def authenticate_user(self, name, password):
"""Return the tuple of the user name, description, and blob if the user
was successfully authenticated."""
try:
key, name, description, blob = ProxyServer.authenticate_user(
name, password)
# We don't save the cache because we should be about to read the
# real permission ids and we do it then.
ProxyServer.cache = description, blob, []
except Exception, e:
# See if we couldn't connect to the server.
if not isinstance(e, socket.error):
raise UserStorageError(ProxyServer.error(e))
err, _ = e.args
if err != errno.ECONNREFUSED:
raise UserStorageError(ProxyServer.error(e))
try:
ok = ProxyServer.read_cache()
except Exception, e:
raise UserStorageError(str(e))
def authenticate_user(self, name, password):
"""Return the tuple of the user name, description, and blob if the user
was successfully authenticated."""
try:
key, name, description, blob = ProxyServer.authenticate_user(name,
password)
# We don't save the cache because we should be about to read the
# real permission ids and we do it then.
ProxyServer.cache = description, blob, []
except Exception, e:
# See if we couldn't connect to the server.
if not isinstance(e, socket.error):
raise UserStorageError(ProxyServer.error(e))
err, _ = e.args
if err != errno.ECONNREFUSED:
raise UserStorageError(ProxyServer.error(e))
try:
ok = ProxyServer.read_cache()
except Exception, e:
raise UserStorageError(str(e))
def is_empty(self):
"""See if the database is empty."""
try:
return ProxyServer.is_empty_policy()
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def delete_user(self, name):
"""Delete a new user."""
try:
ProxyServer.delete_user(name, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def get_assignment(self, user_name):
"""Return the details of the assignment for the given user name."""
try:
return ProxyServer.get_assignment(user_name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def delete_role(self, name):
"""Delete a role."""
try:
ProxyServer.delete_role(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def all_roles(self):
"""Return a list of all roles."""
try:
return ProxyServer.all_roles(ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def add_role(self, name, description, perm_ids):
"""Add a new role."""
try:
ProxyServer.add_role(name, description, perm_ids, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def add_role(self, name, description, perm_ids):
"""Add a new role."""
try:
ProxyServer.add_role(name, description, perm_ids, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def modify_role(self, name, description, perm_ids):
"""Update the description and permissions for the given role."""
try:
ProxyServer.modify_role(name, description, perm_ids, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def add_user(self, name, description, password):
"""Add a new user."""
try:
ProxyServer.add_user(name, description, password, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def delete_user(self, name):
"""Delete a new user."""
try:
ProxyServer.delete_user(name, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def set_assignment(self, user_name, role_names):
"""Save the roles assigned to a user."""
try:
ProxyServer.set_assignment(user_name, role_names, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def is_empty(self):
"""See if the database is empty."""
try:
return ProxyServer.is_empty_policy()
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def get_assignment(self, user_name):
"""Return the details of the assignment for the given user name."""
try:
return ProxyServer.get_assignment(user_name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def delete_role(self, name):
"""Delete a role."""
try:
ProxyServer.delete_role(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def all_roles(self):
"""Return a list of all roles."""
try:
return ProxyServer.all_roles(ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def add_user(self, name, description, password):
"""Add a new user."""
try:
ProxyServer.add_user(name, description, password, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def set_assignment(self, user_name, role_names):
"""Save the roles assigned to a user."""
try:
ProxyServer.set_assignment(user_name, role_names, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def modify_user(self, name, description, password):
"""Update the description and password for the given user."""
try:
ProxyServer.modify_user(name, description, password,
ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def matching_roles(self, name):
"""Return the full name, description and permissions of all the roles
that match the given name."""
try:
return ProxyServer.matching_roles(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def matching_roles(self, name):
"""Return the full name, description and permissions of all the roles
that match the given name."""
try:
return ProxyServer.matching_roles(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def modify_role(self, name, description, perm_ids):
"""Update the description and permissions for the given role."""
try:
ProxyServer.modify_role(name, description, perm_ids,
ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
def matching_users(self, name):
"""Return the full name and description of all the users that match the
given name."""
try:
return ProxyServer.matching_users(name, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def modify_user(self, name, description, password):
"""Update the description and password for the given user."""
try:
ProxyServer.modify_user(name, description, password,
ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def matching_users(self, name):
"""Return the full name and description of all the users that match the
given name."""
try:
return ProxyServer.matching_users(name, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def unauthenticate_user(self, user):
"""Unauthenticate the given user."""
if ProxyServer.key is None:
ok = True
else:
try:
ok = ProxyServer.unauthenticate_user(ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def unauthenticate_user(self, user):
"""Unauthenticate the given user."""
if ProxyServer.key is None:
ok = True
else:
try:
ok = ProxyServer.unauthenticate_user(ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def update_password(self, name, password):
"""Update the password for the given user."""
