示例#1
0
def standalone():
    if len(sys.argv) != 2:
        print USAGE
        return
    csv_filename = sys.argv[1]
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    output_filename = "%s_prepared.csv" % (csv_filename_prefix)
    print "Preparing %s for bulk provisioning..." % (csv_filename)
    try:
        with open(csv_filename, 'rb') as csv_file, \
             open(output_filename, 'w') as output_file:

            reader = csv.reader(csv_file)
            for row in reader:
                if len(row) >= 4:
                    [public_id, private_id, realm, password] = row[0:4]

                    # Hash and then encrypt the password.
                    hash = utils.md5("%s:%s:%s" %
                                     (private_id, realm, password))
                    encrypted_hash = utils.encrypt_password(
                        hash, settings.PASSWORD_ENCRYPTION_KEY)

                    output_file.write("%s,%s,%s,%s,%s\n" %
                                      (public_id, private_id, encrypted_hash,
                                       SIMSERVS, INITIAL_FILTER_CRITERIA))
                else:
                    print 'Error: row "%s" contains <4 entries - ignoring'

        print "Bulk provisioning input created"
        print "- BulkProvision %s homer" % (output_filename)
        print "- BulkProvision %s homestead" % (output_filename)
    except IOError as e:
        print "Failed to read/write to %s:" % (e.filename, )
        traceback.print_exc()
示例#2
0
def standalone():
    if len(sys.argv) != 2:
        print USAGE
        return
    csv_filename = sys.argv[1]
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    output_filename = "%s_prepared.csv" % (csv_filename_prefix)
    print "Preparing %s for bulk provisioning..." % (csv_filename)
    try:
        with open(csv_filename, 'rb') as csv_file, \
             open(output_filename, 'w') as output_file:

            reader = csv.reader(csv_file)
            for row in reader:
                if len(row) >= 4:
                    [public_id, private_id, realm, password] = row[0:4]

                    # Hash and then encrypt the password.
                    hash = utils.md5("%s:%s:%s" % (private_id, realm, password))
                    encrypted_hash = utils.encrypt_password(hash, settings.PASSWORD_ENCRYPTION_KEY)

                    output_file.write("%s,%s,%s,%s,%s\n" % (public_id, private_id, encrypted_hash, SIMSERVS, INITIAL_FILTER_CRITERIA))
                else:
                    print 'Error: row "%s" contains <4 entries - ignoring'

        print "Bulk provisioning input created"
        print "- BulkProvision %s homer" % (output_filename)
        print "- BulkProvision %s homestead" % (output_filename)
    except IOError as e:
        print "Failed to read/write to %s:" % (e.filename,)
        traceback.print_exc();
示例#3
0
def put_password(private_id, password, callback):
    """
    Posts a new password to Homestead for a given private id
    callback receives the HTTPResponse object.
    """
    url = digest_url(private_id)
    digest = utils.md5("%s:%s:%s" % (private_id, settings.SIP_DIGEST_REALM, password))
    body = json.dumps({"digest" : digest})
    headers = {"Content-Type": "application/json"}
    fetch(url, callback, method='PUT', headers=headers, body=body)
示例#4
0
def put_password(private_id, password, callback):
    """
    Posts a new password to Homestead for a given private id
    callback receives the HTTPResponse object.
    """
    url = _private_id_url(private_id)
    digest = utils.md5("%s:%s:%s" % (private_id, settings.SIP_DIGEST_REALM, password))
    body = json.dumps({"digest_ha1": digest})
    headers = {"Content-Type": "application/json"}
    if callback:
        _http_request(url, callback, method="PUT", headers=headers, body=body)
    else:
        return _sync_http_request(url, method="PUT", headers=headers, body=body)
示例#5
0
    def put(self, private_id):
        body = self.request.body
        if body:
            try:
                obj = json.loads(body)
            except ValueError:
                self.send_error(400, "Invalid JSON")
                return

