ruby-activeldap 0.8.1 → 0.8.2

data/examples/lpasswd

@@ -0,0 +1,55 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME"
+end
+
+if argv.size == 1
+  name = argv.shift
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  user ||= ENV["USER"]
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+class PasswordMismatch < RuntimeError
+end
+
+user = User.find(name)
+count = 0
+begin
+  count += 1
+  pw1 = pwb.call(user.dn)
+  pw2 = pwb.call(user.dn)
+  raise PasswordMismatch if pw1 != pw2
+rescue PasswordMismatch
+  puts "Password mismatch!"
+  exit 1 if count == 3
+  retry
+end
+
+user.user_password = ActiveLdap::UserPassword.ssha(pw1)
+unless user.save
+  puts "failed"
+  puts user.errors.full_messages
+  exit 1
+end

data/examples/objects/group.rb

@@ -0,0 +1,13 @@
+class Group < ActiveLdap::Base
+  ldap_mapping :dn_attribute => "cn",
+               :classes => ['posixGroup']
+  # Inspired by ActiveRecord, this tells ActiveLDAP that the
+  # LDAP entry has a attribute which contains one or more of
+  # some class |:class_name| where the attributes name is
+  # |:local_key|. This means that it will call
+  # :class_name.new(value_of(:local_key)) to create the objects.
+  has_many :members, :class => "User", :wrap => "memberUid"
+  has_many :primary_members, :class => 'User',
+           :foreign_key => 'gidNumber',
+           :primary_key => 'gidNumber'
+end # Group

data/examples/objects/ou.rb

@@ -0,0 +1,4 @@
+class Ou < ActiveLdap::Base
+  ldap_mapping :dn_attribute => 'ou', :prefix => '',
+               :classes => ['top', 'organizationalUnit']
+end

data/examples/objects/user.rb

@@ -0,0 +1,20 @@
+require 'objects/group'
+
+class User < ActiveLdap::Base
+  ldap_mapping :dn_attribute => 'uid', :prefix => 'ou=People',
+               :classes => ['person', 'posixAccount']
+  belongs_to :primary_group, :class => "Group",
+             :foreign_key => "gidNumber", :primary_key => "gidNumber"
+  belongs_to :groups, :many => 'memberUid'
+
+  # An example of using the old "return_objects" API with the
+  # new ActiveRecord-style API.
+  alias groups_mapping groups
+  def groups(return_objects=true)
+    return groups_mapping if return_objects
+    attr = 'cn'
+    Group.search(:attribute => 'memberUid',
+                 :value => id,
+                 :attributes => [attr]).map {|dn, attrs| attrs[attr]}.flatten
+  end
+end

data/examples/ouadd

@@ -0,0 +1,38 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/ou'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " name"
+end
+
+if argv.size == 1
+  name = argv[0]
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+if Ou.exists?(name)
+  $stderr.puts("Ou #{name} already exists.")
+  exit 1
+end
+
+ou = Ou.new(name)
+unless ou.save
+  puts "failed"
+  puts ou.errors.full_messages
+  exit 1
+end

data/examples/useradd

@@ -0,0 +1,45 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME CN UID"
+end
+
+if argv.size == 3
+  name, cn, uid = argv
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+if User.exists?(name)
+  $stderr.puts("User #{name} already exists.")
+  exit 1
+end
+
+user = User.new(name)
+user.add_class('shadowAccount')
+user.cn = cn
+user.uid_number = uid
+user.gid_number = uid
+user.home_directory = "/home/#{name}"
+user.sn = "somesn"
+unless user.save
+  puts "failed"
+  puts user.errors.full_messages
+  exit 1
+end

data/examples/useradd-binary

@@ -0,0 +1,50 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME CN UID"
+end
+
+if argv.size == 3
+  name, cn, uid = argv
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+if User.exists?(name)
+  $stderr.puts("User #{name} already exists.")
+  exit 1
+end
+
+user = User.new(name)
+user.add_class('shadowAccount')
+user.cn = cn
+user.sn = "somesn"
+user.uid_number = uid
+user.gid_number = uid
+user.home_directory = "/home/#{name}"
+user.add_class('strongAuthenticationUser')
+cert_file = File.join(File.dirname(__FILE__), 'example.der')
+user.user_certificate = File.read(cert_file)
+
+unless user.save
+  puts "failed"
+  puts user.errors.full_messages
+  exit 1
+end
+

data/examples/userdel

@@ -0,0 +1,34 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME"
+end
+
+if argv.size == 1
+  name = argv.shift
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+User.destroy(name)

data/examples/userls

@@ -0,0 +1,50 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+require 'base64'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME"
+end
+
+if argv.size == 1
+  name = argv.shift
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+user = User.find(name)
+puts user.to_ldif
+
+groups = []
+primary_group = user.primary_group
+if primary_group.exists?
+  groups << "#{primary_group.cn}[#{primary_group.gid_number}]"
+end
+puts "Groups by name only: #{user.groups(false).join(', ')}"
+user.groups.sort_by do |group|
+  group.id
+end.collect do |group|
+  groups << "#{group.cn}[#{group.gid_number}]"
+end
+puts "Groups: #{groups.join(', ')}"

data/examples/usermod

@@ -0,0 +1,42 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME CN UID"
+end
+
+if argv.size == 3
+  name, cn, uid = argv
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+user = User.find(name)
+user.cn = cn
+user.uid_number = uid
+user.gid_number = uid
+unless user.save
+  puts "failed"
+  puts user.errors.full_messages
+  exit 1
+end

data/examples/usermod-binary-add

@@ -0,0 +1,47 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME CN UID"
+end
+
+if argv.size == 3
+  name, cn, uid = argv
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+user = User.find(name)
+user.cn = cn
+user.uid_number = uid
+user.gid_number = uid
+
+user.add_class('strongAuthenticationUser')
+cert_file = File.join(File.dirname(__FILE__), 'example.der')
+user.user_certificate = File.read(cert_file)
+
+unless user.save
+  puts "failed"
+  puts user.errors.full_messages
+  exit 1
+end

data/examples/usermod-binary-add-time

@@ -0,0 +1,51 @@
+#!/usr/bin/ruby -W0
+
+base = File.expand_path(File.join(File.dirname(__FILE__), ".."))
+$LOAD_PATH << File.join(base, "lib")
+$LOAD_PATH << File.join(base, "examples")
+
+require 'active_ldap'
+require 'objects/user'
+require 'objects/group'
+
+argv, opts, options = ActiveLdap::Command.parse_options do |opts, options|
+  opts.banner += " USER_NAME CN UID"
+end
+
+if argv.size == 3
+  name, cn, uid = argv
+else
+  $stderr.puts opts
+  exit 1
+end
+
+pwb = Proc.new do |user|
+  ActiveLdap::Command.read_password("[#{user}] Password: ")
+end
+
+ActiveLdap::Base.establish_connection(:password_block => pwb,
+                                      :allow_anonymous => false)
+
+unless User.exists?(name)
+  $stderr.puts("User #{name} doesn't exist.")
+  exit 1
+end
+
+100.times do |i|
+  user = User.find(name)
+  user.cn = cn
+  user.uid_number = uid
+  user.gid_number = uid
+
+  user.add_class('strongAuthenticationUser')
+  cert_file = File.join(File.dirname(__FILE__), 'example.der')
+  user.user_certificate = File.read(cert_file)
+
+  unless user.save
+    puts "failed #{i}"
+    puts user.errors.full_messages
+    exit 1
+  end
+
+  # puts "success [#{i}]"
+end