Ejemplo n.º 1
0
    def put(self, request, username):
        with self._handle_exception(request):
            if (username in self.exclude_list):
                if (username != 'root'):
                    e_msg = ('Editing restricted user(%s) is not supported.' %
                             username)
                    handle_exception(Exception(e_msg), request)
            email = request.data.get('email', None)
            new_pw = request.data.get('password', None)
            shell = request.data.get('shell', None)
            public_key = self._validate_public_key(request)
            admin = request.data.get('admin', False)
            if (User.objects.filter(username=username).exists()):
                u = User.objects.get(username=username)
                if (admin is True):
                    if (u.user is None):
                        if (new_pw is None):
                            e_msg = ('password reset is required to enable admin '
                                     'access. please provide a new password')
                            handle_exception(Exception(e_msg), request)
                        auser = DjangoUser.objects.create_user(username,
                                                               None, new_pw)
                        auser.is_active = True
                        auser.save()
                        u.user = auser
                        u.save()
                    elif (new_pw is not None):
                        u.user.set_password(new_pw)
                        u.user.save()
                elif (u.user is not None):
                    auser = u.user
                    u.user = None
                    auser.delete()

                u.public_key = public_key
                if (email is not None and email != ''):
                    u.email = email
                if (shell is not None and shell != u.shell):
                    u.shell = shell
                u.save()

            sysusers = combined_users()
            suser = None
            for u in sysusers:
                if (u.username == username):
                    suser = u
                    if (new_pw is not None):
                        usermod(username, new_pw)
                        smbpasswd(username, new_pw)
                    if (shell is not None):
                        update_shell(username, shell)
                    if (public_key is not None):
                        add_ssh_key(username, public_key)
                    break
            if (suser is None):
                e_msg = ('User(%s) does not exist' % username)
                handle_exception(Exception(e_msg), request)

            return Response(SUserSerializer(suser).data)
Ejemplo n.º 2
0
    def post(self, request):
        with self._handle_exception(request):

            invar = self._validate_input(request)
            # Check that a django user with the same name does not exist
            e_msg = ('User(%s) already exists. Please choose a different'
                     ' username' % invar['username'])
            if (DjangoUser.objects.filter(
                    username=invar['username']).exists() or
                    User.objects.filter(username=invar['username']).exists()):
                handle_exception(Exception(e_msg), request)
            users = combined_users()
            groups = combined_groups()
            invar['gid'] = None
            admin_group = None
            if (invar['group'] is not None):
                for g in groups:
                    if (g.groupname == invar['group']):
                        invar['gid'] = g.gid
                        admin_group = g
                        invar['group'] = g
                        break

            for u in users:
                if (u.username == invar['username']):
                    handle_exception(Exception(e_msg), request)
                elif (u.uid == invar['uid']):
                    e_msg = ('uid: %d already exists. Please choose a '
                             'different one.' % invar['uid'])
                    handle_exception(Exception(e_msg), request)

            if (invar['admin']):
                # Create Django user
                auser = DjangoUser.objects.create_user(invar['username'],
                                                       None, invar['password'])
                auser.is_active = True
                auser.save()
                invar['user'] = auser

            useradd(invar['username'], invar['shell'], uid=invar['uid'],
                    gid=invar['gid'])
            pw_entries = pwd.getpwnam(invar['username'])
            invar['uid'] = pw_entries[2]
            invar['gid'] = pw_entries[3]
            usermod(invar['username'], invar['password'])
            smbpasswd(invar['username'], invar['password'])
            if (invar['public_key'] is not None):
                add_ssh_key(invar['username'], invar['public_key'])
            del(invar['password'])
            if (admin_group is None):
                admin_group = Group(gid=invar['gid'],
                                    groupname=invar['username'],
                                    admin=True)
                admin_group.save()
                invar['group'] = admin_group
            suser = User(**invar)
            suser.full_clean()
            suser.save()
            return Response(SUserSerializer(suser).data)
Ejemplo n.º 3
0
    def put(self, request, username):
        with self._handle_exception(request):
            if (username in self.exclude_list):
                if (username != 'root'):
                    e_msg = ('Editing restricted user(%s) is not supported.' %
                             username)
                    handle_exception(Exception(e_msg), request)
            email = request.data.get('email', None)
            new_pw = request.data.get('password', None)
            shell = request.data.get('shell', None)
            public_key = self._validate_public_key(request)
            admin = request.data.get('admin', False)
            if (User.objects.filter(username=username).exists()):
                u = User.objects.get(username=username)
                if (admin is True):
                    if (u.user is None):
                        if (new_pw is None):
                            e_msg = ('password reset is required to enable admin '
                                     'access. please provide a new password')
                            handle_exception(Exception(e_msg), request)
                        auser = DjangoUser.objects.create_user(username,
                                                               None, new_pw)
                        auser.is_active = True
                        auser.save()
                        u.user = auser
                        u.save()
                    elif (new_pw is not None):
                        u.user.set_password(new_pw)
                        u.user.save()
                elif (u.user is not None):
                    auser = u.user
                    u.user = None
                    auser.delete()