            # There must be a digest_ha1 or plaintext_password (not both)
            # and there may be a realm
            plaintext_password = obj.get(JSON_PLAINTEXT_PASSWORD)
            digest_ha1 = obj.get(JSON_DIGEST_HA1)
            realm = obj.get(JSON_REALM) or settings.SIP_DIGEST_REALM

            if plaintext_password:
                # If there's a password then there mustn't be a digest.
                # Calculate the digest from the password
                if digest_ha1:
                    self.send_error(
                        400,
                        "Invalid JSON - both digest_ha1 and plaintext_password present"
                    )
                    return
                else:
                    digest_ha1 = utils.md5(
                        "%s:%s:%s" % (private_id, realm, plaintext_password))
            elif not digest_ha1:
                # There must be either the password or the digest
                self.send_error(
                    400,
                    "Invalid JSON - neither digest_ha1 and plaintext_password present"
                )
                return
            else:
                # Set the password to the empty string if it's not set so
                # that we can store this in Cassandra. We have to do this
                # so that we can invalidate passwords when we receive a
                # PUT that contains a digest.
                plaintext_password = ""

            yield PrivateID(private_id).put_digest(digest_ha1,
                                                   plaintext_password, realm)
            self.finish()

        else:
            self.send_error(400, "Empty body")
示例#6
0
def put_password(private_id, realm, password, callback, plaintext=False):
    """
    Posts a new password to Homestead for a given private id
    callback receives the HTTPResponse object.
    """
    url = _private_id_url(private_id)
    if plaintext:
        body = json.dumps({"plaintext_password": password, "realm": realm})
    else:
        digest = utils.md5("%s:%s:%s" % (private_id,
                                         realm,
                                         password))
        body = json.dumps({"digest_ha1": digest, "realm": realm})
    headers = {"Content-Type": "application/json"}
    if callback:
        _http_request(url, callback, method='PUT', headers=headers, body=body)
    else:
        return _sync_http_request(url, method="PUT", headers=headers, body=body)
示例#7
0
    def put(self, private_id):
        body = self.request.body
        if body:
            try:
                obj = json.loads(body)
            except ValueError:
                self.send_error(400, "Invalid JSON")
                return

            # There must be a digest_ha1 or plaintext_password (not both)
            # and there may be a realm
            plaintext_password = obj.get(JSON_PLAINTEXT_PASSWORD)
            digest_ha1 = obj.get(JSON_DIGEST_HA1)
            realm = obj.get(JSON_REALM) or settings.SIP_DIGEST_REALM

            if plaintext_password:
                # If there's a password then there mustn't be a digest.
                # Calculate the digest from the password
                if digest_ha1:
                    self.send_error(400, "Invalid JSON - both digest_ha1 and plaintext_password present")
                    return
                else:
                    digest_ha1 = utils.md5("%s:%s:%s" % (private_id,
                                                         realm,
                                                         plaintext_password))
            elif not digest_ha1:
                # There must be either the password or the digest
                self.send_error(400, "Invalid JSON - neither digest_ha1 and plaintext_password present")
                return
            else:
                # Set the password to the empty string if it's not set so
                # that we can store this in Cassandra. We have to do this
                # so that we can invalidate passwords when we receive a
                # PUT that contains a digest.
                plaintext_password = ""

            yield PrivateID(private_id).put_digest(digest_ha1,
                                                   plaintext_password,
                                                   realm)
            self.finish()

        else:
            self.send_error(400, "Empty body")
示例#8
0
def standalone():
    if len(sys.argv) != 2:
        print USAGE
        return
    csv_filename = sys.argv[1]
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    output_filename = "%s_prepared.csv" % (csv_filename_prefix)
    print "Preparing %s for bulk provisioning..." % (csv_filename)
    try:
        with open(csv_filename, 'rb') as csv_file, \
             open(output_filename, 'w') as output_file:

            reader = csv.reader(csv_file)
            for row in reader:
                if len(row) >= 4:
                    [public_id, private_id, realm, password] = row[0:4]

                    # Hash the password and generate the IMSSubscriptionXML.
                    hash = utils.md5("%s:%s:%s" % (private_id, realm, password))
                    publicidentity_xml = "<PublicIdentity><Identity>%s</Identity></PublicIdentity>" % public_id
                    initial_filter_xml = ifcs.generate_ifcs(utils.sip_uri_to_domain(public_id))
                    ims_subscription_xml = create_imssubscription_xml(private_id, publicidentity_xml, initial_filter_xml)
                    irs_uuid = uuid.uuid4();
                    sp_uuid = uuid.uuid4();

