devise_ldap_uac 0.0.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (10) hide show
  1. checksums.yaml +7 -0
  2. data/.gitignore +17 -0
  3. data/Gemfile +4 -0
  4. data/LICENSE.txt +22 -0
  5. data/README.md +58 -0
  6. data/Rakefile +1 -0
  7. data/devise_ldap_uac.gemspec +25 -0
  8. data/lib/devise_ldap_uac.rb +58 -0
  9. data/lib/devise_ldap_uac/version.rb +3 -0
  10. metadata +94 -0
checksums.yaml ADDED
@@ -0,0 +1,7 @@
1
+ ---
2
+ SHA1:
3
+ metadata.gz: da7e4c7fe5b38d64b67cb2cb216115d211749daa
4
+ data.tar.gz: 4b4501e6a5a371ca9c654afd3bd20bc87862fd8e
5
+ SHA512:
6
+ metadata.gz: 5babd92cebef1c4f29ed712852eefe1b6e4b1b5186b1284bd34e02bdfb9345787a96064314cf1a615655f6b9542e2e8f12aee4b64c371d5eef420ccfaf00e9a0
7
+ data.tar.gz: 011ce2656ab044a4e8f4d1b32e974c5ca324675de36f4aca14a23bee95c95f45249ccc75b97aff980ffce9455c454b09a51dbae9582f0b192ffd365b89a9086a
data/.gitignore ADDED
@@ -0,0 +1,17 @@
1
+ *.gem
2
+ *.rbc
3
+ .bundle
4
+ .config
5
+ .yardoc
6
+ Gemfile.lock
7
+ InstalledFiles
8
+ _yardoc
9
+ coverage
10
+ doc/
11
+ lib/bundler/man
12
+ pkg
13
+ rdoc
14
+ spec/reports
15
+ test/tmp
16
+ test/version_tmp
17
+ tmp
data/Gemfile ADDED
@@ -0,0 +1,4 @@
1
+ source 'https://rubygems.org'
2
+
3
+ # Specify your gem's dependencies in devise_ldap_uac.gemspec
4
+ gemspec
data/LICENSE.txt ADDED
@@ -0,0 +1,22 @@
1
+ Copyright (c) 2014 David Southard
2
+
3
+ MIT License
4
+
5
+ Permission is hereby granted, free of charge, to any person obtaining
6
+ a copy of this software and associated documentation files (the
7
+ "Software"), to deal in the Software without restriction, including
8
+ without limitation the rights to use, copy, modify, merge, publish,
9
+ distribute, sublicense, and/or sell copies of the Software, and to
10
+ permit persons to whom the Software is furnished to do so, subject to
11
+ the following conditions:
12
+
13
+ The above copyright notice and this permission notice shall be
14
+ included in all copies or substantial portions of the Software.
15
+
16
+ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
17
+ EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
18
+ MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
19
+ NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
20
+ LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
21
+ OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
22
+ WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
data/README.md ADDED
@@ -0,0 +1,58 @@
1
+ # DeviseLdapUac
2
+
3
+ This is a simple gem which gives you a module you can mix-in to your ldap_authenticable class to read the User Acount Control Flags.
4
+
5
+ It is based on the flags specified in this [article](http://support.microsoft.com/kb/305144) from the Microsoft knowledge base.
6
+
7
+ ## Installation
8
+
9
+ Add this line to your application's Gemfile:
10
+
11
+ gem 'devise_ldap_uac'
12
+
13
+ And then execute:
14
+
15
+ $ bundle
16
+
17
+ Or install it yourself as:
18
+
19
+ $ gem install devise_ldap_uac
20
+
21
+ ## Usage
22
+
23
+ ### Assumptions
24
+ - devise_ldap_authenticable is working correctly on your User (or your prefered class).