# If the remote server disappeared after the capabilities were read but
# before the user was authenticated then we could get here.
if ProxyServer.key is None:
raise UserStorageError("It is not possible to change password "
"when disconnected from the permissions server.")
try:
ProxyServer.update_password(name, password, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def update_password(self, name, password):
"""Update the password for the given user."""
# If the remote server disappeared after the capabilities were read but
# before the user was authenticated then we could get here.
if ProxyServer.key is None:
raise UserStorageError(
"It is not possible to change password "
"when disconnected from the permissions server.")
try:
ProxyServer.update_password(name, password, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
def get_policy(self, name):
"""Return the details of the policy for the given user name."""
description, blob, perm_ids = ProxyServer.cache
if ProxyServer.key is not None:
try:
name, perm_ids = ProxyServer.get_policy(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
# Save the permissions ids in the persistent cache.
ProxyServer.cache = description, blob, perm_ids
try:
ProxyServer.write_cache()
except:
pass
def get_policy(self, name):
"""Return the details of the policy for the given user name."""
description, blob, perm_ids = ProxyServer.cache
if ProxyServer.key is not None:
try:
name, perm_ids = ProxyServer.get_policy(name, ProxyServer.key)
except Exception, e:
raise PolicyStorageError(ProxyServer.error(e))
# Save the permissions ids in the persistent cache.
ProxyServer.cache = description, blob, perm_ids
try:
ProxyServer.write_cache()
except:
pass
def update_blob(self, name, blob):
"""Update the blob for the given user."""
# Update the cache.
description, _, perm_ids = ProxyServer.cache
ProxyServer.cache = description, blob, perm_ids
if ProxyServer.key is None:
# Write the cache and tell the user about any errors.
ProxyServer.write_cache()
else:
try:
ProxyServer.update_blob(name, blob, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
# Write the cache but ignore any errors.
try:
ProxyServer.write_cache()
except:
pass
def update_blob(self, name, blob):
"""Update the blob for the given user."""
# Update the cache.
description, _, perm_ids = ProxyServer.cache
ProxyServer.cache = description, blob, perm_ids
if ProxyServer.key is None:
# Write the cache and tell the user about any errors.
ProxyServer.write_cache()
else:
try:
ProxyServer.update_blob(name, blob, ProxyServer.key)
except Exception, e:
raise UserStorageError(ProxyServer.error(e))
# Write the cache but ignore any errors.
try:
ProxyServer.write_cache()
except:
pass
# See if we couldn't connect to the server.
if not isinstance(e, socket.error):
raise UserStorageError(ProxyServer.error(e))
err, _ = e.args
if err != errno.ECONNREFUSED:
raise UserStorageError(ProxyServer.error(e))
try:
ok = ProxyServer.read_cache()
except Exception, e:
raise UserStorageError(str(e))
if not ok:
raise UserStorageError(ProxyServer.error(e))
# We are in "disconnect" mode.
key = None
description, blob, _ = ProxyServer.cache
ProxyServer.key = key
return name, description, blob
def delete_user(self, name):
"""Delete a new user."""
try:
ProxyServer.delete_user(name, ProxyServer.key)
except Exception, e:
# See if we couldn't connect to the server.
if not isinstance(e, socket.error):
raise UserStorageError(ProxyServer.error(e))
err, _ = e.args
if err != errno.ECONNREFUSED:
raise UserStorageError(ProxyServer.error(e))
try:
ok = ProxyServer.read_cache()
except Exception, e:
raise UserStorageError(str(e))
if not ok:
raise UserStorageError(ProxyServer.error(e))
# We are in "disconnect" mode.
key = None
description, blob, _ = ProxyServer.cache
ProxyServer.key = key
return name, description, blob
def delete_user(self, name):
"""Delete a new user."""
try:
ProxyServer.delete_user(name, ProxyServer.key)
except Exception, e:
