def put(self, request, username):
with self._handle_exception(request):
if (username in self.exclude_list):
if (username != 'root'):
e_msg = ('Editing restricted user(%s) is not supported.' %
username)
handle_exception(Exception(e_msg), request)
email = request.data.get('email', None)
new_pw = request.data.get('password', None)
shell = request.data.get('shell', None)
public_key = self._validate_public_key(request)
admin = request.data.get('admin', False)
if (User.objects.filter(username=username).exists()):
u = User.objects.get(username=username)
if (admin is True):
if (u.user is None):
if (new_pw is None):
e_msg = ('password reset is required to enable admin '
'access. please provide a new password')
handle_exception(Exception(e_msg), request)
auser = DjangoUser.objects.create_user(username,
None, new_pw)
auser.is_active = True
auser.save()
u.user = auser
u.save()
elif (new_pw is not None):
u.user.set_password(new_pw)
u.user.save()
elif (u.user is not None):
auser = u.user
u.user = None
auser.delete()
u.public_key = public_key
if (email is not None and email != ''):
u.email = email
if (shell is not None and shell != u.shell):
u.shell = shell
u.save()
sysusers = combined_users()
suser = None
for u in sysusers:
if (u.username == username):
suser = u
if (new_pw is not None):
usermod(username, new_pw)
smbpasswd(username, new_pw)
if (shell is not None):
update_shell(username, shell)
if (public_key is not None):
add_ssh_key(username, public_key)
break
if (suser is None):
e_msg = ('User(%s) does not exist' % username)
handle_exception(Exception(e_msg), request)
return Response(SUserSerializer(suser).data)
def post(self, request):
with self._handle_exception(request):
invar = self._validate_input(request)
# Check that a django user with the same name does not exist
e_msg = ('User(%s) already exists. Please choose a different'
' username' % invar['username'])
if (DjangoUser.objects.filter(
username=invar['username']).exists() or
User.objects.filter(username=invar['username']).exists()):
handle_exception(Exception(e_msg), request)
users = combined_users()
groups = combined_groups()
invar['gid'] = None
admin_group = None
if (invar['group'] is not None):
for g in groups:
if (g.groupname == invar['group']):
invar['gid'] = g.gid
admin_group = g
invar['group'] = g
break
for u in users:
if (u.username == invar['username']):
handle_exception(Exception(e_msg), request)
elif (u.uid == invar['uid']):
e_msg = ('uid: %d already exists. Please choose a '
'different one.' % invar['uid'])
handle_exception(Exception(e_msg), request)
if (invar['admin']):
# Create Django user
auser = DjangoUser.objects.create_user(invar['username'],
None, invar['password'])
auser.is_active = True
auser.save()
invar['user'] = auser
useradd(invar['username'], invar['shell'], uid=invar['uid'],
gid=invar['gid'])
pw_entries = pwd.getpwnam(invar['username'])
invar['uid'] = pw_entries[2]
invar['gid'] = pw_entries[3]
usermod(invar['username'], invar['password'])
smbpasswd(invar['username'], invar['password'])
if (invar['public_key'] is not None):
add_ssh_key(invar['username'], invar['public_key'])
del(invar['password'])
if (admin_group is None):
admin_group = Group(gid=invar['gid'],
groupname=invar['username'],
admin=True)
admin_group.save()
invar['group'] = admin_group
suser = User(**invar)
suser.full_clean()
suser.save()
return Response(SUserSerializer(suser).data)
def put(self, request, username):
with self._handle_exception(request):
if (username in self.exclude_list):
if (username != 'root'):
e_msg = ('Editing restricted user(%s) is not supported.' %
username)
handle_exception(Exception(e_msg), request)
email = request.data.get('email', None)
new_pw = request.data.get('password', None)
shell = request.data.get('shell', None)
public_key = self._validate_public_key(request)
admin = request.data.get('admin', False)
if (User.objects.filter(username=username).exists()):
u = User.objects.get(username=username)
if (admin is True):
if (u.user is None):
if (new_pw is None):
e_msg = ('password reset is required to enable admin '
'access. please provide a new password')
handle_exception(Exception(e_msg), request)
auser = DjangoUser.objects.create_user(username,
None, new_pw)
auser.is_active = True
auser.save()
u.user = auser
u.save()
elif (new_pw is not None):
u.user.set_password(new_pw)
u.user.save()
elif (u.user is not None):
auser = u.user
u.user = None
auser.delete()
u.public_key = public_key
if (email is not None and email != ''):
u.email = email
if (shell is not None and shell != u.shell):
