def run(self):
# Return All the users in the User table
self.log = Logger('DashboardEnrollmentStatusGetHandlerThread')
# TAG = 'run'
# ToDo : replace this with dynamic company id from cookies.
company_id = self.company_id
return_dict = {}
user = UserDBHelper()
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
violation_count = violation.get_violation_count(company_id=company_id)
not_enrolled_count = enrollment.get_enrollment_status_count(
company_id=company_id, status=False)
enrolled_count = enrollment.get_enrollment_status_count(
company_id=company_id, status=True)
print "\n printing enrolled count", not_enrolled_count
user_count = user.get_users_count(company_id=company_id)
user_info_dict = {}
user_info_dict['Violations'] = violation_count
user_info_dict['Not Enrolled'] = not_enrolled_count
user_info_dict['Enrolled'] = enrolled_count
user_info_dict['Total Users'] = user_count
return_dict['UserInformation'] = user_info_dict
opJson = json.dumps({'message': 'Everything seems to be working ...',
'data': return_dict, 'pass': True})
#self.request.add_header('Access-Control-Allow-Origin', '*')
self.request.set_header('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def check_authentication(self,email,passcode):
TAG='check_authentication'
if email is not None and passcode is not None:
from db.helpers.user import UserDBHelper
user_helper = UserDBHelper()
users = user_helper.get_user_with_email(email)
if type(users)==dict:
user = users
from db.helpers.enrollment import EnrollmentDBHelper
enrollment_helper = EnrollmentDBHelper()
enrollment_filter = {C.ENROLLMENT_TABLE_USER:user['id']}
enrollments= enrollment_helper.get_enrollments(
enrollment_filter, status=False)
if enrollments is not None:
for enrollment in enrollments:
if str(enrollment[C.ENROLLMENT_TABLE_PASSWORD]) == str(passcode):
self.log.i(TAG, 'Passcodes match')
return enrollment
else:
self.log.i(TAG, 'Invalid passcode email combination')
return None
else:
self.log.e(TAG, 'No entry found in user table corresponding to email '+email)
return None
else:
self.log.e(TAG, 'No user with email address '+email+ ' found')
return None
else:
return None
def check_authentication(self, email, passcode):
TAG = 'check_authentication'
if email is not None and passcode is not None:
from db.helpers.user import UserDBHelper
user_helper = UserDBHelper()
users = user_helper.get_user_with_email(email)
if isinstance(users, dict):
user = users
from db.helpers.enrollment import EnrollmentDBHelper
enrollment_helper = EnrollmentDBHelper()
enrollment_filter = {C.ENROLLMENT_TABLE_USER: user['id']}
enrollments = enrollment_helper.get_enrollments(
enrollment_filter, status=False)
if enrollments is not None:
for enrollment in enrollments:
if str(enrollment[C.ENROLLMENT_TABLE_PASSWORD]) == str(
passcode):
self.log.i(TAG, 'Passcodes match')
return enrollment
else:
self.log.i(TAG,
'Invalid passcode email combination')
return None
else:
self.log.e(TAG,
'No entry found in user table corresponding \
to email ' + email)
return None
else:
self.log.e(TAG, 'No user with email address ' + email + '\
found')
return None
else:
return None
def run(self):
# Return All the users in the User table
log = Logger('UserDeleteHandlerThread')
tag = 'DELETE'
if self.data is None:
log.e(tag, 'No user registered in table for this user_id')
opJson = json.dumps(
{'pass': False,
'message': 'No user registered in table for this user_id'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
user = UserDBHelper()
device = DeviceDBHelper()
enrollment = EnrollmentDBHelper()
print 'print data here \n ... \n ', self.data
user_list = user.get_user(str(self.data), company_id=self.company_id)
if user_list is None:
log.e(tag, 'No user registered in table for this user_id')
opJson = json.dumps(
{'pass': False,
'message': 'No user registered in table for this user_id'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
user_deleted = user.delete_user(str(user_list.get('id')))
if not user_deleted:
log.e(tag, 'Not able to delete from user table')
opJson = json.dumps(
{'pass': False,
'message': 'Not able to delete from user table'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
devices = device.get_devices_of_user(str(self.data))
if devices is not None and len(devices) > 0:
for each_device in devices:
device_id = each_device.get('id')
device.delete_device(str(device_id))
enrollment_list = enrollment.get_enrollments({
'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null", 'is_enrolled': False})
log.i(tag, 'User delelted')
opJson = json.dumps({'pass': True,
'message': 'User Successfully deleted'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
# Return All the users in the User table
self.log = Logger('DashboardEnrollmentStatusGetHandlerThread')
# TAG = 'run'
# ToDo : replace this with dynamic company id from cookies.
company_id = self.company_id
return_dict = {}
user = UserDBHelper()
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
violation_count = violation.get_violation_count(company_id=company_id)
not_enrolled_count = enrollment.get_enrollment_status_count(
company_id=company_id, status=False)
enrolled_count = enrollment.get_enrollment_status_count(
company_id=company_id, status=True)
print "\n printing enrolled count", not_enrolled_count
user_count = user.get_users_count(company_id=company_id)
user_info_dict = {}
user_info_dict['Violations'] = violation_count
user_info_dict['Not Enrolled'] = not_enrolled_count
user_info_dict['Enrolled'] = enrolled_count
user_info_dict['Total Users'] = user_count
return_dict['UserInformation'] = user_info_dict
opJson = json.dumps({
'message': 'Everything seems to be working ...',
'data': return_dict,
'pass': True
})
#self.request.add_header('Access-Control-Allow-Origin', '*')
self.request.set_header('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
log = Logger('PassVerifyerThread')
tag = 'run'
print 'In PassVerify\'s POST'
loader = Loader("/opt/toppatch/mv/media/app/")
passwd = str(self.request.get_argument('password', None))
enrollment_id = self.request.get_argument('hidden', None)
log.e(tag, 'enrollment id : ' + enrollment_id)
### check type of enrollment id ###
try:
enrollment_id = int(enrollment_id)
invalid_enrollment_id = False
enrollment_id = str(enrollment_id)
except ValueError:
invalid_enrollment_id = True
# No enrollment ID sent
if enrollment_id is None or invalid_enrollment_id:
# print 'Some Error in enrollID not present corresponding\
# to the password or of invalid format'
log.e(tag, 'Some Error in program deviceID not present \
corresponding to the password or of invalid format')
self.request.write(loader.load("error_invalid.html").generate(
message='Invalid link, Mr. intruder. :D ;)',
status='alert-danger'))
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
# Password not found
elif passwd is None:
redirect_url = '''
/enroll/{0}?err=Try+again+with+correct+password'''.format(enrollment_id)
self.request.redirect(redirect_url)
log.i(tag, 'password is incorrect')
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
# Enrollent ID and Password found
else:
enrollment = EnrollmentDBHelper()
ret_dict = enrollment.get_enrollment(enrollment_id)
# print ret_dict
ret = None
if ret_dict is not None:
ret = str(ret_dict[c.ENROLLMENT_TABLE_PASSWORD])
else:
log.e(tag, 'Enrollment password cannot be reterived')
if ret is None:
log.e(
tag,
'DB did not sent the password from Enrollment table')
self.request.write(loader.load("error_invalid.html").generate(
message='Invalid link, Mr. intruder. :D ;)',
status='alert-danger'))
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
# Password matched
if ret == passwd:
print 'download the profile'
# Now find out the browser details
# Create the profile to download
thread = CreateProfileThread(enrollment_id)
thread.start()
thread.join()
filename = enrollment_id + '.mobileconfig'
signed_filename = 'mdm_' + enrollment_id + '.mobileconfig'
log.i(tag, 'Downloading the iOS profile')
log.i(tag, 'Signing the iOS profile')
sign_command = """
openssl smime \
-sign \
-signer /etc/ssl/star_toppatch_com.pem \
-inkey /etc/ssl/star_toppatch_com.key \
-certfile /opt/toppatch/assets/ios/DigiCertPersonal_chain.pem \
-nodetach \
-outform der \
-in {0} \
-out {1}
""".format(filename, signed_filename)
os.system(sign_command)
f = file(signed_filename, 'rb')
self.request.set_header(
'Content-Type',
'application/x-apple-aspen-config; chatset=utf-8')
self.request.set_header(
'Content-Disposition',
'attachment; filename=' +
filename +
'')
self.request.write(f.read())
