn = 'uid={},ou=Hackers,{}'.format(uid, client.base_dn)
    delete_entry(client, dn)
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`from ldap3 import ALL_ATTRIBUTES`
			`from phi.ldap.utils import get_response, make_user_dict, add_entry, delete_entry`
			`from phi.logging import get_logger`
Add API for retrieving user info 2017-12-21 13:44:54 +01:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`log = get_logger(__name__)`
Add API for retrieving user info 2017-12-21 13:44:54 +01:00
Remove attribute mapping 2020-09-30 16:38:31 +02:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`def get_user_by_uid(client, uid):`
			`log.info("Searching entry with identifier: {}".format(uid))`
Search by organizational unit 2020-09-30 18:42:28 +02:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`filter_ = "({}={})".format('uid', uid)`
			`log.debug("Search filter: {}".format(filter_))`
Search by organizational unit 2020-09-30 18:42:28 +02:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`response_id = client.connection.search(`
			`client.base_dn, filter_,`
			`search_scope='SUBTREE',`
			`attributes=[ALL_ATTRIBUTES]`
			`)`
Search by organizational unit 2020-09-30 18:42:28 +02:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`response = get_response(client, response_id)`
Add API for retrieving user info 2017-12-21 13:44:54 +01:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`if not response:`
Add API for retrieving user info 2017-12-21 13:44:54 +01:00			`return None`

Users and group dictionaries 2020-10-05 14:51:16 +02:00			`if len(response) > 1:`
			`log.error("Looking for exactly one result but server gave {}. "`
			`"Taking the first and ignoring the rest."`
			`.format(len(response)))`

			`return make_user_dict(client, response[0])`

Add API for retrieving user info 2017-12-21 13:44:54 +01:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`def get_all_users(client):`
			`log.info("Searching all the users")`
Add API for retrieving user info 2017-12-21 13:44:54 +01:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`dn = 'ou=Hackers,{}'.format(client.base_dn)`
			`log.debug("Search dn: {}".format(dn))`
Search by organizational unit 2020-09-30 18:42:28 +02:00
Users and group dictionaries 2020-10-05 14:51:16 +02:00			`response_id = client.connection.search(`
			`dn, '(objectclass=person)',`
			`search_scope='SUBTREE',`
			`attributes=[ALL_ATTRIBUTES]`
			`)`

			`response = get_response(client, response_id)`

			`users = [make_user_dict(client, entry) for entry in response]`
Search by organizational unit 2020-09-30 18:42:28 +02:00			`return users`
Clean abstraction 2020-10-04 17:45:09 +02:00

Clean user and group dictionaries 2020-10-10 12:54:28 +02:00			`def add_user(client, uid, cn, sn, mail, password):`
Clean abstraction 2020-10-04 17:45:09 +02:00			`dn = 'uid={},ou=Hackers,{}'.format(uid, client.base_dn)`

			`attributes={`
			`'objectClass': [`
			`'inetOrgPerson',`
			`'organizationalPerson',`
			`'person', 'top'`
			`],`
			`'cn': cn,`
			`'sn': sn,`
Clean user and group dictionaries 2020-10-10 12:54:28 +02:00			`'mail': mail,`
			`'userPassword': password # TODO: use hashed password`
Clean abstraction 2020-10-04 17:45:09 +02:00			`}`

			`add_entry(client, dn, attributes)`


Users and group dictionaries 2020-10-05 14:51:16 +02:00			`def delete_user(client, user):`
			`delete_entry(client, user['dn'])`


			`def delete_user_by_uid(client, uid):`
Clean abstraction 2020-10-04 17:45:09 +02:00			`dn = 'uid={},ou=Hackers,{}'.format(uid, client.base_dn)`
			`delete_entry(client, dn)`