                u.public_key = public_key
                if (email is not None and email != ''):
                    u.email = email
                if (shell is not None and shell != u.shell):
                    u.shell = shell
                u.save()

            sysusers = combined_users()
            suser = None
            for u in sysusers:
                if (u.username == username):
                    suser = u
                    if (new_pw is not None):
                        usermod(username, new_pw)
                        smbpasswd(username, new_pw)
                    if (shell is not None):
                        update_shell(username, shell)
                    if (public_key is not None):
                        add_ssh_key(username, public_key)
                    break
            if (suser is None):
                e_msg = ('User(%s) does not exist' % username)
                handle_exception(Exception(e_msg), request)

            return Response(SUserSerializer(suser).data)
Ejemplo n.º 4
0
 def get_queryset(self, *args, **kwargs):
     if "username" in kwargs:
         self.paginate_by = 0
         try:
             return User.objects.get(username=kwargs["username"])
         except:
             return []
     return combined_users()
Ejemplo n.º 5
0
 def get_queryset(self, *args, **kwargs):
     if ('username' in self.kwargs):
         self.paginate_by = 0
         try:
             return User.objects.get(username=self.kwargs['username'])
         except:
             return []
     return combined_users()
Ejemplo n.º 6
0
 def get_queryset(self, *args, **kwargs):
     if ('username' in self.kwargs):
         self.paginate_by = 0
         try:
             return User.objects.get(username=self.kwargs['username'])
         except:
             return []
     return combined_users()
Ejemplo n.º 7
0
    def put(self, request, username):
        if username in self.exclude_list:
            if username != "root":
                e_msg = "Editing restricted user(%s) is not supported." % username
                handle_exception(Exception(e_msg), request)
        email = request.DATA.get("email", None)
        new_pw = request.DATA.get("password", None)
        shell = request.DATA.get("shell", None)
        public_key = self._validate_public_key(request)
        admin = request.DATA.get("admin", False)
        if User.objects.filter(username=username).exists():
            u = User.objects.get(username=username)
            if admin is True:
                if u.user is None:
                    if new_pw is None:
                        e_msg = "password reset is required to enable admin " "access. please provide a new password"
                        handle_exception(Exception(e_msg), request)
                    auser = DjangoUser.objects.create_user(username, None, new_pw)
                    auser.is_active = True
                    auser.save()
                    u.user = auser
                    u.save()
                elif new_pw is not None:
                    u.user.set_password(new_pw)
                    u.user.save()
            elif u.user is not None:
                auser = u.user
                u.user = None
                auser.delete()

            u.public_key = public_key
            if email is not None and email != "":
                u.email = email
            if shell is not None and shell != u.shell:
                u.shell = shell
            u.save()

        sysusers = combined_users()
        suser = None
        for u in sysusers:
            if u.username == username:
                suser = u
                if new_pw is not None:
                    usermod(username, new_pw)
                    smbpasswd(username, new_pw)
                if shell is not None:
                    update_shell(username, shell)
                if public_key is not None:
                    add_ssh_key(username, public_key)
                break
        if suser is None:
            e_msg = "User(%s) does not exist" % username
            handle_exception(Exception(e_msg), request)

        return Response(SUserSerializer(suser).data)
Ejemplo n.º 8
0
    def post(self, request):
        try:
            invar = self._validate_input(request)
            # Check that a django user with the same name does not exist
            e_msg = "user: %s already exists. Please choose a different" " username" % invar["username"]
            if DjangoUser.objects.filter(username=invar["username"]).exists():
                handle_exception(Exception(e_msg), request)
            users = combined_users()
            for u in users:
                if u.username == invar["username"]:
                    handle_exception(Exception(e_msg), request)
                if u.uid == invar["uid"]:
                    e_msg = "uid: %d already exists." % invar["uid"]
                    handle_exception(Exception(e_msg), request)

            groups = combined_groups()
            invar["gid"] = None
            admin_group = None
            if invar["group"] is not None:
                for g in groups:
                    if g.groupname == invar["group"]:
                        invar["gid"] = g.gid
                        admin_group = g
                        break

