Exemplo n.º 1
0
def open_database_connection(config_registry, pkgdbu=False, db_server=None):
    connection_info = {  # see <http://www.postgresql.org/docs/8.4/static/libpq-connect.html>
     'dbname': 'pkgdb',
    }
    if config_registry.is_true('pkgdb/requiressl'):
        connection_info['sslmode'] = 'require'
    if pkgdbu:
        # 'host' not specified -> localhost over Unix-domain socket (connection type "local")
        connection_info['user'] = '******'
        password_file = '/etc/postgresql/pkgdb.secret'
    else:
        if db_server is None:
            db_server = get_dbservername(config_registry['domainname'])
            if db_server is None:
                return None
        connection_info['host'] = db_server
        connection_info['user'] = config_registry.get(
            'pkgdb/user', '%s$' % (config_registry['hostname'], ))
        password_file = config_registry.get('pkgdb/pwdfile',
                                            '/etc/machine.secret')
    connection_info['password'] = open(password_file, 'rb').read().rstrip('\n')
    connectstring = ' '.join([
        "%s='%s'" % (
            key,
            value.replace('\\', '\\\\').replace("'", "\\'"),
        ) for (
            key,
            value,
        ) in connection_info.items()
    ])
    connection = pgdb.connect(database=connectstring)
    return connection
Exemplo n.º 2
0
def open_database_connection(config_registry, pkgdbu=False, db_server=None):
	connection_info = { # see <http://www.postgresql.org/docs/8.4/static/libpq-connect.html>
		'dbname': 'pkgdb',
		}
	if config_registry.is_true('pkgdb/requiressl'):
		connection_info['sslmode'] = 'require'
	if pkgdbu:
		# 'host' not specified -> localhost over Unix-domain socket (connection type "local")
		connection_info['user'] = '******'
		password_file = '/etc/postgresql/pkgdb.secret'
	else:
		if db_server is None:
			db_server = get_dbservername(config_registry['domainname'])
			if db_server is None:
				return None
		connection_info['host'] = db_server
		connection_info['user'] = config_registry.get('pkgdb/user', '%s$' % (config_registry['hostname'], ))
		password_file = config_registry.get('pkgdb/pwdfile', '/etc/machine.secret')
	connection_info['password'] = open(password_file, 'rb').read().rstrip('\n')
	connectstring = ' '.join(
		[
			"%s='%s'" % (key,
			             value.replace('\\', '\\\\').replace("'", "\\'"),
			             )
			for (key, value, )
			in connection_info.items()
			]
		)
	connection = pgdb.connect(database=connectstring)
	return connection
Exemplo n.º 3
0
def main():
    '''main function for univention-pkgdb-scan'''
    options = parse_options()
    if options.action == 'version':
        print '%s %s' % (
            os.path.basename(sys.argv[0]),
            '@%@package_version@%@',
        )
        return 0

    config_registry = univention.config_registry.ConfigRegistry()
    config_registry.load()

    # Datenbankzugriffsmethode ermitteln
    if options.action in PRIVILEGED_OPERATIONS:
        connection = open_database_connection(config_registry, pkgdbu=True)
    else:
        connection = open_database_connection(config_registry, pkgdbu=False)
        if connection is None:
            print 'No DB-Server-Name found.'
            return 1
    cursor = connection.cursor()

    if options.action == 'test-superuser':
        return sql_test_superuser(cursor)
    elif options.action == 'dump-systems':
        return dump_systems(cursor)
    elif options.action == 'dump-packages':
        return dump_packages(cursor)
    elif options.action == 'dump-systems-packages':
        return dump_systems_packages(cursor)
    elif options.action == 'dump-all':
        return \
            dump_systems(cursor) or \
            dump_packages(cursor) or \
            dump_systems_packages(cursor)
    elif not sql_check_privileges(cursor):
        print 'PKGDB: no privileges to access the database'
        print 'You must first add this system with --add-system on the db-server (or join the system)'
        print 'This should be done automatically by the cronjob univention-pkgdb-check'
        return 1
    elif options.action == 'add-system':
        # Systembenutzer zur Datenbank hinzufügen
        return sql_grant_system(connection, cursor, options.system)
    elif options.action == 'del-system':
        # Systembenutzer aus Datenbank entfernen
        return sql_revoke_system(connection, cursor, options.system)
    elif options.action == 'fill-testdb':
        return action_fill_testdb(connection, cursor, config_registry)
    elif options.action == 'remove-system':
        return action_remove_system(connection, cursor, options.system)
    elif not config_registry.is_true('pkgdb/scan'):
        log('univention-config-registry pkgdb/scan is not true')
        print 'The Univention Configuration Registry variable pkgdb/scan is not true.'
        return 0
    elif options.action == 'scan':
        return action_scan(connection, cursor, config_registry)
Exemplo n.º 4
0
def main():
	'''main function for univention-pkgdb-scan'''
	options = parse_options()
	if options.action == 'version':
		print '%s %s' % (os.path.basename(sys.argv[0]), '@%@package_version@%@', )
		return 0

	config_registry = univention.config_registry.ConfigRegistry()
	config_registry.load()

	# Datenbankzugriffsmethode ermitteln
	if options.action in PRIVILEGED_OPERATIONS:
		connection = open_database_connection(config_registry, pkgdbu=True)
	else:
		connection = open_database_connection(config_registry, pkgdbu=False)
		if connection is None:
			print 'No DB-Server-Name found.'
			return 1
	cursor = connection.cursor()

	if options.action == 'test-superuser':
		return sql_test_superuser(cursor)
	elif options.action == 'dump-systems':
		return dump_systems(cursor)
	elif options.action == 'dump-packages':
		return dump_packages(cursor)
	elif options.action == 'dump-systems-packages':
		return dump_systems_packages(cursor)
	elif options.action == 'dump-all':
		return \
		    dump_systems(cursor) or \
		    dump_packages(cursor) or \
		    dump_systems_packages(cursor)
	elif not sql_check_privileges(cursor):
		print 'PKGDB: no privileges to access the database'
		print 'You must first add this system with --add-system on the db-server (or join the system)'
		print 'This should be done automatically by the cronjob univention-pkgdb-check'
		return 1
	elif options.action == 'add-system':
		# Systembenutzer zur Datenbank hinzufügen
		return sql_grant_system(connection, cursor, options.system)
	elif options.action == 'del-system':
		# Systembenutzer aus Datenbank entfernen
		return sql_revoke_system(connection, cursor, options.system)
	elif options.action == 'fill-testdb':
		return action_fill_testdb(connection, cursor, config_registry)
	elif options.action == 'remove-system':
		return action_remove_system(connection, cursor, options.system)
	elif not config_registry.is_true('pkgdb/scan'):
		log('univention-config-registry pkgdb/scan is not true')
		print 'The Univention Configuration Registry variable pkgdb/scan is not true.'
		return 0
	elif options.action == 'scan':
		return action_scan(connection, cursor, config_registry)
Exemplo n.º 5
0
def get_dns_server(config_registry, active_services):
    if config_registry.is_true('ad/member'):
        ad_domain_info = univention.lib.admember.lookup_adds_dc()
        server = ad_domain_info.get('DC IP')
    else:
        hostname = config_registry.get('hostname')
        domainname = config_registry.get('domainname')
        if set(active_services) >= {'Samba 4', 'DNS'}:
            server = ".".join([hostname, domainname])
        else:
            ## TODO: Memberserver in Samba 4 domain
            server = None
    return server