lita-activedirectory 0.1.3 → 0.2.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d16b75ad8f27578fba8cc25c342681163da49534
-  data.tar.gz: dd3ef834bac941b64f07972fd1d6274148c0c34c
+  metadata.gz: 8de315c678f7820e8cb6191fa6879d8039d6b98f
+  data.tar.gz: 217e82c55ddb9258aefaa348bf25995bfd568b5c
 SHA512:
-  metadata.gz: c2a78bfb9991255166a18eab8465ea4b17bc89c26da99168d2fd9db009688e4ce2ef0c9302c7e246c9e55dfd258a9c29b6d30af417ec2fb8b9d2721c3f6361ad
-  data.tar.gz: 4ebc568d36255aae75194f565a40937fb62bafdce19d4a586721c11519cc118d80bc8eb2e3b117f291f328561c6a9bfdb1552ef7485567b636d7ffe2789cfaf9
+  metadata.gz: 758c3742af13a513eb65d6e0a8f1f7f0e90c2bd187ad44e167a2968567b096131768bf43bd70be06a82b45adcb57b56ca4ff5044a1539d7e1c00ae521d13eee7
+  data.tar.gz: 53a6ad9ee77b474447769f2e163134e3c616bd721f1ff5eb354f70e95206f49a05a329d4783f2178f81cecd9841e4da2211096d906f1b355c19a64edf440668c

data/README.md

@@ -21,11 +21,16 @@ gem "lita-activedirectory"
 * `config.handlers.activedirectory.password` - Password for connecting to LDAP
 
 ## Usage
-
-Check if a user account is locked out
+*username expects the samaccount name*
+### Check if a user account is locked out
 `is <username> locked?`
 
-Unlock a user account
+### Unlock a user account
 `unlock <username>`
 
-Username should take the form of the samaccount name, ie `jdoe`
+The user account specified in `config.handlers.activedirectory.username` must have permission to write the lockouttime attribute for unlocking to succeed. We leave it up to you to secure this account accordingly. 
+
+### List a User's Group Memberships
+`<username> groups>`
+
+

data/lib/lita/handlers/activedirectory.rb

@@ -23,6 +23,13 @@ module Lita
         help: { t('help.unlock.syntax') => t('help.unlock.desc') }
       )
 
+      route(
+        /^(\S+)\s+(groups)/i,
+        :user_groups,
+        command: true,
+        help: { t('help.user_groups.syntax') => t('help.user_groups.desc') }
+      )
+
       include ::Utils::Cratususer
 
       def user_locked?(response)
@@ -42,8 +49,32 @@ module Lita
         end
       end
 
+      def user_groups(response)
+        user = response.matches[0][0]
+        response.reply_with_mention(t('replies.user_groups.working'))
+        group_results = user_groups_query(user)
+        handle_user_group_query(response, user, group_results)
+      end
+
       private
 
+      def handle_user_group_query(response, user, result)
+        case result
+        when true
+          response.reply(
+            t('replies.user_groups.success', user: user), result.join("\n")
+          )
+        when false
+          respone.reply_with_mention(
+            t('replies.user_groups.not_found', user: user)
+          )
+        when nil
+          response.reply_with_mention(
+            t('replies.user_groups.error', user: user)
+          )
+        end
+      end
+
       def handle_user_query(response, user, result)
         case result
         when true

data/lib/utils/cratususer.rb

@@ -1,7 +1,7 @@
 module Utils
   # piggy back on cratus for ldap work
   module Cratususer
-    def user_query(username)
+    def cratus_connect
       options = {
         host: config.host,
         port: config.port,
@@ -12,6 +12,10 @@ module Utils
       }
       Cratus.config.merge(options)
       Cratus::LDAP.connect
+    end
+
+    def user_query(username)
+      cratus_connect
       user = begin
         Cratus::User.new(username.to_s)
       rescue
@@ -20,6 +24,17 @@ module Utils
       user ? user.locked? : user
     end
 
+    def user_groups_query(username)
+      cratus_connect
+      user = begin
+        Cratus::User.new(username.to_s)
+      rescue
+        nil
+      end
+      groups = user.member_of
+      groups.each(&:name)
+    end
+
     def unlock_user(username)
       ldap = Cratus::LDAP.connection
       ldap.replace_attribute Cratus::User.new(username.to_s).dn, :lockouttime, '0'

data/lita-activedirectory.gemspec

@@ -1,6 +1,6 @@
 Gem::Specification.new do |spec|
   spec.name          = 'lita-activedirectory'
-  spec.version       = '0.1.3'
+  spec.version       = '0.2.3'
   spec.authors       = ['Daniel Schaaff']
   spec.email         = ['dschaaff@knuedge.com']
   spec.description   = 'ldap/active directory instructions for Lita'

data/locales/en.yml

@@ -9,6 +9,9 @@ en:
           unlock:
             syntax: unlock <username>
             desc: unlocks an active directory user account
+          user_groups:
+            syntax: <username> user_groups
+            desc: lists all group memberships for the given username
         replies:
           user_locked?:
             working: let me check on that
@@ -19,3 +22,8 @@ en:
             working: lets see what we can do
             success: "'%{user}' has been unlocked"
             fail: "could not unlock '%{user}', check active directory directly"
+          user_groups:
+            working: Give me a second to search
+            success: "'%{user}' is a member of"
+            not_found: "could not find any groups that '%{user}' is a member of"
+            error: "That did not work, double check the '%{user}' is a valid samAccountName"

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: lita-activedirectory
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.2.3
 platform: ruby
 authors:
 - Daniel Schaaff
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2016-11-10 00:00:00.000000000 Z
+date: 2016-12-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: lita
@@ -208,7 +208,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.6.6
+rubygems_version: 2.6.8
 signing_key: 
 specification_version: 4
 summary: Allow Lita to interact with Active Directory