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
# Delete the file from server after download 'Delay can be
# introduced'.
os.remove(filename)
os.remove(signed_filename)
else:
redirect_url = '''
/enroll/{0}?err=Try+again+with+correct+password'''.format(enrollment_id)
self.request.redirect(redirect_url)
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
log.i(tag, 'Incorrect Password for enrollment')
def run(self):
self.log = Logger('UpdateTokenThread')
TAG = 'run'
print 'In UpdateTokenThread\'s POST'
# Get the parameters which are to be used
password = str(self.request.get_argument('password', None))
user_email = str(self.request.get_argument('email', None))
token = str(self.request.get_argument('token', None))
print password
print user_email
print token
token = token.replace('<', '')
token = token.replace('>', '')
token = token.replace(' ', '')
result_dict = {}
user = UserDBHelper()
user_detail_dict = user.get_user_with_email(user_email)
print 'user_dict = ' + str(user_detail_dict)
if user_detail_dict is None:
self.log.e(
TAG,
'No user corresponding to the email = ' +
str(user_email))
result_dict['pass'] = False
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
company = CompanyDBHelper()
user_id = str(user_detail_dict[C.USER_TABLE_ID])
user_name = str(user_detail_dict[C.USER_TABLE_NAME])
company_id = str(user_detail_dict[C.USER_TABLE_COMPANY])
company_detail_dict = company.get_company(company_id)
company_name = str(company_detail_dict[C.COMPANY_TABLE_NAME])
enrollment = EnrollmentDBHelper()
filter_dict = {
C.ENROLLMENT_TABLE_USER: str(user_id),
C.ENROLLMENT_TABLE_PASSWORD: str(password)
}
enrollment_list = enrollment.get_enrollments(filter_dict)
print 'enrollment_list = ' + str(enrollment_list)
if enrollment_list is None:
self.log.e(
TAG,
'No enrollment corresponding to the email = ' +
str(user_email) +
' and password = '******'pass'] = False
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_id = enrollment_list[0][C.ENROLLMENT_TABLE_DEVICE]
user_data = {'name': user_name, 'company': company_name}
result_dict['data'] = user_data
if device_id is None:
self.log.e(TAG, 'No device ID in enrollment table\
corresponding to the email = ' +
str(user_email) + ' and password = '******'pass'] = True
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
else:
device_detail = DeviceDetailsDBHelper()
updated = device_detail.update_device_details(
str(device_id), {
C.DEVICE_DETAILS_TABLE_MESSAGE_TOKEN: str(token)})
if not updated:
self.log.e(
TAG,
'Not able to update Message Token in \
Device Details Table DeviceID = ' + str(device_id))
result_dict['pass'] = False
result_dict['is_enrolled'] = True
opJson = json.dumps(result_dict)
self.request.set_header(
'Content-Type',
'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
else:
self.log.i(
TAG,
'Device Messge Token updated successfully \
DeviceID = ' + str(device_id))
result_dict['pass'] = True
result_dict['is_enrolled'] = True
opJson = json.dumps(result_dict)
self.request.set_header(
'Content-Type',
'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
def parse(self, excel_path, company, company_name=None, callback=None,
user_added_callback=None):
COMPANY = company
company_name = company_name
book = open_workbook(filename=excel_path)
sheet = book.sheet_by_index(0)
users = list()
for row_index in range(sheet.nrows):
user = dict()
for col_index in range(sheet.ncols):
cell = sheet.cell(row_index, col_index).value
if col_index == 0:
user[C.USER_TABLE_EMAIL] = cell
elif col_index == 1:
user[C.USER_TABLE_NAME] = cell
elif col_index == 2:
user[C.USER_TABLE_TEAM] = cell
elif col_index == 3:
user[C.USER_TABLE_ROLE] = cell
users.append(user)
roles_list = list()
teams_list = list()
for user in users:
if C.USER_TABLE_ROLE in user:
roles_list.append(user[C.USER_TABLE_ROLE])
if C.USER_TABLE_TEAM in user:
teams_list.append(user[C.USER_TABLE_TEAM])
# get a set to get the unique elements.
roles = dict()
teams = dict()
roles_helper = RoleDBHelper()
teams_helper = TeamDBHelper()
users_helper = UserDBHelper()
enrollment_helper = EnrollmentDBHelper()
for role_name in set(roles_list):
role = dict()
role[C.ROLE_TABLE_COMPANY] = COMPANY
role[C.ROLE_TABLE_NAME] = role_name
roles[role_name] = roles_helper.add_role(role)
for team_name in set(teams_list):
team = dict()
team[C.TEAM_TABLE_COMPANY] = COMPANY
team[C.TEAM_TABLE_NAME] = team_name
team[C.TEAM_TABLE_DELETED] = False
teams[team_name] = teams_helper.add_team(team)