                    # Print a line for the user
                    output_file.write("%s,%s,%s,%s,%s,%s,%s,%s,%s,%s,%s\n" % (public_id, private_id, realm, hash, SIMSERVS, publicidentity_xml, initial_filter_xml, ims_subscription_xml, irs_uuid, sp_uuid, password))
                else:
                    print 'Error: row %s contains <4 entries - ignoring' % row

        print "Bulk provisioning input created"
        print "- BulkProvision homer %s" % (output_filename)
        print "- BulkProvision homestead-local %s" % (output_filename)
        print "- BulkProvision homestead-hss %s" % (output_filename)
    except IOError as e:
        print "Failed to read/write to %s:" % (e.filename,)
        traceback.print_exc();
def write_homestead_scripts(csv_filename, write_plaintext_password):
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    homestead_filename = "%s.create_homestead.sh" % (csv_filename_prefix)
    homestead_prov_casscli_filename = "%s.create_homestead_provisioning.casscli" % (csv_filename_prefix)
    homestead_cache_casscli_filename = "%s.create_homestead_cache.casscli" % (csv_filename_prefix)

    with open(homestead_filename, 'w') as homestead_file, \
         open(homestead_cache_casscli_filename, 'w') as homestead_cache_casscli_file, \
         open(homestead_prov_casscli_filename, 'w') as homestead_prov_casscli_file:

        # Write Homestead/cassandra-cli header
        homestead_file.write("#!/bin/bash\n")
        homestead_file.write("# Homestead bulk provisioning script for users in %s\n" % (csv_filename))
        homestead_file.write("# Run this script on any node in your Homestead deployment to create the users\n")
        homestead_file.write("# The %s and %s files must also be present on this system\n" % (homestead_cache_casscli_filename, homestead_prov_casscli_filename))
        homestead_file.write("\n")
        homestead_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (homestead_cache_casscli_filename, homestead_cache_casscli_filename))
        homestead_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (homestead_prov_casscli_filename, homestead_prov_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" % (homestead_cache_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" % (homestead_prov_casscli_filename))
        homestead_cache_casscli_file.write("USE homestead_cache;\n")
        homestead_prov_casscli_file.write("USE homestead_provisioning;\n")
        i=0 #count user info
        for public_id, private_id, realm, password in csv_iterator(csv_filename):
            print str(public_id) + ':' + str(i)
            # Generate the user-specific data
            hash = utils.md5("%s:%s:%s" % (private_id, realm, password))

            public_identity_xml = "<PublicIdentity><BarringIndication>1</BarringIndication><Identity>%s</Identity></PublicIdentity>" % public_id
            initial_filter_xml = ifcs.generate_ifcs(utils.sip_uri_to_domain(public_id))
            #
            if i % 2 == 1:
                print 'Receiver add VSIF iFC.'
                initial_filter_xml = '<?xml version="1.0" encoding="UTF-8"?><ServiceProfile><InitialFilterCriteria><Priority>0</Priority><TriggerPoint><ConditionTypeCNF>0</ConditionTypeCNF><SPT><ConditionNegated>0</ConditionNegated><Group>0</Group><Method>INVITE</Method><Extension/></SPT></TriggerPoint><ApplicationServer><ServerName>sip:vsif.clearwater:5060</ServerName><DefaultHandling>1</DefaultHandling></ApplicationServer></InitialFilterCriteria></ServiceProfile>'
            ims_subscription_xml = create_imssubscription_xml(private_id, public_identity_xml, initial_filter_xml)
            irs_uuid = str(uuid.uuid4())
            sp_uuid = str(uuid.uuid4())

            # Add the user to the optimized cassandra cache.
            homestead_cache_casscli_file.write(
                create_row_command("impi", private_id))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_ha1'] = '%s';\n" % (private_id, hash))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_realm'] = '%s';\n" % (private_id, realm))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['public_id_%s'] = '';\n" % (private_id,
                                                            public_id))

            homestead_cache_casscli_file.write(
                create_row_command("impu", public_id))
            homestead_cache_casscli_file.write(
                "SET impu['%s']['ims_subscription_xml'] = '%s';\n" % (
                    public_id,
                    ims_subscription_xml.replace("'", "\\'")))