u.shell = shell
u.save()
sysusers = combined_users()
suser = None
for u in sysusers:
if (u.username == username):
suser = u
if (new_pw is not None):
usermod(username, new_pw)
smbpasswd(username, new_pw)
if (shell is not None):
update_shell(username, shell)
if (public_key is not None):
add_ssh_key(username, public_key)
break
if (suser is None):
e_msg = ('User(%s) does not exist' % username)
handle_exception(Exception(e_msg), request)
return Response(SUserSerializer(suser).data)
def get_queryset(self, *args, **kwargs):
if "username" in kwargs:
self.paginate_by = 0
try:
return User.objects.get(username=kwargs["username"])
except:
return []
return combined_users()
def get_queryset(self, *args, **kwargs):
if ('username' in self.kwargs):
self.paginate_by = 0
try:
return User.objects.get(username=self.kwargs['username'])
except:
return []
return combined_users()
def get_queryset(self, *args, **kwargs):
if ('username' in self.kwargs):
self.paginate_by = 0
try:
return User.objects.get(username=self.kwargs['username'])
except:
return []
return combined_users()
def put(self, request, username):
if username in self.exclude_list:
if username != "root":
e_msg = "Editing restricted user(%s) is not supported." % username
handle_exception(Exception(e_msg), request)
email = request.DATA.get("email", None)
new_pw = request.DATA.get("password", None)
shell = request.DATA.get("shell", None)
public_key = self._validate_public_key(request)
admin = request.DATA.get("admin", False)
if User.objects.filter(username=username).exists():
u = User.objects.get(username=username)
if admin is True:
if u.user is None:
if new_pw is None:
e_msg = "password reset is required to enable admin " "access. please provide a new password"
handle_exception(Exception(e_msg), request)
auser = DjangoUser.objects.create_user(username, None, new_pw)
auser.is_active = True
auser.save()
u.user = auser
u.save()
elif new_pw is not None:
u.user.set_password(new_pw)
u.user.save()
elif u.user is not None:
auser = u.user
u.user = None
auser.delete()
u.public_key = public_key
if email is not None and email != "":
u.email = email
if shell is not None and shell != u.shell:
u.shell = shell
u.save()
sysusers = combined_users()
suser = None
for u in sysusers:
if u.username == username:
suser = u
if new_pw is not None:
usermod(username, new_pw)
smbpasswd(username, new_pw)
if shell is not None:
update_shell(username, shell)
if public_key is not None:
add_ssh_key(username, public_key)
break
if suser is None:
e_msg = "User(%s) does not exist" % username
handle_exception(Exception(e_msg), request)
return Response(SUserSerializer(suser).data)
def post(self, request):
try:
invar = self._validate_input(request)
# Check that a django user with the same name does not exist
e_msg = "user: %s already exists. Please choose a different" " username" % invar["username"]
if DjangoUser.objects.filter(username=invar["username"]).exists():
handle_exception(Exception(e_msg), request)
users = combined_users()
for u in users:
if u.username == invar["username"]:
handle_exception(Exception(e_msg), request)
if u.uid == invar["uid"]:
e_msg = "uid: %d already exists." % invar["uid"]
handle_exception(Exception(e_msg), request)
groups = combined_groups()
invar["gid"] = None
admin_group = None
if invar["group"] is not None:
for g in groups:
if g.groupname == invar["group"]:
invar["gid"] = g.gid
admin_group = g
break
if invar["admin"]:
# Create Django user
auser = DjangoUser.objects.create_user(invar["username"], None, invar["password"])
auser.is_active = True
auser.save()
invar["user"] = auser
useradd(invar["username"], invar["shell"], uid=invar["uid"], gid=invar["gid"])
pw_entries = pwd.getpwnam(invar["username"])
invar["uid"] = pw_entries[2]
invar["gid"] = pw_entries[3]
usermod(invar["username"], invar["password"])
smbpasswd(invar["username"], invar["password"])
if invar["public_key"] is not None:
add_ssh_key(invar["username"], invar["public_key"])
del (invar["password"])
invar["group"] = None
if admin_group is None:
admin_group = Group(gid=invar["gid"], groupname=invar["username"], admin=True)
admin_group.save()
invar["group"] = admin_group
invar["admin"] = True
suser = User(**invar)
suser.save()
return Response(SUserSerializer(suser).data)
except RockStorAPIException:
raise
except Exception, e:
handle_exception(e, request)
def delete(self, request, username):
with self._handle_exception(request):
if request.user.username == username:
e_msg = "Cannot delete the currently logged in user."