            if invar["admin"]:
                # Create Django user
                auser = DjangoUser.objects.create_user(invar["username"], None, invar["password"])
                auser.is_active = True
                auser.save()
                invar["user"] = auser

            useradd(invar["username"], invar["shell"], uid=invar["uid"], gid=invar["gid"])
            pw_entries = pwd.getpwnam(invar["username"])
            invar["uid"] = pw_entries[2]
            invar["gid"] = pw_entries[3]
            usermod(invar["username"], invar["password"])
            smbpasswd(invar["username"], invar["password"])
            if invar["public_key"] is not None:
                add_ssh_key(invar["username"], invar["public_key"])
            del (invar["password"])
            invar["group"] = None
            if admin_group is None:
                admin_group = Group(gid=invar["gid"], groupname=invar["username"], admin=True)
                admin_group.save()
                invar["group"] = admin_group
            invar["admin"] = True
            suser = User(**invar)
            suser.save()
            return Response(SUserSerializer(suser).data)
        except RockStorAPIException:
            raise
        except Exception, e:
            handle_exception(e, request)
Ejemplo n.º 9
0
    def delete(self, request, username):
        with self._handle_exception(request):
            if request.user.username == username:
                e_msg = "Cannot delete the currently logged in user."
                handle_exception(Exception(e_msg), request)

            if username in self.exclude_list:
                e_msg = ("Delete of restricted user ({}) is not supported."
                         ).format(username)
                handle_exception(Exception(e_msg), request)

            gid = None
            if User.objects.filter(username=username).exists():
                u = User.objects.get(username=username)
                if u.user is not None:
                    u.user.delete()
                gid = u.gid
                u.delete()
            else:
                sysusers = combined_users()
                found = False
                for u in sysusers:
                    if u.username == username:
                        found = True
                        break
                if found is False:
                    e_msg = "User ({}) does not exist.".format(username)
                    handle_exception(Exception(e_msg), request)

            for g in combined_groups():
                if (g.gid == gid and g.admin
                        and not User.objects.filter(gid=gid).exists()):
                    g.delete()

            # When user deleted destroy all Pincard entries
            flush_pincard(username_to_uid(username))

            try:
                userdel(username)
            except Exception as e:
                logger.exception(e)
                e_msg = (
                    "A low level error occurred while deleting the user ({})."
                ).format(username)
                handle_exception(Exception(e_msg), request)

            return Response()
Ejemplo n.º 10
0
    def delete(self, request, username):
        with self._handle_exception(request):
            if request.user.username == username:
                e_msg = ('Cannot delete the currently logged in user')
                handle_exception(Exception(e_msg), request)

            if (username in self.exclude_list):
                e_msg = ('Delete of restricted user(%s) is not supported.' %
                         username)
                handle_exception(Exception(e_msg), request)

            gid = None
            if (User.objects.filter(username=username).exists()):
                u = User.objects.get(username=username)
                if (u.user is not None):
                    u.user.delete()
                gid = u.gid
                u.delete()
            else:
                sysusers = combined_users()
                found = False
                for u in sysusers:
                    if (u.username == username):
                        found = True
                        break
                if (found is False):
                    e_msg = ('User(%s) does not exist' % username)
                    handle_exception(Exception(e_msg), request)

            for g in combined_groups():
                if (g.gid == gid and g.admin and
                        not User.objects.filter(gid=gid).exists()):
                    g.delete()

            # When user deleted destroy all Pincard entries
            flush_pincard(username_to_uid(username))

            try:
                userdel(username)
            except Exception as e:
                logger.exception(e)
                e_msg = ('A low level error occured while deleting '
                         'the user: %s' % username)
                handle_exception(Exception(e_msg), request)

            return Response()
Ejemplo n.º 11
0
    def delete(self, request, username):
        with self._handle_exception(request):
            if request.user.username == username:
                e_msg = ('Cannot delete the currently logged in user')
                handle_exception(Exception(e_msg), request)

            if (username in self.exclude_list):
                e_msg = ('Delete of restricted user(%s) is not supported.' %
                         username)
                handle_exception(Exception(e_msg), request)

            gid = None
            if (User.objects.filter(username=username).exists()):
                u = User.objects.get(username=username)
                if (u.user is not None):
                    u.user.delete()
                gid = u.gid
                u.delete()
            else:
                sysusers = combined_users()
                found = False
                for u in sysusers:
                    if (u.username == username):
                        found = True
                        break
                if (found is False):
                    e_msg = ('User(%s) does not exist' % username)
                    handle_exception(Exception(e_msg), request)