            # Populate the provisioning tables for the user.
            homestead_prov_casscli_file.write(
                create_row_command("implicit_registration_sets", irs_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['service_profile_%s'] = lexicaluuid('%s');\n" % (irs_uuid,
                                                                                                       sp_uuid,
                                                                                                       sp_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['associated_private_%s'] = utf8('%s');\n" % (irs_uuid,
                                                                                                   private_id,
                                                                                                   private_id))

            homestead_prov_casscli_file.write(
                create_row_command("service_profiles", sp_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['irs'] = '%s';\n" % (sp_uuid,
                                                                 irs_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['initialfiltercriteria'] = '%s';\n" % (sp_uuid,
                                                                                   initial_filter_xml))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['public_id_%s'] = utf8('%s');\n" % (sp_uuid,
                                                                                public_id,
                                                                                public_id))

            homestead_prov_casscli_file.write(
                create_row_command("public", public_id))
            homestead_prov_casscli_file.write(
                "SET public['%s']['publicidentity'] = '%s';\n" % (public_id,
                                                                  public_identity_xml))
            homestead_prov_casscli_file.write(
                "SET public['%s']['service_profile'] = '%s';\n" % (public_id,
                                                                   sp_uuid))

            password_to_write = password if write_plaintext_password else ""
            homestead_prov_casscli_file.write(
                create_row_command("private", private_id))
            homestead_prov_casscli_file.write(
                "SET private['%s']['digest_ha1'] = '%s';\n" % (private_id,
                                                               hash))
            homestead_prov_casscli_file.write(
                "SET private['%s']['plaintext_password'] = '******';\n" % (private_id,
                                                                       password_to_write))
            homestead_prov_casscli_file.write(
                "SET private['%s']['realm'] = '%s';\n" % (private_id, realm))
            homestead_prov_casscli_file.write(
                "SET private['%s']['associated_irs_%s'] = lexicaluuid('%s');\n" % (private_id,
                                                                                   irs_uuid,
                                                                                   irs_uuid))
            i=i+1

    # Make the created .sh files executable
    permissions = stat.S_IEXEC | stat.S_IREAD | stat.S_IWRITE
    os.chmod(homestead_filename, permissions)

    print "Generated homestead bulk provisioning scripts"
    print "- %-46s - run this script on Homestead" % (homestead_filename)
    print "- %-46s - copy this file onto Homestead" % (homestead_cache_casscli_filename)
    print "- %-46s - copy this file onto Homestead" % (homestead_prov_casscli_filename)
示例#10
0
def standalone():
    if len(sys.argv) != 2:
        print USAGE
        return
    csv_filename = sys.argv[1]
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    homestead_filename = "%s.create_homestead.sh" % (csv_filename_prefix, )
    homestead_casscli_filename = "%s.create_homestead.casscli" % (
        csv_filename_prefix, )
    xdm_filename = "%s.create_xdm.sh" % (csv_filename_prefix, )
    xdm_cqlsh_filename = "%s.create_xdm.cqlsh" % (csv_filename_prefix, )
    print "Generating bulk provisioning scripts for users in %s..." % (
        csv_filename, )
    try:
        with open(csv_filename, 'rb') as csv_file, \
             open(homestead_filename, 'w') as homestead_file, \
             open(homestead_casscli_filename, 'w') as homestead_casscli_file, \
             open(xdm_filename, 'w') as xdm_file, \
             open(xdm_cqlsh_filename, 'w') as xdm_cqlsh_file:
            # Write Homestead/CQL header
            homestead_file.write("#!/bin/bash\n")
            homestead_file.write(
                "# Homestead bulk provisioning script for users in %s\n" %
                (csv_filename, ))
            homestead_file.write(
                "# Run this script on any node in your Homestead deployment to create the users\n"
            )
            homestead_file.write(
                "# The %s file must also be present on this system\n" %
                (homestead_casscli_filename, ))
            homestead_file.write(
                "# You must also run %s on any node in your Homer deployment\n"
                % (xdm_filename, ))
            homestead_file.write("\n")
            homestead_file.write(
                "[ -f %s ] || echo \"The %s file must be present on this system.\"\n"
                % (homestead_casscli_filename, homestead_casscli_filename))
            homestead_file.write("cassandra-cli -B -f %s\n" %
                                 (homestead_casscli_filename, ))
            homestead_casscli_file.write("USE homestead;\n")

            # Write Homer/CQL header
            xdm_file.write("#!/bin/bash\n")
            xdm_file.write(
                "# Homer bulk provisioning script for users in %s\n" %
                (csv_filename, ))
            xdm_file.write(
                "# Run this script on any node in your Homer deployment to create the users\n"
            )
            xdm_file.write(
                "# The %s file must also be present on this system\n" %
                (xdm_cqlsh_filename, ))
            xdm_file.write(
                "# You must also run %s on any node in your Homestead deployment\n"
                % (homestead_filename, ))
            xdm_file.write("\n")
            xdm_file.write(
                "[ -f %s ] || echo \"The %s file must be present on this system.\"\n"
                % (xdm_cqlsh_filename, xdm_cqlsh_filename))
            xdm_file.write("cqlsh -3 -f %s\n" % (xdm_cqlsh_filename, ))
            xdm_cqlsh_file.write("USE homer;\n")

            reader = csv.reader(csv_file)
            for row in reader:
                if len(row) >= 4:
                    [public_id, private_id, realm, password] = row[0:4]