# Now we have id for all teams and roles... Insert the users now.
for user in users:
user_obj = dict()
user_obj[C.USER_TABLE_COMPANY] = COMPANY
user_obj[C.USER_TABLE_EMAIL] = user[C.USER_TABLE_EMAIL]
user_obj[C.USER_TABLE_NAME] = user[C.USER_TABLE_NAME]
user_obj[C.USER_TABLE_ROLE] = roles[user[C.USER_TABLE_ROLE]]
user_obj[C.USER_TABLE_TEAM] = teams[user[C.USER_TABLE_TEAM]]
user['id'] = users_helper.add_user_if_not_exists(user_obj)[0]
if user_added_callback is not None:
user_added_callback(user_obj)
for user in users:
enrollment = dict()
enrollment[C.ENROLLMENT_TABLE_USER] = user['id']
enrollment[C.ENROLLMENT_TABLE_PASSWORD] = generate_password()
enrollment[C.ENROLLMENT_TABLE_IS_ENROLLED] = False
user['passcode'] = enrollment[C.ENROLLMENT_TABLE_PASSWORD]
print 'adding enrollment ', enrollment
user['enrollment_id'] = enrollment_helper.add_enrollment(
enrollment)
user['company_name'] = company_name
if callback is not None:
callback(users)
return users
def run(self):
# Find all the POST arguments required
company_id = self.company_id
# company_name = str(self.company_name)
loader = Loader("/opt/toppatch/mv/media/app/")
# thread1 = {}
log = Logger('EnrollDevice')
tag = 'POST'
request_body = json.loads(self.request.request.body)
try:
self.user_email = str(request_body.get('user_email', None))
self.user_name = str(request_body.get('user_name', None))
self.team_id = str(request_body.get('team_id', None))
self.role_id = str(request_body.get('role_id', None))
self.company_id = str(company_id)
except:
self.request.write('Some arguments are not supplied')
opJson = json.dumps({
'pass': False,
'user_name': None,
'link': None,
'password': None,
'error': 'Some argument not supplied'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
log.e(tag,
'Some arguments not sent in POST request for enrollment')
return
if self.user_email is None or self.user_name is None or\
self.company_id is None:
log.e(tag, 'Email or user_name is NULL')
opJson = json.dumps({
'pass':
False,
'user_name':
None,
'link':
None,
'password':
None,
'error':
'user_name or Email or Company \
is None'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
if self.user_name == '' or self.user_email == '':
log.e(tag, 'Email or user_name is empty')
opJson = json.dumps({
'pass':
False,
'user_name':
None,
'link':
None,
'password':
None,
'error':
'email or user_name or company \
is empty'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
password = generate_password()
user = UserDBHelper()
user_dict = {
c.USER_TABLE_NAME: str(self.user_name),
c.USER_TABLE_TEAM: str(self.team_id),
c.USER_TABLE_ROLE: str(self.role_id),
c.USER_TABLE_EMAIL: str(self.user_email),
c.USER_TABLE_COMPANY: str(self.company_id)
}
user_id, duplicate = user.add_user_if_not_exists(user_dict)
if duplicate:
log.e(tag, 'No id from primary key ')
opJson = json.dumps({
'pass': False,
'user_name': self.user_name,
'link': None,
'password': None,
'duplicate': True,
'error': 'DB has problem'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
enrollment_dict = {
c.ENROLLMENT_TABLE_USER: user_id,
c.ENROLLMENT_TABLE_PASSWORD: password,
c.ENROLLMENT_TABLE_IS_ENROLLED: False
}
enrollment = EnrollmentDBHelper()
enrollment_id = str(enrollment.add_enrollment(enrollment_dict))
enrollment_dict = enrollment.get_enrollment(enrollment_id)
if enrollment_id is not None:
self.link += enrollment_id
try:
message = loader.load('user_enroll_mail.html').generate(
company_name=self.company_name,
user_passwd=password,
activation_link=self.link)
ses_conn.send_email('*****@*****.**',
'MDM Enrollment verification',
message, [self.user_email],
format='html')
print 'No error found'
log.i(tag, 'Enrollment request successful')
opJson = json.dumps({
'pass': True,
'user_name': self.user_name,
'link': 'link',
'password': '******',
'error': None
})
except Exception as err:
print 'Mail Sending error exception is :', repr(err)
log.e(tag, 'Incorrect EmailID sent')
opJson = json.dumps({
'pass': False,
'user_name': self.user_name,
'link': None,
'password': None,
'error': 'Wrong emailID'
})
else:
log.e(
tag,
'Entry is not done in Enrollment table for UserID = ' +
str(user_id))
opJson = json.dumps({
'pass': False,
'user_name': self.user_name,
'link': None,
'password': None,
'error': 'Wrong emailID'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
log = Logger('CheckInHandler PUT')
TAG = 'run'
# print ' In deviceCheckin PUT Handler\n\n\n'
# parse the body of PUT
# First extract the XML
arguments = cgi.parse_qsl(self.request.request.body)
intermediate = arguments[0]
currentxml = intermediate[1]
final = currentxml[25:-1]
enrollment_id = str(self.data)
# print final
# Actual Parsing
#tree = ET.ElementTree(ET.fromstring(final))
# tree = ET.parse('temp.xml') ### For testing only
node = etree.fromstring(final)
device_data = []
for text_of_child in node.itertext():
if len(text_of_child.strip()) > 0:
device_data.append(text_of_child.strip())
device_data = dict(zip(device_data[::2], device_data[1::2]))
if device_data.get('PushMagic'):
self.push_magic = str(device_data.get('PushMagic'))
if device_data.get('Token'):
self.device_token = str(device_data.get('Token'))
self.device_token = self.device_token.replace(' ', '+')
self.device_token = self.device_token.replace('\n', '')
self.device_token = self.device_token.replace('\t', '')
# print len(self.device_token)
# print self.device_token
if device_data.get('MessageType'):
message = device_data.get('MessageType')
if message == 'TokenUpdate':
self.do_entry = True
elif message == 'Authenticate':
self.do_initial_entry = True
if device_data.get('UnlockToken'):
self.unlock_token = device_data.get('UnlockToken')
self.unlock_token = self.unlock_token.replace(' ', '+')
self.unlock_token = self.unlock_token.replace('\n', '')
self.unlock_token = self.unlock_token.replace('\t', '')
if device_data.get('UDID'):
self.udid = device_data.get('UDID')
### Initial Device DB Entries ###
if self.do_entry:
enrolled_success = False
device_id = None
# fetch info from enrollment table
enrollment = EnrollmentDBHelper()
enrollment_dict = enrollment.get_enrollment(enrollment_id)
# print 'enrollment_dict = ' + str(enrollment_dict)
if enrollment_dict is None:
log.e(TAG,
'No user ID in Enrollment table. Enrollment ID = '
+ str(enrollment_id))
reply = """
<html>
<body>401</body>
</html>
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
print 'inner write'
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
device = DeviceDBHelper()
violation = ViolationsDBHelper()
user_id = str(enrollment_dict[c.ENROLLMENT_TABLE_USER])
device_id = enrollment_dict.get(c.ENROLLMENT_TABLE_DEVICE)
devices = device.get_device_with_udid(
str(self.udid), status=True)
# print "\n print devices list if available \n\n",devices
device_detail = DeviceDetailsDBHelper()
device_details_dict = {
'token': self.device_token,
'push_magic': self.push_magic,
'unlock_token': self.unlock_token
}
if device_id:
enrolled_success = True
device.update_device(str(device_id),
{c.DEVICE_TABLE_DELETED: False,
c.DEVICE_TABLE_UDID: str(self.udid)})
device_detail.update_device_details(str(device_id),
device_details_dict)
print "Device details table updated."