            for g in combined_groups():
                if (g.gid == gid and g.admin
                        and not User.objects.filter(gid=gid).exists()):
                    g.delete()

            try:
                userdel(username)
            except Exception, e:
                logger.exception(e)
                e_msg = (
                    'A low level error occured while deleting the user: %s' %
                    username)
                handle_exception(Exception(e_msg), request)

            return Response()
Ejemplo n.º 12
0
    def delete(self, request, username):
        if request.user.username == username:
            e_msg = "Cannot delete the currently logged in user"
            handle_exception(Exception(e_msg), request)

        if username in self.exclude_list:
            e_msg = "Delete of restricted user(%s) is not supported." % username
            handle_exception(Exception(e_msg), request)

        gid = None
        if User.objects.filter(username=username).exists():
            u = User.objects.get(username=username)
            if u.user is not None:
                u.user.delete()
            gid = u.gid
            u.delete()
        else:
            sysusers = combined_users()
            found = False
            for u in sysusers:
                if u.username == username:
                    found = True
                    break
            if found is False:
                e_msg = "User(%s) does not exist" % username
                handle_exception(Exception(e_msg), request)

        for g in combined_groups():
            if g.gid == gid and g.admin and not User.objects.filter(gid=gid).exists():
                g.delete()

        try:
            userdel(username)
        except Exception, e:
            logger.exception(e)
            e_msg = "A low level error occured while deleting the user: %s" % username
            handle_exception(Exception(e_msg), request)
Ejemplo n.º 13
0
    def post(self, request):
        with self._handle_exception(request):

            invar = self._validate_input(request)
            # Check that a django user with the same name does not exist
            e_msg = ('User(%s) already exists. Please choose a different'
                     ' username' % invar['username'])
            if (DjangoUser.objects.filter(username=invar['username']).exists()
                    or
                    User.objects.filter(username=invar['username']).exists()):
                handle_exception(Exception(e_msg), request)
            users = combined_users()
            groups = combined_groups()
            invar['gid'] = None
            admin_group = None
            if (invar['group'] is not None):
                for g in groups:
                    if (g.groupname == invar['group']):
                        invar['gid'] = g.gid
                        admin_group = g
                        invar['group'] = g
                        break

            for u in users:
                if (u.username == invar['username']):
                    handle_exception(Exception(e_msg), request)
                elif (u.uid == invar['uid']):
                    e_msg = ('uid: %d already exists. Please choose a '
                             'different one.' % invar['uid'])
                    handle_exception(Exception(e_msg), request)

            if (invar['admin']):
                # Create Django user
                auser = DjangoUser.objects.create_user(invar['username'], None,
                                                       invar['password'])
                auser.is_active = True
                auser.save()
                invar['user'] = auser

            useradd(invar['username'],
                    invar['shell'],
                    uid=invar['uid'],
                    gid=invar['gid'])
            pw_entries = pwd.getpwnam(invar['username'])
            invar['uid'] = pw_entries[2]
            invar['gid'] = pw_entries[3]
            usermod(invar['username'], invar['password'])
            smbpasswd(invar['username'], invar['password'])
            if (invar['public_key'] is not None):
                add_ssh_key(invar['username'], invar['public_key'])
            del (invar['password'])
            if (admin_group is None):
                admin_group = Group(gid=invar['gid'],
                                    groupname=invar['username'],
                                    admin=True)
                admin_group.save()
                invar['group'] = admin_group
            suser = User(**invar)
            suser.full_clean()
            suser.save()
            return Response(SUserSerializer(suser).data)
Ejemplo n.º 14
0
    def put(self, request, username):
        with self._handle_exception(request):
            if username in self.exclude_list:
                if username != "root":
                    e_msg = ("Editing restricted user ({}) is not supported."
                             ).format(username)
                    handle_exception(Exception(e_msg), request)
            email = request.data.get("email", None)
            new_pw = request.data.get("password", None)
            shell = request.data.get("shell", None)
            public_key = self._validate_public_key(request)
            cur_public_key = None
            admin = request.data.get("admin", False)
            if User.objects.filter(username=username).exists():
                u = User.objects.get(username=username)
                if admin is True:
                    if u.user is None:
                        if new_pw is None:
                            e_msg = ("Password reset is required to "
                                     "enable admin access. Please provide "
                                     "a new password.")
                            handle_exception(Exception(e_msg), request)
                        auser = DjangoUser.objects.create_user(
                            username, None, new_pw)
                        auser.is_active = True
                        auser.save()
                        u.user = auser
                        u.full_clean()
                        u.save()
                    elif new_pw is not None:
                        u.user.set_password(new_pw)
                        u.user.save()
                else:
                    if u.user is not None:
                        auser = u.user
                        u.user = None
                        auser.delete()
                u.admin = admin
                if u.public_key is not None and u.public_key != public_key:
                    cur_public_key = u.public_key
                u.public_key = public_key
                if email is not None and email != "":
                    u.email = email
                if shell is not None and shell != u.shell:
                    u.shell = shell
                u.full_clean()
                u.save()