                    # Hash and then encrypt the password.
                    hash = utils.md5("%s:%s:%s" %
                                     (private_id, realm, password))
                    encrypted_hash = utils.encrypt_password(
                        hash, settings.PASSWORD_ENCRYPTION_KEY)

                    # Add the user to the SIP digest, associated IDs and filter criteria tables on Homestead.
                    homestead_casscli_file.write(
                        "SET sip_digests['%s']['private_id'] = '%s';\n" %
                        (private_id, private_id))
                    homestead_casscli_file.write(
                        "SET sip_digests['%s']['digest'] = '%s';\n" %
                        (private_id, encrypted_hash))
                    homestead_casscli_file.write(
                        "SET public_ids['%s']['%s'] = '%s';\n" %
                        (private_id, public_id, public_id))
                    homestead_casscli_file.write(
                        "SET private_ids['%s']['%s'] = '%s';\n" %
                        (public_id, private_id, private_id))
                    homestead_casscli_file.write(
                        "SET filter_criteria['%s']['public_id'] = '%s';\n" %
                        (public_id, public_id))
                    homestead_casscli_file.write(
                        "SET filter_criteria['%s']['value'] = '%s';\n" %
                        (public_id, INITIAL_FILTER_CRITERIA))

                    # Add the simservs document for the user to the documents table  on Homer
                    xdm_cqlsh_file.write(
                        "INSERT INTO simservs (user, value) VALUES ('%s', '%s');\n"
                        % (public_id, SIMSERVS))
                else:
                    print 'Error: row "%s" contains <4 entries - ignoring'

        print "Generated bulk provisioning scripts written to"
        print "- %-46s - run this script on Homestead" % (homestead_filename, )
        print "- %-46s - copy this file onto Homestead" % (
            homestead_casscli_filename, )
        print "- %-46s - run this script on Homer" % (xdm_filename, )
        print "- %-46s - copy this file onto Homer" % (xdm_cqlsh_filename, )
    except IOError as e:
        print "Failed to read/write to %s:" % (e.filename, )
        traceback.print_exc()
示例#11
0
def write_homestead_scripts(csv_filename, write_plaintext_password):
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    homestead_filename = "%s.create_homestead.sh" % (csv_filename_prefix)
    homestead_prov_casscli_filename = "%s.create_homestead_provisioning.casscli" % (
        csv_filename_prefix)
    homestead_cache_casscli_filename = "%s.create_homestead_cache.casscli" % (
        csv_filename_prefix)

    with open(homestead_filename, 'w') as homestead_file, \
         open(homestead_cache_casscli_filename, 'w') as homestead_cache_casscli_file, \
         open(homestead_prov_casscli_filename, 'w') as homestead_prov_casscli_file:

        # Write Homestead/cassandra-cli header
        homestead_file.write("#!/bin/bash\n")
        homestead_file.write(
            "# Homestead bulk provisioning script for users in %s\n" %
            (csv_filename))
        homestead_file.write(
            "# Run this script on any node in your Homestead deployment to create the users\n"
        )
        homestead_file.write(
            "# The %s and %s files must also be present on this system\n" %
            (homestead_cache_casscli_filename,
             homestead_prov_casscli_filename))
        homestead_file.write("\n")
        homestead_file.write(
            "[ -f %s ] || echo \"The %s file must be present on this system.\"\n"
            % (homestead_cache_casscli_filename,
               homestead_cache_casscli_filename))
        homestead_file.write(
            "[ -f %s ] || echo \"The %s file must be present on this system.\"\n"
            %
            (homestead_prov_casscli_filename, homestead_prov_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" %
                             (homestead_cache_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" %
                             (homestead_prov_casscli_filename))
        homestead_cache_casscli_file.write("USE homestead_cache;\n")
        homestead_prov_casscli_file.write("USE homestead_provisioning;\n")

        for public_id, private_id, realm, password in csv_iterator(
                csv_filename):