25
+ - ruby > 2.0.0 although should work fine with ruby 1.9 variants
26
+
27
+ ### How To
28
+ Essentially Mix this module into your class via
29
+
30
+ ```ruby
31
+ include DeviseLdapUac
32
+ ```
33
+
34
+ This will give you two methods to call on the class you mix it into:
35
+
36
+ - uac_flagged - all UAC Properties that are set
37
+ - uac_unflagged - all UAC Properties that are **NOT** set
38
+
39
+ #### Example
40
+
41
+ ```sh
42
+ 2.0.0p353 :002 > u = User.first
43
+ 2.0.0p353 :002 > u.uac_unflagged
44
+
45
+ 2.0.0p353 :002 > u.uac_flagged
46
+ => ["ACCOUNTDISABLE", "INTERDOMAIN_TRUST_ACCOUNT", "NOT_DELEGATED"]
47
+
48
+ 2.0.0p353 :003 > u.uac_unflagged
49
+ => ["SCRIPT", "HOMEDIR_REQUIRED", "LOCKOUT", "PASSWD_NOTREQD", "PASSWD_CANT_CHANGE", "ENCRYPTED_TEXT_PWD_ALLOWED", "TEMP_DUPLICATE_ACCOUNT", "NORMAL_ACCOUNT", "WORKSTATION_TRUST_ACCOUNT", "SERVER_TRUST_ACCOUNT", "DONT_EXPIRE_PASSWORD", "MNS_LOGON_ACCOUNT", "SMARTCARD_REQUIRED", "TRUSTED_FOR_DELEGATION", "USE_DES_KEY_ONLY", "DONT_REQ_PREA UTH", "PASSWORD_EXP IRED", "TRUSTED_TO_AUTH_FOR_DELEGATION", "PARTIAL_SECRETS_ACCOUNT"]
50
+ ```
51
+
52
+ ## Contributing
53
+
54
+ 1. Fork it
55
+ 2. Create your feature branch (`git checkout -b my-new-feature`)
56
+ 3. Commit your changes (`git commit -am 'Add some feature'`)
57
+ 4. Push to the branch (`git push origin my-new-feature`)
58
+ 5. Create new Pull Request
data/Rakefile ADDED
@@ -0,0 +1 @@
1
+ require "bundler/gem_tasks"
data/devise_ldap_uac.gemspec ADDED
@@ -0,0 +1,25 @@
1
+ # coding: utf-8
2
+ lib = File.expand_path('../lib', __FILE__)
3
+ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
4
+ require 'devise_ldap_uac/version'
5
+
6
+ Gem::Specification.new do |spec|
7
+ spec.name = "devise_ldap_uac"
8
+ spec.version = DeviseLdapUac::VERSION
9
+ spec.authors = ["David Southard"]
10
+ spec.email = ["nacengineer@gmail.com"]
11
+ spec.description = %q{UAC Bitmasks as an Array}
12
+ spec.summary = %q{A gem to unwrap the User Account Control Bitmask}
13
+ spec.homepage = "http://davesouthard.com"
14
+ spec.license = "MIT"
15
+
16
+ spec.files = `git ls-files`.split($/)
17
+ spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
18
+ spec.test_files = spec.files.grep(%r{^(test|spec|features)/})
19
+ spec.require_paths = ["lib"]
20
+
21
+ spec.add_runtime_dependency "devise_ldap_authenticatable", ">= 0.8.1"
22
+
23
+ spec.add_development_dependency "bundler", "~> 1.3"
24
+ spec.add_development_dependency "rake"
25
+ end
data/lib/devise_ldap_uac.rb ADDED
@@ -0,0 +1,58 @@
1
+ require "devise_ldap_uac/version"
2
+ require "devise_ldap_authenticatable"
3
+
4
+ module DeviseLdapUac
5
+ # Based on this KB article http://support.microsoft.com/kb/305144
6
+ PROPERTY_FLAGS = [
7
+ "SCRIPT",
8
+ "ACCOUNTDISABLE",
9
+ "HOMEDIR_REQUIRED",
10
+ "LOCKOUT",
11
+ "PASSWD_NOTREQD",
12
+ "PASSWD_CANT_CHANGE",
13
+ "ENCRYPTED_TEXT_PWD_ALLOWED",
14
+ "TEMP_DUPLICATE_ACCOUNT",
15
+ "NORMAL_ACCOUNT",
16
+ "INTERDOMAIN_TRUST_ACCOUNT",
17
+ "WORKSTATION_TRUST_ACCOUNT",
18
+ "SERVER_TRUST_ACCOUNT",
19
+ "DONT_EXPIRE_PASSWORD",
20
+ "MNS_LOGON_ACCOUNT",
21
+ "SMARTCARD_REQUIRED",
22
+ "TRUSTED_FOR_DELEGATION",
23
+ "NOT_DELEGATED",
24
+ "USE_DES_KEY_ONLY",
25
+ "DONT_REQ_PREA UTH",
26
+ "PASSWORD_EXP IRED",
27
+ "TRUSTED_TO_AUTH_FOR_DELEGATION",
28
+ "PARTIAL_SECRETS_ACCOUNT"
29
+ ]
30
+
31
+ def uac_flagged
32
+ check_bitmask
33
+ DeviseLdapUac::PROPERTY_FLAGS.reject do |r|
34
+ ((ldap_uac || 0) & 2**DeviseLdapUac::PROPERTY_FLAGS.index(r)).zero?