            sysusers = combined_users()
            suser = None
            for u in sysusers:
                if u.username == username:
                    suser = u
                    if new_pw is not None:
                        usermod(username, new_pw)
                        smbpasswd(username, new_pw)
                    if shell is not None:
                        update_shell(username, shell)
                    add_ssh_key(username, public_key, cur_public_key)
                    break
            if suser is None:
                e_msg = "User ({}) does not exist.".format(username)
                handle_exception(Exception(e_msg), request)

            return Response(SUserSerializer(suser).data)
Ejemplo n.º 15
0
    def post(self, request):
        with self._handle_exception(request):

            invar = self._validate_input(request)
            # Check that a django user with the same name does not exist
            e_msg = (
                "User ({}) already exists. Please choose a different username."
            ).format(invar["username"])
            if (DjangoUser.objects.filter(username=invar["username"]).exists()
                    or
                    User.objects.filter(username=invar["username"]).exists()):

                handle_exception(Exception(e_msg), request, status_code=400)
            users = combined_users()
            groups = combined_groups()
            # As we have not yet established a pre-existing group, set to None.
            admin_group = None
            if invar["group"] is not None:
                # We have a group setting so search for existing group name
                # match. Matching by group name has precedence over gid.
                for g in groups:
                    if g.groupname == invar["group"]:
                        # We have an existing group name match in invar
                        # so overwrite requested gid to match existing gid.
                        invar["gid"] = g.gid
                        # Set the admin_group to our existing group object.
                        admin_group = g
                        admin_group.save()
                        invar["group"] = g  # exchange name for db group item.
                        break

            for u in users:
                if u.username == invar["username"]:
                    handle_exception(Exception(e_msg),
                                     request,
                                     status_code=400)
                elif u.uid == invar["uid"]:
                    e_msg = (
                        "UID ({}) already exists. Please choose a different one."
                    ).format(invar["uid"])
                    handle_exception(Exception(e_msg), request)

            if invar["admin"]:
                # Create Django user
                auser = DjangoUser.objects.create_user(invar["username"], None,
                                                       invar["password"])
                auser.is_active = True
                auser.save()
                invar["user"] = auser

            useradd(invar["username"],
                    invar["shell"],
                    uid=invar["uid"],
                    gid=invar["gid"])
            pw_entries = pwd.getpwnam(invar["username"])
            invar["uid"] = pw_entries[2]
            invar["gid"] = pw_entries[3]
            usermod(invar["username"], invar["password"])
            smbpasswd(invar["username"], invar["password"])
            if invar["public_key"] is not None:
                add_ssh_key(invar["username"], invar["public_key"])
            del invar["password"]
            if admin_group is None:
                # We have no identified pre-existing group by name but there
                # could still be an existing group match by gid, if so we
                # use that group object as our new User.group foreign key link.
                if Group.objects.filter(gid=invar["gid"]).exists():
                    admin_group = Group.objects.get(gid=invar["gid"])
                else:
                    # As we are creating a new group we set admin=True to
                    # flag this group as administered by Rockstor.
                    if invar["group"] is None:
                        admin_group = Group(gid=invar["gid"],
                                            groupname=invar["username"],
                                            admin=True)
                    else:
                        admin_group = Group(gid=invar["gid"],
                                            groupname=invar["group"],
                                            admin=True)
                    admin_group.save()  # save our new group object.
                # set our invar dict group entry to our admin_group object.
                invar["group"] = admin_group
            # now we create our user object based on the contents of invar[]
            suser = User(**invar)
            # validate and save our suser object.
            suser.full_clean()
            suser.save()
            return Response(SUserSerializer(suser).data)
Ejemplo n.º 16
0
 def get_queryset(self, *args, **kwargs):
     with self._handle_exception(self.request):
         return combined_users()
Ejemplo n.º 17
0
 def get_queryset(self, *args, **kwargs):
     with self._handle_exception(self.request):
         return combined_users()