            # Generate the user-specific data
            hash = utils.md5("%s:%s:%s" % (private_id, realm, password))

            public_identity_xml = "<PublicIdentity><Identity>%s</Identity></PublicIdentity>" % public_id
            initial_filter_xml = ifcs.generate_ifcs(
                utils.sip_uri_to_domain(public_id))
            ims_subscription_xml = create_imssubscription_xml(
                private_id, public_identity_xml, initial_filter_xml)
            irs_uuid = str(uuid.uuid4())
            sp_uuid = str(uuid.uuid4())

            # Add the user to the optimized cassandra cache.
            homestead_cache_casscli_file.write(
                create_row_command("impi", private_id))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_ha1'] = '%s';\n" % (private_id, hash))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_realm'] = '%s';\n" %
                (private_id, realm))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['public_id_%s'] = '';\n" %
                (private_id, public_id))

            homestead_cache_casscli_file.write(
                create_row_command("impu", public_id))
            homestead_cache_casscli_file.write(
                "SET impu['%s']['ims_subscription_xml'] = '%s';\n" %
                (public_id, ims_subscription_xml.replace("'", "\\'")))

            # Populate the provisioning tables for the user.
            homestead_prov_casscli_file.write(
                create_row_command("implicit_registration_sets", irs_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['service_profile_%s'] = lexicaluuid('%s');\n"
                % (irs_uuid, sp_uuid, sp_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['associated_private_%s'] = utf8('%s');\n"
                % (irs_uuid, private_id, private_id))

            homestead_prov_casscli_file.write(
                create_row_command("service_profiles", sp_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['irs'] = '%s';\n" %
                (sp_uuid, irs_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['initialfiltercriteria'] = '%s';\n"
                % (sp_uuid, initial_filter_xml))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['public_id_%s'] = utf8('%s');\n" %
                (sp_uuid, public_id, public_id))

            homestead_prov_casscli_file.write(
                create_row_command("public", public_id))
            homestead_prov_casscli_file.write(
                "SET public['%s']['publicidentity'] = '%s';\n" %
                (public_id, public_identity_xml))
            homestead_prov_casscli_file.write(
                "SET public['%s']['service_profile'] = '%s';\n" %
                (public_id, sp_uuid))

            password_to_write = password if write_plaintext_password else ""
            homestead_prov_casscli_file.write(
                create_row_command("private", private_id))
            homestead_prov_casscli_file.write(
                "SET private['%s']['digest_ha1'] = '%s';\n" %
                (private_id, hash))
            homestead_prov_casscli_file.write(
                "SET private['%s']['plaintext_password'] = '******';\n" %
                (private_id, password_to_write))
            homestead_prov_casscli_file.write(
                "SET private['%s']['realm'] = '%s';\n" % (private_id, realm))
            homestead_prov_casscli_file.write(
                "SET private['%s']['associated_irs_%s'] = lexicaluuid('%s');\n"
                % (private_id, irs_uuid, irs_uuid))

    # Make the created .sh files executable
    permissions = stat.S_IEXEC | stat.S_IREAD | stat.S_IWRITE
    os.chmod(homestead_filename, permissions)

    print "Generated homestead bulk provisioning scripts"
    print "- %-46s - run this script on Homestead" % (homestead_filename)
    print "- %-46s - copy this file onto Homestead" % (
        homestead_cache_casscli_filename)
    print "- %-46s - copy this file onto Homestead" % (
        homestead_prov_casscli_filename)
示例#12
0
def standalone():
    if len(sys.argv) != 2:
        print USAGE
        return
    csv_filename = sys.argv[1]
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    homestead_filename = "%s.create_homestead.sh" % (csv_filename_prefix,)
    homestead_cqlsh_filename = "%s.create_homestead.cqlsh" % (csv_filename_prefix,)
    xdm_filename = "%s.create_xdm.sh" % (csv_filename_prefix,)
    xdm_cqlsh_filename = "%s.create_xdm.cqlsh" % (csv_filename_prefix,)
    print "Generating bulk provisioning scripts for users in %s..." % (csv_filename,)
    try:
        with open(csv_filename, 'rb') as csv_file, \
             open(homestead_filename, 'w') as homestead_file, \
             open(homestead_cqlsh_filename, 'w') as homestead_cqlsh_file, \
             open(xdm_filename, 'w') as xdm_file, \
             open(xdm_cqlsh_filename, 'w') as xdm_cqlsh_file:
            # Write Homestead/CQL header
            homestead_file.write("#!/bin/bash\n")
            homestead_file.write("# Homestead bulk provisioning script for users in %s\n" % (csv_filename,))
            homestead_file.write("# Run this script on any node in your Homestead deployment to create the users\n")
            homestead_file.write("# The %s file must also be present on this system\n" % (homestead_cqlsh_filename,))
            homestead_file.write("# You must also run %s on any node in your Homer deployment\n" % (xdm_filename,))
            homestead_file.write("\n")
            homestead_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (homestead_cqlsh_filename, homestead_cqlsh_filename))
            homestead_file.write("cqlsh -3 -f %s\n" % (homestead_cqlsh_filename,))
            homestead_cqlsh_file.write("USE homestead;\n");