elif devices:
device_id = devices[0][c.DEVICE_TABLE_ID]
device.update_device(str(device_id),
{c.DEVICE_TABLE_DELETED: False})
device_detail.update_device_details(str(device_id),
device_details_dict)
enrollment.update_enrollment(
enrollment_id, {
c.ENROLLMENT_TABLE_DEVICE: str(device_id)})
enrollment.set_enrolled(enrollment_id)
enrolled_success = True
else:
# print 'user_id = ' + user_id
device_dict = {c.DEVICE_TABLE_USER: user_id,
c.DEVICE_TABLE_OS: 'ios',
c.DEVICE_TABLE_UDID: str(self.udid),
c.DEVICE_TABLE_DELETED: False}
device_id = device.add_device(device_dict)
if device_id is None:
log.e(TAG,
'Not Able to insert in Device table UDID = '
+ str(self.udid) + 'userID = ' + str(user_id))
else:
device_details_dict_new = {}
device_details_dict_new[
c.DEVICE_DETAILS_TABLE_DEVICE] = device_id
device_details_dict_new[
c.DEVICE_DETAILS_TABLE_EXTRAS] = device_details_dict
device_details_id = device_detail.add_device_detail(
device_details_dict_new)
# print 'device_details_id = ' + str(device_details_id)
if device_details_id is None:
log.e(TAG, 'Not Able to insert in Device Details \
table UDID = ' +
str(self.udid) +
'userID = ' +
str(user_id) +
'DeviceID = ' +
str(device_id))
else:
success = enrollment.update_enrollment(
enrollment_id,
{c.ENROLLMENT_TABLE_DEVICE: str(device_id)})
if not success:
log.e(TAG,
'enrollment device table not linked')
else:
success1 = enrollment.set_enrolled(
enrollment_id)
if success1:
enrolled_success = True
else:
log.e(
TAG,
'EnrolledOn time is not updated in \
the Enrollment Table')
if device_id and enrolled_success:
violation_status = violation.update_violations(
str(device_id))
user = UserDBHelper()
user_info = user.get_user(user_id)
if violation_status:
log.i(TAG,
"Violation table updated for device_id" + str(
device_id))
else:
log.e(
TAG,
"Violation table not updated for device_id" +
str(device_id))
### Add task to Queue for celery Worker. ###
json_data = {'to': 'user', 'action': 'device_information',
'id': user_id}
json_data['company_id'] = user_info.get('company_id')
create_command_handler_task.delay(json_data)
### Now send polling Signal to device ###
wrapper = APNSNotificationWrapper(
'/opt/toppatch/assets/ios/PushCert.pem', False)
message = APNSNotification()
message.appendProperty(APNSProperty("mdm",
str(self.push_magic)))
message.tokenBase64(str(self.device_token))
wrapper.append(message)
wrapper.notify()
print 'Payload Sent'
elif device_data.get('MessageType') == 'CheckOut':
reply = """
<html>
<body>401</body>
</html>
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
violation = ViolationsDBHelper()
device = DeviceDBHelper()
enrollment = EnrollmentDBHelper()
devices = device.get_device_with_udid(self.udid)
if devices is None:
log.e(TAG, 'No User ID Associated with Device UDID = '
+ self.udid)
else:
device_id = devices[0][c.DEVICE_TABLE_ID]
violation_id = violation.add_violation(str(device_id))
if violation_id is None:
log.e(TAG, 'Not able to insert in Violation Table.\
DeviceID = ' + str(device_id))
else:
device.delete_device(device_id)
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null", 'is_enrolled': False})
log.i(TAG, 'Violation added for device id = ' +
str(device_id))
admin_mailer(device_id, violation_id)
else:
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
print 'outer write'
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
TAG = 'run'
print ' In SamsungCommandResult\'s PUT'
command = SamsungCommandsDBHelper()
print "here is the response \n", self.request.request.body
json_dict = json.loads(self.request.request.body)
special_result = False
checkout_result = False
result_updated = False
special_uuid = '1717171717-17171717-1717117-1717'
checkout_uuid = '1919191919-19191919-191919-1919'
command_uuid = str(json_dict.get('command_uuid'))
gcm_id = json_dict.get('gcm_id')
imei = json_dict.get('imei')
if special_uuid in command_uuid:
special_result = True
if checkout_uuid in command_uuid:
checkout_result = True
device = DeviceDBHelper()
device_list = device.get_device_with_udid(str(imei))
print "\n device list here \n", device_list
command_result = json_dict.get('result')
if checkout_result:
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
if device_list is None:
self.log.e(
TAG,
'No User ID Associated with Device gcm_id = ' + gcm_id)
else:
device_id = device_list[0][c.DEVICE_TABLE_ID]
violation_id = violation.add_violation(str(device_id))
if violation_id is None:
self.log.e(
TAG, 'Not able to insert in Violation Table.\
DeviceID = ' + str(device_id))
else:
device.delete_device(device_id)
enrollment_list = enrollment.get_enrollments(
{'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(str(enrollment_id), {
'device_id': "null",
'is_enrolled': False
})
self.log.i(
TAG,
'Violation added for device id = ' + str(device_id))
admin_mailer(device_id, violation_id)
result_updated = True
elif special_result:
os_version = command_result.get('device_platform')
os_version = os_version.replace('Android', '').strip()
if device_list is None:
device_list = []
for unique_device in device_list:
device_id = unique_device.get(c.DEVICE_TABLE_ID)
is_updated = device.update_device(
str(device_id),
{c.DEVICE_TABLE_OS_VERSION: str(os_version)})
if not is_updated:
self.log.e(
TAG, 'Not able to set the version of the \
device gcm_id = ' + str(gcm_id) + " Device id = " + str(device_id))
else:
self.log.i(
TAG, 'Version Set for the device gcm_id = ' +
str(gcm_id) + " Device id = " + str(device_id))
result_updated = command.update_result(str(command_uuid),
str(device_id),
command_result)
else:
if device_list is None:
device_list = []
for unique_device in device_list:
device_id = unique_device.get(c.DEVICE_TABLE_ID)
result_updated = command.update_result(str(command_uuid),
str(device_id),
command_result)
if not result_updated:
self.log.e(
TAG, 'Result Not updated for uuid = ' + str(command_uuid) +
'gcm_id = ' + str(gcm_id))
self.request.set_status(404)
self.request.write("Not OK")
ioloop.IOLoop.instance().add_callback(self.callback)
else:
self.log.i(
TAG, 'Result send in DB for uuid = ' + str(command_uuid) +
'gcm_id = ' + str(gcm_id))
self.request.set_status(200)
self.request.write("OK")
ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
TAG = 'run'
print ' In IOSCommandPerformer\'s PUT'
command = IOSCommandDBHelper()
invoke_flag = False
arguments = cgi.parse_qsl(self.request.request.body)
intermediate = arguments[0]
currentxml = intermediate[1]
final = currentxml[25:-1] # Original Line
# final = currentxml[20:] ### For testing only
# print '\n\n\n here is final xml \n\n', final
# temp Parsing
# tree = ET.ElementTree(ET.fromstring(final)) ##Original Line
# tree = ET.parse('temp.xml') ### For testing only
initial_list = []
initial_dict = {}
check_out_requested = False
send_command = False
store_result = False
store_error = False
registered = True
special_result = False
acknowledged = False
update_token = False
object_root = objectify.fromstring(final)
begin = object_root.dict
for child in begin.iterchildren():
initial_list.append(child.text)
initial_dict = dict(zip(initial_list[::2], initial_list[1::2]))
# print '\n\n print here initial dict\n', initial_dict
if 'UDID' in initial_dict:
udid = initial_dict.get('UDID')
device = DeviceDBHelper()
registered = device.is_udid_registered(str(udid))
if 'Status' in initial_dict:
status = initial_dict.get('Status')
if status == 'Idle':
send_command = True
elif status == 'Acknowledged':
acknowledged = True
elif status == 'Error':
store_error = True
uuid = initial_dict.get('CommandUUID')
if 'MessageType' in initial_dict:
message = initial_dict.get('MessageType')
if message == 'TokenUpdate':
update_token = True
elif message == 'CheckOut':
check_out_requested = True
push_magic = 'push_magic'
token = 'Token'
unlock_token = 'UnlockToken'
if registered is False:
reply = """
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_id = str(device.get_device_with_udid(udid)[0]['id'])
print 'reached here '
if acknowledged:
if 'CommandUUID' in initial_dict:
uuid = initial_dict.get('CommandUUID')
# special uuid for device information
if uuid == '55555555-5555-5555-5555-555555555555' + device_id:
info_list = [
el.text if el.text else el.tag
for el in object_root.iterdescendants()
]
info_list.pop(0)
final = dict(zip(info_list[::2], info_list[1::2]))
store_result = True
special_result = True
# special uuid for installed application list
elif uuid == ('77777777-7777-7777-7777-777777777777' +
device_id):
begin = object_root.dict.array
apps_list = []
for outer_child in begin.iterchildren():
temp_list = []
for inner_child in outer_child.iterchildren():
temp_list.append(inner_child.text)
apps_list.append(
dict(zip(temp_list[::2], temp_list[1::2])))
final = apps_list
store_result = True
invoke_flag = True
else:
store_result = True
if send_command:
if udid is None:
self.log.e(TAG, 'No UDID is supplied from the device')
else:
command_list = command.get_not_executed(str(device_id))
if command_list is None or len(command_list) == 0:
self.log.e(
TAG, 'No command to execute fot the device \
having ID = ' + str(device_id))
reply = " "