handle_exception(Exception(e_msg), request)
if username in self.exclude_list:
e_msg = ("Delete of restricted user ({}) is not supported."
).format(username)
handle_exception(Exception(e_msg), request)
gid = None
if User.objects.filter(username=username).exists():
u = User.objects.get(username=username)
if u.user is not None:
u.user.delete()
gid = u.gid
u.delete()
else:
sysusers = combined_users()
found = False
for u in sysusers:
if u.username == username:
found = True
break
if found is False:
e_msg = "User ({}) does not exist.".format(username)
handle_exception(Exception(e_msg), request)
for g in combined_groups():
if (g.gid == gid and g.admin
and not User.objects.filter(gid=gid).exists()):
g.delete()
# When user deleted destroy all Pincard entries
flush_pincard(username_to_uid(username))
try:
userdel(username)
except Exception as e:
logger.exception(e)
e_msg = (
"A low level error occurred while deleting the user ({})."
).format(username)
handle_exception(Exception(e_msg), request)
return Response()
def delete(self, request, username):
with self._handle_exception(request):
if request.user.username == username:
e_msg = ('Cannot delete the currently logged in user')
handle_exception(Exception(e_msg), request)
if (username in self.exclude_list):
e_msg = ('Delete of restricted user(%s) is not supported.' %
username)
handle_exception(Exception(e_msg), request)
gid = None
if (User.objects.filter(username=username).exists()):
u = User.objects.get(username=username)
if (u.user is not None):
u.user.delete()
gid = u.gid
u.delete()
else:
sysusers = combined_users()
found = False
for u in sysusers:
if (u.username == username):
found = True
break
if (found is False):
e_msg = ('User(%s) does not exist' % username)
handle_exception(Exception(e_msg), request)
for g in combined_groups():
if (g.gid == gid and g.admin and
not User.objects.filter(gid=gid).exists()):
g.delete()
# When user deleted destroy all Pincard entries
flush_pincard(username_to_uid(username))
try:
userdel(username)
except Exception as e:
logger.exception(e)
e_msg = ('A low level error occured while deleting '
'the user: %s' % username)
handle_exception(Exception(e_msg), request)
return Response()
def delete(self, request, username):
with self._handle_exception(request):
if request.user.username == username:
e_msg = ('Cannot delete the currently logged in user')
handle_exception(Exception(e_msg), request)
if (username in self.exclude_list):
e_msg = ('Delete of restricted user(%s) is not supported.' %
username)
handle_exception(Exception(e_msg), request)
gid = None
if (User.objects.filter(username=username).exists()):
u = User.objects.get(username=username)
if (u.user is not None):
u.user.delete()
gid = u.gid
u.delete()
else:
sysusers = combined_users()
found = False
for u in sysusers:
if (u.username == username):
found = True
break
if (found is False):
e_msg = ('User(%s) does not exist' % username)
handle_exception(Exception(e_msg), request)
for g in combined_groups():
if (g.gid == gid and g.admin
and not User.objects.filter(gid=gid).exists()):
g.delete()
try:
userdel(username)
except Exception, e:
logger.exception(e)
e_msg = (
'A low level error occured while deleting the user: %s' %
username)
handle_exception(Exception(e_msg), request)
return Response()
def delete(self, request, username):
if request.user.username == username:
e_msg = "Cannot delete the currently logged in user"
handle_exception(Exception(e_msg), request)
if username in self.exclude_list:
e_msg = "Delete of restricted user(%s) is not supported." % username
handle_exception(Exception(e_msg), request)
gid = None
if User.objects.filter(username=username).exists():
u = User.objects.get(username=username)
if u.user is not None:
u.user.delete()
gid = u.gid
u.delete()
else:
sysusers = combined_users()
found = False
for u in sysusers:
if u.username == username:
found = True
break
if found is False:
e_msg = "User(%s) does not exist" % username
handle_exception(Exception(e_msg), request)
for g in combined_groups():
if g.gid == gid and g.admin and not User.objects.filter(gid=gid).exists():
g.delete()
try:
userdel(username)
except Exception, e:
logger.exception(e)
e_msg = "A low level error occured while deleting the user: %s" % username
handle_exception(Exception(e_msg), request)
def post(self, request):
with self._handle_exception(request):
invar = self._validate_input(request)
# Check that a django user with the same name does not exist
e_msg = ('User(%s) already exists. Please choose a different'
' username' % invar['username'])
if (DjangoUser.objects.filter(username=invar['username']).exists()
or
User.objects.filter(username=invar['username']).exists()):
handle_exception(Exception(e_msg), request)
users = combined_users()
groups = combined_groups()
invar['gid'] = None
admin_group = None
if (invar['group'] is not None):
for g in groups:
if (g.groupname == invar['group']):
invar['gid'] = g.gid
admin_group = g
invar['group'] = g
break
for u in users:
if (u.username == invar['username']):
handle_exception(Exception(e_msg), request)
elif (u.uid == invar['uid']):
e_msg = ('uid: %d already exists. Please choose a '
'different one.' % invar['uid'])
handle_exception(Exception(e_msg), request)
if (invar['admin']):
# Create Django user
auser = DjangoUser.objects.create_user(invar['username'], None,
invar['password'])
auser.is_active = True
auser.save()
invar['user'] = auser
useradd(invar['username'],
invar['shell'],
uid=invar['uid'],
gid=invar['gid'])
pw_entries = pwd.getpwnam(invar['username'])
invar['uid'] = pw_entries[2]
invar['gid'] = pw_entries[3]
usermod(invar['username'], invar['password'])
smbpasswd(invar['username'], invar['password'])
if (invar['public_key'] is not None):
add_ssh_key(invar['username'], invar['public_key'])
del (invar['password'])
if (admin_group is None):
admin_group = Group(gid=invar['gid'],
groupname=invar['username'],
admin=True)
admin_group.save()
invar['group'] = admin_group
suser = User(**invar)
suser.full_clean()
suser.save()
return Response(SUserSerializer(suser).data)
def put(self, request, username):
with self._handle_exception(request):
if username in self.exclude_list:
if username != "root":
e_msg = ("Editing restricted user ({}) is not supported."