            # Write Homer/CQL header
            xdm_file.write("#!/bin/bash\n")
            xdm_file.write("# Homer bulk provisioning script for users in %s\n" % (csv_filename,))
            xdm_file.write("# Run this script on any node in your Homer deployment to create the users\n")
            xdm_file.write("# The %s file must also be present on this system\n" % (xdm_cqlsh_filename,))
            xdm_file.write("# You must also run %s on any node in your Homestead deployment\n" % (homestead_filename,))
            xdm_file.write("\n")
            xdm_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (xdm_cqlsh_filename, xdm_cqlsh_filename))
            xdm_file.write("cqlsh -3 -f %s\n" % (xdm_cqlsh_filename,))
            xdm_cqlsh_file.write("USE homer;\n")

            reader = csv.reader(csv_file)
            for row in reader:
                if len(row) >= 4:
                    [public_id, private_id, realm, password] = row[0:4]

                    # Hash and then encrypt the password.
                    hash = utils.md5("%s:%s:%s" % (private_id, realm, password))
                    encrypted_hash = utils.encrypt_password(hash, settings.PASSWORD_ENCRYPTION_KEY)

                    # Add the user to the SIP digests and filter criteria tables on Homestead.
                    homestead_cqlsh_file.write("INSERT INTO sip_digests (private_id, digest) VALUES ('%s', '%s');\n" % (private_id, encrypted_hash))
                    homestead_cqlsh_file.write("INSERT INTO filter_criteria (public_id, value) VALUES ('%s', '%s');\n" % (public_id, INITIAL_FILTER_CRITERIA))

                    # Add the simservs document for the user to the documents table  on Homer
                    xdm_cqlsh_file.write("INSERT INTO simservs (user, value) VALUES ('%s', '%s');\n" % (public_id, SIMSERVS))
                else:
                    print 'Error: row "%s" contains <4 entries - ignoring'

        print "Generated bulk provisioning scripts written to"
        print "- %-46s - run this script on Homestead" % (homestead_filename,)
        print "- %-46s - copy this file onto Homestead" % (homestead_cqlsh_filename,)
        print "- %-46s - run this script on Homer" % (xdm_filename,)
        print "- %-46s - copy this file onto Homer" % (xdm_cqlsh_filename,)
    except IOError as e:
        print "Failed to read/write to %s:" % (e.filename,)
        traceback.print_exc();
示例#13
0
def write_homestead_scripts(csv_filename, write_plaintext_password):
    csv_filename_prefix = string.replace(csv_filename, ".csv", "")
    homestead_filename = "%s.create_homestead.sh" % (csv_filename_prefix)
    homestead_prov_casscli_filename = "%s.create_homestead_provisioning.casscli" % (csv_filename_prefix)
    homestead_cache_casscli_filename = "%s.create_homestead_cache.casscli" % (csv_filename_prefix)

    with open(homestead_filename, 'w') as homestead_file, \
         open(homestead_cache_casscli_filename, 'w') as homestead_cache_casscli_file, \
         open(homestead_prov_casscli_filename, 'w') as homestead_prov_casscli_file:

        # Write Homestead/cassandra-cli header
        homestead_file.write("#!/bin/bash\n")
        homestead_file.write("# Homestead bulk provisioning script for users in %s\n" % (csv_filename))
        homestead_file.write("# Run this script on any node in your Homestead deployment to create the users\n")
        homestead_file.write("# The %s and %s files must also be present on this system\n" % (homestead_cache_casscli_filename, homestead_prov_casscli_filename))
        homestead_file.write("\n")
        homestead_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (homestead_cache_casscli_filename, homestead_cache_casscli_filename))
        homestead_file.write("[ -f %s ] || echo \"The %s file must be present on this system.\"\n" % (homestead_prov_casscli_filename, homestead_prov_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" % (homestead_cache_casscli_filename))
        homestead_file.write("cassandra-cli -B -f %s\n" % (homestead_prov_casscli_filename))
        homestead_cache_casscli_file.write("USE homestead_cache;\n")
        homestead_prov_casscli_file.write("USE homestead_provisioning;\n")

        for public_id, private_id, realm, password in csv_iterator(csv_filename):