print 'outer write'
self.request.set_status(500)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_details = DeviceDetailsDBHelper()
violate_device = False
special_uuid = (
'2929292929-29292929-292929-292929-292929' +
str(device_id))
commands = command_list[0]
action = str(commands[c.COMMAND_TABLE_ACTION])
command_attributes = commands[c.COMMAND_TABLE_ATTRIBUTE]
command_uuid = str(commands[c.COMMAND_TABLE_COMMAND_UUID])
if command_uuid == special_uuid:
violate_device = True
if action is not None and not violate_device:
command_xml_thread = IOSCommandCreatorThread(
action, command_attributes, command_uuid,
device_id)
command_xml_thread.start()
command_xml_thread.join()
final_output = command_xml_thread.command_profile
if final_output is not None:
self.request.write(final_output)
ioloop.IOLoop.instance().add_callback(self.callback)
# send polling signal to device for next command
device_details_list = (
device_details.get_device_details(device_id))
json_extras = device_details_list.get(
c.DEVICE_DETAILS_TABLE_EXTRAS)
self.push_magic = str(json_extras.get('push_magic'))
self.device_token = str(json_extras.get('token'))
wrapper = APNSNotificationWrapper(
'/opt/toppatch/assets/ios/PushCert.pem', False)
message = APNSNotification()
message.appendProperty(
APNSProperty("mdm", self.push_magic))
message.tokenBase64(str(self.device_token))
wrapper.append(message)
wrapper.notify()
print 'Payload Sent'
elif violate_device:
### Wiping device to Factory Reset ###
command_xml_thread = IOSCommandCreatorThread(
action, command_attributes, command_uuid,
device_id)
command_xml_thread.start()
command_xml_thread.join()
final_output = command_xml_thread.command_profile
if final_output is not None:
self.request.write(final_output)
ioloop.IOLoop.instance().add_callback(self.callback)
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
violation_id = violation.add_violation(str(device_id))
if violation_id is None:
self.log.e(
TAG, 'Not able to insert in Violation \
Table. DeviceID = ' + str(device_id))
else:
device.delete_device(device_id)
enrollment_list = enrollment.get_enrollments(
{'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null",
'is_enrolled': False
})
self.log.i(
TAG, 'Violation added for device id = ' +
str(device_id) + 'due to remote wipe command')
else:
reply = " "
print 'outer write'
self.request.set_status(500)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
elif check_out_requested:
violation = ViolationsDBHelper()
device = DeviceDBHelper()
devices = device.get_device_with_udid(udid)
if devices is None:
self.log.e(TAG,
'No User ID Associated with Device UDID = ' + udid)
else:
device_id = str(devices[0][c.DEVICE_TABLE_ID])
violation_id = violation.add_violation(device_id)
if violation_id is None:
self.log.e(
TAG, 'Not able to insert in Violation Table.\
DeviceID = ' + str(device_id))
else:
self.log.i(
TAG,
'Violation added for device id = ' + str(device_id))
reply = """
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
elif store_result or store_error:
if special_result:
is_updated = device.update_device(
str(device_id),
{c.DEVICE_TABLE_OS_VERSION: str(final.get('OSVersion'))})
if not is_updated:
self.log.e(
TAG, 'Not able to set the version of the device\
udid = ' + str(udid) + " Device id = " + str(device_id))
else:
self.log.i(
TAG, 'Version Set for the device udid = ' + str(udid) +
" Device id = " + str(device_id))
if store_error:
self.log.e(
TAG, 'Error in Response for uuid = ' + str(uuid) +
' device_id = ' + str(device_id))
# print '\n\nfinal dict to be stored as json is \n\n', final
result_updated = command.update_result(str(uuid), str(device_id),
final)
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
if not result_updated:
self.log.e(
TAG, 'Result Not updated for uuid = ' + str(uuid) +
' udid = ' + str(udid))
else:
executed = command.toggle_executed(str(uuid), str(device_id),
True)
if executed is False:
self.log.e(
TAG, 'IOSCommand Table executed \
field is not updated CommandUUID = ' + str(uuid) +
'Device id = ' + str(device_id))
self.log.i(
TAG, 'Result send in DB for uuid = ' + str(uuid) +
' udid = ' + str(udid))
if invoke_flag:
# Queue task to send command to user of app installation
user = UserDBHelper()
user_id = device.get_device_with_udid(
str(udid))[0]['user_id']
user_info = user.get_user(str(user_id))
json_data = {'to': 'user', 'id': user_id}
json_data['company_id'] = user_info.get('company_id')
create_command_handler_task.delay(json_data)
elif update_token:
device = DeviceDBHelper()
device_list = device.get_device_with_udid(udid)
device_id = 'device_id'
if device_list is not None and len(device_list) != 0:
for devices in device_list:
device_id = devices[c.DEVICE_TABLE_ID]
if device_id is None:
self.log.e(
TAG, 'Device id is not found corresponding \
the udid = ' + str(udid))
else:
device_details = DeviceDetailsDBHelper()
device_details_dict = {
c.DEVICE_DETAILS_TABLE_DEVICE_TOKEN: token,
c.DEVICE_DETAILS_TABLE_PUSH_MAGIC: push_magic,
c.DEVICE_DETAILS_TABLE_UNLOCK_TOKEN: unlock_token
}
is_updated = device_details.update_device_details(
str(device_id), device_details_dict)
if not is_updated:
self.log.e(
TAG, 'Not able to update the device \
details of device_id = ' + str(device_id))
else:
self.log.i(
TAG, 'Device Details successfully \
updated device id = ' + str(device_id))
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
print 'outer write'
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
self.log = Logger('UpdateTokenThread')
TAG = 'run'
print 'In UpdateTokenThread\'s POST'
#Get the parameters which are to be used
password = str(self.request.get_argument('password',None))
user_email = str(self.request.get_argument('email', None))
token = str(self.request.get_argument('token',None))
print password
print user_email
print token
token = token.replace('<', '')
token = token.replace('>', '')
token = token.replace(' ', '')
result_dict = {}
user = UserDBHelper()
user_detail_dict = user.get_user_with_email(user_email)
print 'user_dict = ' + str(user_detail_dict)
if user_detail_dict is None:
self.log.e(TAG, 'No user corresponding to the email = ' + str(user_email))
result_dict['pass'] = False
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header ('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
company = CompanyDBHelper()
user_id = str(user_detail_dict[C.USER_TABLE_ID])
user_name = str(user_detail_dict[C.USER_TABLE_NAME])
company_id = str(user_detail_dict[C.USER_TABLE_COMPANY])
company_detail_dict = company.get_company(company_id)
company_name = str(company_detail_dict[C.COMPANY_TABLE_NAME])
enrollment = EnrollmentDBHelper()
filter_dict = {
C.ENROLLMENT_TABLE_USER : str(user_id),
C.ENROLLMENT_TABLE_PASSWORD : str(password)
}
enrollment_list = enrollment.get_enrollments(filter_dict)
print 'enrollment_list = ' + str(enrollment_list)
if enrollment_list is None:
self.log.e(TAG, 'No enrollment corresponding to the email = ' + str(user_email) + ' and password = '******'pass'] = False
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header ('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_id = enrollment_list[0][C.ENROLLMENT_TABLE_DEVICE]
user_data = {'name': user_name, 'company': company_name}
result_dict['data'] = user_data
if device_id is None:
self.log.e(TAG, 'No device ID in enrollment table\
corresponding to the email = ' + \
str(user_email) + ' and password = '******'pass'] = True
result_dict['is_enrolled'] = False
opJson = json.dumps(result_dict)
self.request.set_header ('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_detail = DeviceDetailsDBHelper()
updated = device_detail.update_device_details(str(device_id), {C.DEVICE_DETAILS_TABLE_MESSAGE_TOKEN : str(token)})
if not updated:
self.log.e(TAG, 'Not able to update Message Token in Device Details Table DeviceID = ' + str(device_id))
result_dict['pass'] = False
result_dict['is_enrolled'] = True
opJson = json.dumps(result_dict)
self.request.set_header ('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
self.log.i(TAG, 'Device Messge Token updated successfully DeviceID = ' + str(device_id))
result_dict['pass'] = True
result_dict['is_enrolled'] = True
opJson = json.dumps(result_dict)
self.request.set_header ('Content-Type', 'application/json')
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def parse(self,
excel_path,
company,
company_name=None,
callback=None,
user_added_callback=None):
COMPANY = company
company_name = company_name
book = open_workbook(filename=excel_path)
sheet = book.sheet_by_index(0)
users = list()
for row_index in range(sheet.nrows):
user = dict()
for col_index in range(sheet.ncols):
cell = sheet.cell(row_index, col_index).value
if col_index == 0:
user[C.USER_TABLE_EMAIL] = cell
elif col_index == 1:
user[C.USER_TABLE_NAME] = cell
elif col_index == 2:
user[C.USER_TABLE_TEAM] = cell
elif col_index == 3:
user[C.USER_TABLE_ROLE] = cell
users.append(user)
roles_list = list()
teams_list = list()
for user in users:
if C.USER_TABLE_ROLE in user:
roles_list.append(user[C.USER_TABLE_ROLE])
if C.USER_TABLE_TEAM in user:
teams_list.append(user[C.USER_TABLE_TEAM])
# get a set to get the unique elements.
roles = dict()
teams = dict()
roles_helper = RoleDBHelper()
teams_helper = TeamDBHelper()
users_helper = UserDBHelper()
enrollment_helper = EnrollmentDBHelper()
for role_name in set(roles_list):
role = dict()
role[C.ROLE_TABLE_COMPANY] = COMPANY
role[C.ROLE_TABLE_NAME] = role_name
roles[role_name] = roles_helper.add_role(role)
for team_name in set(teams_list):
team = dict()
team[C.TEAM_TABLE_COMPANY] = COMPANY
team[C.TEAM_TABLE_NAME] = team_name
team[C.TEAM_TABLE_DELETED] = False
teams[team_name] = teams_helper.add_team(team)
# Now we have id for all teams and roles... Insert the users now.
for user in users:
user_obj = dict()
user_obj[C.USER_TABLE_COMPANY] = COMPANY
user_obj[C.USER_TABLE_EMAIL] = user[C.USER_TABLE_EMAIL]
user_obj[C.USER_TABLE_NAME] = user[C.USER_TABLE_NAME]
user_obj[C.USER_TABLE_ROLE] = roles[user[C.USER_TABLE_ROLE]]
user_obj[C.USER_TABLE_TEAM] = teams[user[C.USER_TABLE_TEAM]]
user['id'] = users_helper.add_user_if_not_exists(user_obj)[0]
if user_added_callback is not None:
user_added_callback(user_obj)
for user in users:
enrollment = dict()
enrollment[C.ENROLLMENT_TABLE_USER] = user['id']
enrollment[C.ENROLLMENT_TABLE_PASSWORD] = generate_password()
enrollment[C.ENROLLMENT_TABLE_IS_ENROLLED] = False
user['passcode'] = enrollment[C.ENROLLMENT_TABLE_PASSWORD]
print 'adding enrollment ', enrollment
user['enrollment_id'] = enrollment_helper.add_enrollment(
enrollment)
user['company_name'] = company_name
if callback is not None:
callback(users)
return users
def run(self):
TAG = 'run'
print ' In IOSCommandPerformer\'s PUT'
command = IOSCommandDBHelper()
invoke_flag = False
arguments = cgi.parse_qsl(self.request.request.body)
intermediate = arguments[0]
currentxml = intermediate[1]
final = currentxml[25:-1] # Original Line
# final = currentxml[20:] ### For testing only
# print '\n\n\n here is final xml \n\n', final
# temp Parsing
# tree = ET.ElementTree(ET.fromstring(final)) ##Original Line
# tree = ET.parse('temp.xml') ### For testing only
initial_list = []
initial_dict = {}
check_out_requested = False
send_command = False
store_result = False
store_error = False
registered = True
special_result = False
acknowledged = False
update_token = False
object_root = objectify.fromstring(final)
begin = object_root.dict
for child in begin.iterchildren():
initial_list.append(child.text)
initial_dict = dict(zip(initial_list[::2], initial_list[1::2]))
# print '\n\n print here initial dict\n', initial_dict
if 'UDID' in initial_dict:
udid = initial_dict.get('UDID')
device = DeviceDBHelper()
registered = device.is_udid_registered(str(udid))
if 'Status' in initial_dict:
status = initial_dict.get('Status')
if status == 'Idle':
send_command = True
elif status == 'Acknowledged':
acknowledged = True
elif status == 'Error':
store_error = True
uuid = initial_dict.get('CommandUUID')
if 'MessageType' in initial_dict:
message = initial_dict.get('MessageType')
if message == 'TokenUpdate':
update_token = True
elif message == 'CheckOut':
check_out_requested = True
push_magic = 'push_magic'
token = 'Token'
unlock_token = 'UnlockToken'
if registered is False:
reply = """
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_id = str(device.get_device_with_udid(udid)[0]['id'])
print 'reached here '
if acknowledged:
if 'CommandUUID' in initial_dict:
uuid = initial_dict.get('CommandUUID')
# special uuid for device information
if uuid == '55555555-5555-5555-5555-555555555555' + device_id:
info_list = [
el.text if el.text else el.tag for el in object_root.iterdescendants()]
info_list.pop(0)
final = dict(zip(info_list[::2], info_list[1::2]))
store_result = True
special_result = True
# special uuid for installed application list
elif uuid == (
'77777777-7777-7777-7777-777777777777' + device_id):
begin = object_root.dict.array
apps_list = []
for outer_child in begin.iterchildren():
temp_list = []
for inner_child in outer_child.iterchildren():
temp_list.append(inner_child.text)
apps_list.append(dict(zip(temp_list[::2],
temp_list[1::2])))
final = apps_list
store_result = True
invoke_flag = True
else:
store_result = True
if send_command:
if udid is None:
self.log.e(TAG, 'No UDID is supplied from the device')
else:
command_list = command.get_not_executed(str(device_id))
if command_list is None or len(command_list) == 0:
self.log.e(TAG, 'No command to execute fot the device \
having ID = ' + str(device_id))
reply = " "
print 'outer write'
self.request.set_status(500)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
device_details = DeviceDetailsDBHelper()
violate_device = False
special_uuid = (
'2929292929-29292929-292929-292929-292929' +
str(device_id))
commands = command_list[0]
action = str(commands[c.COMMAND_TABLE_ACTION])
command_attributes = commands[c.COMMAND_TABLE_ATTRIBUTE]
command_uuid = str(commands[c.COMMAND_TABLE_COMMAND_UUID])
if command_uuid == special_uuid:
violate_device = True
if action is not None and not violate_device:
command_xml_thread = IOSCommandCreatorThread(
action,
command_attributes,
command_uuid,
device_id)
command_xml_thread.start()
command_xml_thread.join()
final_output = command_xml_thread.command_profile
if final_output is not None:
self.request.write(final_output)
ioloop.IOLoop.instance().add_callback(self.callback)
# send polling signal to device for next command
device_details_list = (
device_details.get_device_details(device_id))
json_extras = device_details_list.get(
c.DEVICE_DETAILS_TABLE_EXTRAS)
self.push_magic = str(json_extras.get('push_magic'))
self.device_token = str(json_extras.get('token'))
wrapper = APNSNotificationWrapper(
'/opt/toppatch/assets/ios/PushCert.pem', False)
message = APNSNotification()
message.appendProperty(
APNSProperty(
"mdm",
self.push_magic))
message.tokenBase64(str(self.device_token))
wrapper.append(message)
wrapper.notify()
print 'Payload Sent'
elif violate_device:
### Wiping device to Factory Reset ###
command_xml_thread = IOSCommandCreatorThread(
action,
command_attributes,
command_uuid,
device_id)
command_xml_thread.start()
command_xml_thread.join()
final_output = command_xml_thread.command_profile
if final_output is not None:
self.request.write(final_output)
ioloop.IOLoop.instance().add_callback(self.callback)
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
violation_id = violation.add_violation(str(device_id))
if violation_id is None:
self.log.e(TAG, 'Not able to insert in Violation \