).format(username)
handle_exception(Exception(e_msg), request)
email = request.data.get("email", None)
new_pw = request.data.get("password", None)
shell = request.data.get("shell", None)
public_key = self._validate_public_key(request)
cur_public_key = None
admin = request.data.get("admin", False)
if User.objects.filter(username=username).exists():
u = User.objects.get(username=username)
if admin is True:
if u.user is None:
if new_pw is None:
e_msg = ("Password reset is required to "
"enable admin access. Please provide "
"a new password.")
handle_exception(Exception(e_msg), request)
auser = DjangoUser.objects.create_user(
username, None, new_pw)
auser.is_active = True
auser.save()
u.user = auser
u.full_clean()
u.save()
elif new_pw is not None:
u.user.set_password(new_pw)
u.user.save()
else:
if u.user is not None:
auser = u.user
u.user = None
auser.delete()
u.admin = admin
if u.public_key is not None and u.public_key != public_key:
cur_public_key = u.public_key
u.public_key = public_key
if email is not None and email != "":
u.email = email
if shell is not None and shell != u.shell:
u.shell = shell
u.full_clean()
u.save()
sysusers = combined_users()
suser = None
for u in sysusers:
if u.username == username:
suser = u
if new_pw is not None:
usermod(username, new_pw)
smbpasswd(username, new_pw)
if shell is not None:
update_shell(username, shell)
add_ssh_key(username, public_key, cur_public_key)
break
if suser is None:
e_msg = "User ({}) does not exist.".format(username)
handle_exception(Exception(e_msg), request)
return Response(SUserSerializer(suser).data)
def post(self, request):
with self._handle_exception(request):
invar = self._validate_input(request)
# Check that a django user with the same name does not exist
e_msg = (
"User ({}) already exists. Please choose a different username."
).format(invar["username"])
if (DjangoUser.objects.filter(username=invar["username"]).exists()
or
User.objects.filter(username=invar["username"]).exists()):
handle_exception(Exception(e_msg), request, status_code=400)
users = combined_users()
groups = combined_groups()
# As we have not yet established a pre-existing group, set to None.
admin_group = None
if invar["group"] is not None:
# We have a group setting so search for existing group name
# match. Matching by group name has precedence over gid.
for g in groups:
if g.groupname == invar["group"]:
# We have an existing group name match in invar
# so overwrite requested gid to match existing gid.
invar["gid"] = g.gid
# Set the admin_group to our existing group object.
admin_group = g
admin_group.save()
invar["group"] = g # exchange name for db group item.
break
for u in users:
if u.username == invar["username"]:
handle_exception(Exception(e_msg),
request,
status_code=400)
elif u.uid == invar["uid"]:
e_msg = (
"UID ({}) already exists. Please choose a different one."
).format(invar["uid"])
handle_exception(Exception(e_msg), request)
if invar["admin"]:
# Create Django user
auser = DjangoUser.objects.create_user(invar["username"], None,
invar["password"])
auser.is_active = True
auser.save()
invar["user"] = auser
useradd(invar["username"],
invar["shell"],
uid=invar["uid"],
gid=invar["gid"])
pw_entries = pwd.getpwnam(invar["username"])
invar["uid"] = pw_entries[2]
invar["gid"] = pw_entries[3]
usermod(invar["username"], invar["password"])
smbpasswd(invar["username"], invar["password"])
if invar["public_key"] is not None:
add_ssh_key(invar["username"], invar["public_key"])
del invar["password"]
if admin_group is None:
# We have no identified pre-existing group by name but there
# could still be an existing group match by gid, if so we
# use that group object as our new User.group foreign key link.
if Group.objects.filter(gid=invar["gid"]).exists():
admin_group = Group.objects.get(gid=invar["gid"])
else:
# As we are creating a new group we set admin=True to
# flag this group as administered by Rockstor.
if invar["group"] is None:
admin_group = Group(gid=invar["gid"],
groupname=invar["username"],
admin=True)
else:
admin_group = Group(gid=invar["gid"],
groupname=invar["group"],
admin=True)
admin_group.save() # save our new group object.
# set our invar dict group entry to our admin_group object.
invar["group"] = admin_group
# now we create our user object based on the contents of invar[]
suser = User(**invar)
# validate and save our suser object.
suser.full_clean()
suser.save()
return Response(SUserSerializer(suser).data)
def get_queryset(self, *args, **kwargs):
with self._handle_exception(self.request):
return combined_users()
def get_queryset(self, *args, **kwargs):
with self._handle_exception(self.request):
return combined_users()