            # Generate the user-specific data
            hash = utils.md5("%s:%s:%s" % (private_id, realm, password))

            public_identity_xml = "<PublicIdentity><Identity>%s</Identity></PublicIdentity>" % public_id
            initial_filter_xml = ifcs.generate_ifcs(utils.sip_uri_to_domain(public_id))
            ims_subscription_xml = create_imssubscription_xml(private_id, public_identity_xml, initial_filter_xml)
            irs_uuid = str(uuid.uuid4())
            sp_uuid = str(uuid.uuid4())

            # Add the user to the optimized cassandra cache.
            homestead_cache_casscli_file.write(
                create_row_command("impi", private_id))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_ha1'] = '%s';\n" % (private_id, hash))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['digest_realm'] = '%s';\n" % (private_id, realm))
            homestead_cache_casscli_file.write(
                "SET impi['%s']['public_id_%s'] = '';\n" % (private_id,
                                                            public_id))

            homestead_cache_casscli_file.write(
                create_row_command("impu", public_id))
            homestead_cache_casscli_file.write(
                "SET impu['%s']['ims_subscription_xml'] = '%s';\n" % (
                    public_id,
                    ims_subscription_xml.replace("'", "\\'")))

            # Populate the provisioning tables for the user.
            homestead_prov_casscli_file.write(
                create_row_command("implicit_registration_sets", irs_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['service_profile_%s'] = lexicaluuid('%s');\n" % (irs_uuid,
                                                                                                       sp_uuid,
                                                                                                       sp_uuid))
            homestead_prov_casscli_file.write(
                "SET implicit_registration_sets['%s']['associated_private_%s'] = utf8('%s');\n" % (irs_uuid,
                                                                                                   private_id,
                                                                                                   private_id))

            homestead_prov_casscli_file.write(
                create_row_command("service_profiles", sp_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['irs'] = '%s';\n" % (sp_uuid,
                                                                 irs_uuid))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['initialfiltercriteria'] = '%s';\n" % (sp_uuid,
                                                                                   initial_filter_xml))
            homestead_prov_casscli_file.write(
                "SET service_profiles['%s']['public_id_%s'] = utf8('%s');\n" % (sp_uuid,
                                                                                public_id,
                                                                                public_id))

            homestead_prov_casscli_file.write(
                create_row_command("public", public_id))
            homestead_prov_casscli_file.write(
                "SET public['%s']['publicidentity'] = '%s';\n" % (public_id,
                                                                  public_identity_xml))
            homestead_prov_casscli_file.write(
                "SET public['%s']['service_profile'] = '%s';\n" % (public_id,
                                                                   sp_uuid))

            password_to_write = password if write_plaintext_password else ""
            homestead_prov_casscli_file.write(
                create_row_command("private", private_id))
            homestead_prov_casscli_file.write(
                "SET private['%s']['digest_ha1'] = '%s';\n" % (private_id,
                                                               hash))
            homestead_prov_casscli_file.write(
                "SET private['%s']['plaintext_password'] = '******';\n" % (private_id,
                                                                       password_to_write))
            homestead_prov_casscli_file.write(
                "SET private['%s']['realm'] = '%s';\n" % (private_id, realm))
            homestead_prov_casscli_file.write(
                "SET private['%s']['associated_irs_%s'] = lexicaluuid('%s');\n" % (private_id,
                                                                                   irs_uuid,
                                                                                   irs_uuid))

    # Make the created .sh files executable
    permissions = stat.S_IEXEC | stat.S_IREAD | stat.S_IWRITE
    os.chmod(homestead_filename, permissions)

    print "Generated homestead bulk provisioning scripts"
    print "- %-46s - run this script on Homestead" % (homestead_filename)
    print "- %-46s - copy this file onto Homestead" % (homestead_cache_casscli_filename)
    print "- %-46s - copy this file onto Homestead" % (homestead_prov_casscli_filename)