Table. DeviceID = ' + str(device_id))
else:
device.delete_device(device_id)
enrollment_list = enrollment.get_enrollments({
'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null",
'is_enrolled': False})
self.log.i(
TAG,
'Violation added for device id = ' +
str(device_id) +
'due to remote wipe command')
else:
reply = " "
print 'outer write'
self.request.set_status(500)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
elif check_out_requested:
violation = ViolationsDBHelper()
device = DeviceDBHelper()
devices = device.get_device_with_udid(udid)
if devices is None:
self.log.e(TAG, 'No User ID Associated with Device UDID = '
+ udid)
else:
device_id = str(devices[0][c.DEVICE_TABLE_ID])
violation_id = violation.add_violation(device_id)
if violation_id is None:
self.log.e(TAG, 'Not able to insert in Violation Table.\
DeviceID = ' + str(device_id))
else:
self.log.i(TAG, 'Violation added for device id = ' +
str(device_id))
reply = """
"""
self.request.set_status(401)
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
elif store_result or store_error:
if special_result:
is_updated = device.update_device(
str(device_id), {
c.DEVICE_TABLE_OS_VERSION: str(
final.get('OSVersion'))})
if not is_updated:
self.log.e(TAG, 'Not able to set the version of the device\
udid = ' + str(udid) + " Device id = " + str(device_id))
else:
self.log.i(TAG, 'Version Set for the device udid = '
+ str(udid) + " Device id = " + str(device_id))
if store_error:
self.log.e(TAG, 'Error in Response for uuid = ' +
str(uuid) + ' device_id = ' + str(device_id))
# print '\n\nfinal dict to be stored as json is \n\n', final
result_updated = command.update_result(str(uuid),
str(device_id), final)
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
if not result_updated:
self.log.e(TAG, 'Result Not updated for uuid = ' +
str(uuid) + ' udid = ' + str(udid))
else:
executed = command.toggle_executed(str(uuid), str(device_id),
True)
if executed is False:
self.log.e(TAG, 'IOSCommand Table executed \
field is not updated CommandUUID = ' +
str(uuid) + 'Device id = ' + str(device_id))
self.log.i(TAG, 'Result send in DB for uuid = ' +
str(uuid) + ' udid = ' + str(udid))
if invoke_flag:
# Queue task to send command to user of app installation
user = UserDBHelper()
user_id = device.get_device_with_udid(str(
udid))[0]['user_id']
user_info = user.get_user(str(user_id))
json_data = {'to': 'user', 'id': user_id}
json_data['company_id'] = user_info.get('company_id')
create_command_handler_task.delay(json_data)
elif update_token:
device = DeviceDBHelper()
device_list = device.get_device_with_udid(udid)
device_id = 'device_id'
if device_list is not None and len(device_list) != 0:
for devices in device_list:
device_id = devices[c.DEVICE_TABLE_ID]
if device_id is None:
self.log.e(TAG, 'Device id is not found corresponding \
the udid = ' + str(udid))
else:
device_details = DeviceDetailsDBHelper()
device_details_dict = {
c.DEVICE_DETAILS_TABLE_DEVICE_TOKEN: token,
c.DEVICE_DETAILS_TABLE_PUSH_MAGIC: push_magic,
c.DEVICE_DETAILS_TABLE_UNLOCK_TOKEN: unlock_token
}
is_updated = device_details.update_device_details(
str(device_id), device_details_dict)
if not is_updated:
self.log.e(TAG, 'Not able to update the device \
details of device_id = ' + str(device_id))
else:
self.log.i(TAG, 'Device Details successfully \
updated device id = ' + str(device_id))
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
else:
reply = """
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple Computer//DTD PLIST 1.0//EN"
"http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
</dict>
</plist>
"""
print 'outer write'
self.request.write(reply)
ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
log = Logger('PassVerifyerThread')
tag = 'run'
print 'In PassVerify\'s POST'
loader = Loader("/opt/toppatch/mv/media/app/")
passwd = str(self.request.get_argument('password', None))
enrollment_id = self.request.get_argument('hidden', None)
log.e(tag, 'enrollment id : ' + enrollment_id)
### check type of enrollment id ###
try:
enrollment_id = int(enrollment_id)
invalid_enrollment_id = False
enrollment_id = str(enrollment_id)
except ValueError:
invalid_enrollment_id = True
# No enrollment ID sent
if enrollment_id is None or invalid_enrollment_id:
# print 'Some Error in enrollID not present corresponding\
# to the password or of invalid format'
log.e(
tag, 'Some Error in program deviceID not present \
corresponding to the password or of invalid format')
self.request.write(
loader.load("error_invalid.html").generate(
message='Invalid link, Mr. intruder. :D ;)',
status='alert-danger'))
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
# Password not found
elif passwd is None:
redirect_url = '''
/enroll/{0}?err=Try+again+with+correct+password'''.format(enrollment_id)
self.request.redirect(redirect_url)
log.i(tag, 'password is incorrect')
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
# Enrollent ID and Password found
else:
enrollment = EnrollmentDBHelper()
ret_dict = enrollment.get_enrollment(enrollment_id)
# print ret_dict
ret = None
if ret_dict is not None:
ret = str(ret_dict[c.ENROLLMENT_TABLE_PASSWORD])
else:
log.e(tag, 'Enrollment password cannot be reterived')
if ret is None:
log.e(tag,
'DB did not sent the password from Enrollment table')
self.request.write(
loader.load("error_invalid.html").generate(
message='Invalid link, Mr. intruder. :D ;)',
status='alert-danger'))
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
# Password matched
if ret == passwd:
print 'download the profile'
# Now find out the browser details
# Create the profile to download
thread = CreateProfileThread(enrollment_id)
thread.start()
thread.join()
filename = enrollment_id + '.mobileconfig'
signed_filename = 'mdm_' + enrollment_id + '.mobileconfig'
log.i(tag, 'Downloading the iOS profile')
log.i(tag, 'Signing the iOS profile')
sign_command = """
openssl smime \
-sign \
-signer /etc/ssl/star_toppatch_com.pem \
-inkey /etc/ssl/star_toppatch_com.key \
-certfile /opt/toppatch/assets/ios/DigiCertPersonal_chain.pem \
-nodetach \
-outform der \
-in {0} \
-out {1}
""".format(filename, signed_filename)
os.system(sign_command)
f = file(signed_filename, 'rb')
self.request.set_header(
'Content-Type',
'application/x-apple-aspen-config; chatset=utf-8')
self.request.set_header(
'Content-Disposition',
'attachment; filename=' + filename + '')
self.request.write(f.read())