35
+ end
36
+ end
37
+
38
+ def uac_unflagged
39
+ check_bitmask
40
+ DeviseLdapUac::PROPERTY_FLAGS.keep_if do |r|
41
+ ((ldap_uac || 0) & 2**DeviseLdapUac::PROPERTY_FLAGS.index(r)).zero?
42
+ end
43
+ end
44
+
45
+ private
46
+
47
+ def ldap_uac
48
+ Devise::LDAP::Adapter.get_ldap_param(
49
+ self.login, "userAccountControl"
50
+ ).first.to_i
51
+ end
52
+
53
+ def check_bitmask
54
+ if !ldap_uac.is_a?(Integer) || ldap_uac.to_i.zero?
55
+ raise ArgumentError, "Bitmask is not an Integer"
56
+ end
57
+ end
58
+ end
data/lib/devise_ldap_uac/version.rb ADDED
@@ -0,0 +1,3 @@
1
+ module DeviseLdapUac
2
+ VERSION = "0.0.1"
3
+ end
metadata ADDED
@@ -0,0 +1,94 @@
1
+ --- !ruby/object:Gem::Specification
2
+ name: devise_ldap_uac
3
+ version: !ruby/object:Gem::Version
4
+ version: 0.0.1
5
+ platform: ruby
6
+ authors:
7
+ - David Southard
8
+ autorequire:
9
+ bindir: bin
10
+ cert_chain: []
11
+ date: 2014-01-24 00:00:00.000000000 Z
12
+ dependencies:
13
+ - !ruby/object:Gem::Dependency
14
+ name: devise_ldap_authenticatable
15
+ requirement: !ruby/object:Gem::Requirement
16
+ requirements:
17
+ - - '>='
18
+ - !ruby/object:Gem::Version
19
+ version: 0.8.1
20
+ type: :runtime
21
+ prerelease: false
22
+ version_requirements: !ruby/object:Gem::Requirement
23
+ requirements:
24
+ - - '>='
25
+ - !ruby/object:Gem::Version
26
+ version: 0.8.1
27
+ - !ruby/object:Gem::Dependency
28
+ name: bundler
29
+ requirement: !ruby/object:Gem::Requirement
30
+ requirements:
31
+ - - ~>
32
+ - !ruby/object:Gem::Version
33
+ version: '1.3'
34
+ type: :development
35
+ prerelease: false
36
+ version_requirements: !ruby/object:Gem::Requirement
37
+ requirements:
38
+ - - ~>
39
+ - !ruby/object:Gem::Version
40
+ version: '1.3'
41
+ - !ruby/object:Gem::Dependency
42
+ name: rake
43
+ requirement: !ruby/object:Gem::Requirement
44
+ requirements:
45
+ - - '>='
46
+ - !ruby/object:Gem::Version
47
+ version: '0'
48
+ type: :development
49
+ prerelease: false
50
+ version_requirements: !ruby/object:Gem::Requirement
51
+ requirements:
52
+ - - '>='
53
+ - !ruby/object:Gem::Version
54
+ version: '0'
55
+ description: UAC Bitmasks as an Array
56
+ email:
57
+ - nacengineer@gmail.com
58
+ executables: []
59
+ extensions: []
60
+ extra_rdoc_files: []
61
+ files:
62
+ - .gitignore
63
+ - Gemfile
64
+ - LICENSE.txt
65
+ - README.md
66
+ - Rakefile
67
+ - devise_ldap_uac.gemspec
68
+ - lib/devise_ldap_uac.rb
69
+ - lib/devise_ldap_uac/version.rb
70
+ homepage: http://davesouthard.com
71
+ licenses:
72
+ - MIT
73
+ metadata: {}
74
+ post_install_message:
75
+ rdoc_options: []
76
+ require_paths:
77
+ - lib
78
+ required_ruby_version: !ruby/object:Gem::Requirement
79
+ requirements:
80
+ - - '>='
81
+ - !ruby/object:Gem::Version
82
+ version: '0'
83
+ required_rubygems_version: !ruby/object:Gem::Requirement
84
+ requirements:
85
+ - - '>='
86
+ - !ruby/object:Gem::Version
87
+ version: '0'
88
+ requirements: []
89
+ rubyforge_project:
90
+ rubygems_version: 2.0.3
91
+ signing_key:
92
+ specification_version: 4
93
+ summary: A gem to unwrap the User Account Control Bitmask
94
+ test_files: []