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
# Delete the file from server after download 'Delay can be
# introduced'.
os.remove(filename)
os.remove(signed_filename)
else:
redirect_url = '''
/enroll/{0}?err=Try+again+with+correct+password'''.format(enrollment_id)
self.request.redirect(redirect_url)
tornado.ioloop.IOLoop.instance().add_callback(
self.callback)
log.i(tag, 'Incorrect Password for enrollment')
def run(self):
# Return All the users in the User table
log = Logger('UserDeleteHandlerThread')
tag = 'DELETE'
if self.data is None:
log.e(tag, 'No user registered in table for this user_id')
opJson = json.dumps({
'pass':
False,
'message':
'No user registered in table for this user_id'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
user = UserDBHelper()
device = DeviceDBHelper()
enrollment = EnrollmentDBHelper()
print 'print data here \n ... \n ', self.data
user_list = user.get_user(str(self.data), company_id=self.company_id)
if user_list is None:
log.e(tag, 'No user registered in table for this user_id')
opJson = json.dumps({
'pass':
False,
'message':
'No user registered in table for this user_id'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
user_deleted = user.delete_user(str(user_list.get('id')))
if not user_deleted:
log.e(tag, 'Not able to delete from user table')
opJson = json.dumps({
'pass':
False,
'message':
'Not able to delete from user table'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
devices = device.get_devices_of_user(str(self.data))
if devices is not None and len(devices) > 0:
for each_device in devices:
device_id = each_device.get('id')
device.delete_device(str(device_id))
enrollment_list = enrollment.get_enrollments(
{'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null",
'is_enrolled': False
})
log.i(tag, 'User delelted')
opJson = json.dumps({
'pass': True,
'message': 'User Successfully deleted'
})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
def run(self):
#Find all the POST arguments required
company_id = self.company_id
company_name = str(self.company_name)
loader = Loader("/opt/toppatch/mv/media/app/")
thread1 = {}
log = Logger('EnrollDevice')
tag = 'POST'
request_body = json.loads(self.request.request.body)
try:
self.user_email = str(request_body.get('user_email', None))
self.user_name = str(request_body.get('user_name', None))
self.team_id = str(request_body.get('team_id', None))
self.role_id = str(request_body.get('role_id', None))
self.company_id = str(company_id)
except:
self.request.write('Some arguments are not supplied')
opJson = json.dumps({'pass':False, 'user_name': None,
'link' : None, 'password':None,
'error':'Some argument not supplied'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
log.e(tag, 'Some arguments not sent in POST request for enrollment')
return
if self.user_email is None or self.user_name is None or\
self.company_id is None:
log.e(tag, 'Email or user_name is NULL')
opJson = json.dumps({'pass':False, 'user_name': None,
'link' : None, 'password':None,
'error':'user_name or Email or Company is None'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
if self.user_name == '' or self.user_email == '':
log.e(tag, 'Email or user_name is empty')
opJson = json.dumps({'pass':False, 'user_name': None,
'link' : None, 'password':None,
'error':'email or user_name or company is empty'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
password = generate_password()
user = UserDBHelper()
user_dict = {
c.USER_TABLE_NAME: str(self.user_name),
c.USER_TABLE_TEAM : str(self.team_id),
c.USER_TABLE_ROLE: str(self.role_id),
c.USER_TABLE_EMAIL: str(self.user_email),
c.USER_TABLE_COMPANY: str(self.company_id)
}
user_id, duplicate = user.add_user_if_not_exists(user_dict)
if duplicate:
log.e(tag,'No id from primary key ')
opJson = json.dumps({'pass':False, 'user_name': self.user_name,
'link' : None, 'password':None, 'duplicate': True,
'error':'DB has problem'})
self.request.write(opJson)
tornado.ioloop.IOLoop.instance().add_callback(self.callback)
else:
enrollment_dict = {
c.ENROLLMENT_TABLE_USER: user_id,
c.ENROLLMENT_TABLE_PASSWORD: password,
c.ENROLLMENT_TABLE_IS_ENROLLED: False
}
enrollment = EnrollmentDBHelper()
enrollment_id = str(enrollment.add_enrollment(enrollment_dict))
enrollment_dict = enrollment.get_enrollment(enrollment_id)
if enrollment_id is not None:
self.link += enrollment_id
try:
message = loader.load('user_enroll_mail.html').generate(
company_name=self.company_name,
user_passwd=password, activation_link=self.link)
ses_conn.send_email('*****@*****.**',
'MDM Enrollment verification', message,
[self.user_email], format='html')
print 'No error found'
log.i(tag, 'Enrollment request successful')
opJson = json.dumps({'pass':True, 'user_name': self.user_name,
'link' : 'link', 'password':'******', 'error':None})
except Exception, err:
print 'Mail Sending error exception is :', repr(err)
log.e(tag, 'Incorrect EmailID sent')
opJson = json.dumps({'pass':False, 'user_name': self.user_name,
'link' : None, 'password':None, 'error':'Wrong emailID'})
else:
def run(self):
TAG = 'run'
print ' In SamsungCommandResult\'s PUT'
command = SamsungCommandsDBHelper()
print "here is the response \n", self.request.request.body
json_dict = json.loads(self.request.request.body)
special_result = False
checkout_result = False
result_updated = False
special_uuid = '1717171717-17171717-1717117-1717'
checkout_uuid = '1919191919-19191919-191919-1919'
command_uuid = str(json_dict.get('command_uuid'))
gcm_id = json_dict.get('gcm_id')
imei = json_dict.get('imei')
if special_uuid in command_uuid:
special_result = True
if checkout_uuid in command_uuid:
checkout_result = True
device = DeviceDBHelper()
device_list = device.get_device_with_udid(str(imei))
print "\n device list here \n", device_list
command_result = json_dict.get('result')
if checkout_result:
violation = ViolationsDBHelper()
enrollment = EnrollmentDBHelper()
if device_list is None:
self.log.e(TAG, 'No User ID Associated with Device gcm_id = '
+ gcm_id)
else:
device_id = device_list[0][c.DEVICE_TABLE_ID]
violation_id = violation.add_violation(str(device_id))
if violation_id is None:
self.log.e(TAG, 'Not able to insert in Violation Table.\
DeviceID = ' + str(device_id))
else:
device.delete_device(device_id)
enrollment_list = enrollment.get_enrollments({
'device_id': device_id})
for enroll in enrollment_list:
enrollment_id = enroll.get('id')
enrollment.update_enrollment(
str(enrollment_id), {
'device_id': "null", 'is_enrolled': False})
self.log.i(TAG, 'Violation added for device id = ' +
str(device_id))
admin_mailer(device_id, violation_id)
result_updated = True
elif special_result:
os_version = command_result.get('device_platform')
os_version = os_version.replace('Android', '').strip()
if device_list is None:
device_list = []
for unique_device in device_list:
device_id = unique_device.get(c.DEVICE_TABLE_ID)
is_updated = device.update_device(
str(device_id), {
c.DEVICE_TABLE_OS_VERSION: str(os_version)})
if not is_updated:
self.log.e(TAG, 'Not able to set the version of the \
device gcm_id = ' + str(gcm_id) + " Device id = " + str(device_id))
else:
self.log.i(
TAG,
'Version Set for the device gcm_id = ' +
str(gcm_id) +
" Device id = " +
str(device_id))
result_updated = command.update_result(
str(command_uuid),
str(device_id),
command_result)
else:
if device_list is None:
device_list = []
for unique_device in device_list:
device_id = unique_device.get(c.DEVICE_TABLE_ID)
result_updated = command.update_result(
str(command_uuid),
str(device_id),
command_result)
if not result_updated:
self.log.e(TAG, 'Result Not updated for uuid = ' +
str(command_uuid) + 'gcm_id = ' + str(gcm_id))
self.request.set_status(404)
self.request.write("Not OK")
ioloop.IOLoop.instance().add_callback(self.callback)
else:
self.log.i(TAG, 'Result send in DB for uuid = ' +
str(command_uuid) + 'gcm_id = ' + str(gcm_id))
self.request.set_status(200)
self.request.write("OK")
ioloop.IOLoop.instance().add_callback(self.callback)