ucert 0.2.57

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 547ed940918335967625c173f319b0951d9f6f4a
+  data.tar.gz: 13c122b4b87b00f3228e22ea1ced001b9435fe92
+SHA512:
+  metadata.gz: efae47999098b582e3bc93f617f287b78f40b33924aef36f6b93e896158a773918c9be63c2962cb3618ab2b81d13b16ff99711996980dae561132d985dc8308b
+  data.tar.gz: 0bb38bc7b7d7e82cc5b7c68df4868da940cc62b3a4f70332a17eb583e0b4f54d5cbb81eae16238f81fe48e9f6334bca852f1b8cce47dc810e85ce76cc71b6596

data/CHANGELOG.md

@@ -0,0 +1,134 @@
+#--
+# ucert
+#
+# A  Ruby library for enterprise user account certification / recertification / audit project
+#
+# Copyright (c)  CMBNY Risk Department
+#++
+
+# Change-log
+#
+#
+# 10/24/2017  Implement Ucer::ClearPar class.
+# 10/24/2017  Re-vamp CitidirectSecuritiesTracker to handle the new 'dat' report format
+# 09/29/2017  Re-vamp CitidirectBETracker parser due to the service entitlement report format change
+# 09/19/2017  Fix YstTracker file encoding to acccomodate the new report format;
+#               Implement CmbrunNYTracker class print_position method.
+# 09/12/2017  Implement Ucert::AdpPayrollTracker class.
+# 09/10/2017  Re-implement Ucert::T24Tracker class, in order to support XML entitlement report format.
+# 08/02/2017  Implement Ucert::SomTracker class.
+# 04/19/2017  Implement Ucert::CvmTracker class which is a HO developed system under YST SSO.
+# 04/18/2017  Add 'yst_id_2_dn' method under Ucert::YstTracker class.
+# 02/01/2017  Implement the Ucert::BloombergTracker class.
+# 01/23/2017  Fix the bug in the 'parse_sy_uer_role_task_permissions_detail_report' of Ucert::Sage100Tracker class,
+# 01/23/2017  Fix the bug in 'parse_jpm_user_entitlement_report' method of Ucert::JpmAccessTracker class.
+# 01/23/2017  Fix the bug in the 'cntl_code_2_property_flag?' method of Ucert::AdTracker class.
+# 01/23/2017  Fix the bug in the 'is_ip?' method of Ucert::Utils module.
+# 01/18/2017  Fix the 3 bugs in the Ucert::FisPrimeTracker class.
+# 01/12/2017  Merge the unit test cases from Kainan(Aaron) Zhang.
+# 09/12/2016  Implement 'go_dptm_list' method in the Ucert::GoTracker class.
+# 08/17/2016  Bug fixes in GoTracker 'save!' and 'insert_dn' methods.
+# 08/15/2016  Refine AdTracker 'search' algorithm; refine Madison535Tracker 'insert_dn' method.
+# 08/12/2016  Improve the search algorithm in the GoTracker and AdTracker classes.
+# 08/10/2016  Implement 'parse_madison535_user_access_report_2' method in the class Ucert::Madison535Tracker,
+#               i.e. the 2nd control system user entitlement report from GO.
+# 08/01/2016  Implement Ucert::Madison535Tracker class and the associated bin utility.
+# 06/23/2016  Implement Ucert::YstTracker class and the associated bin utility (一事通).
+# 06/14/2016  Implement Ucert::WmsTracker class and the associated bin utility (Internal WMS credit report system).
+# 05/11/2016  Remove 'db_tbls' file into 'data' directory; Refactor parse_be_user_entitlement_report method of
+#                Ucert::CitidirectBETracker class, in order to accomodate the new entitlement report data format.
+# 04/21/2016  Refactor Ucert::GoTracker class by Chris.
+# 04/18/2016  Implement Ucert::FrbTracker class and the associated bin utility (Federal Reserve Banks services).
+# 04/11/2016  Refactor Ucert::GoTracker class by Chris.
+# 04/01/2016  Refactor Ucert::Sage100Tracker class, add 'parse_sy_uer_role_task_permissions_detail_report' method in
+#               order to read additional task permissions report.
+# 03/29/2016  Improve 'ad_searches_by_text' under Ucert::AdTracker class.
+# 03/21/2016  Finish to check User Map Dn Match for all systems.
+# 03/21/2016  Re-factor Ucert::AdTracker class; implement local_ip_2_host method for reverse DNS lookup.
+# 03/17/2016  Fix a bug in the Ucert::CitidirectSecuritiesTracker class.
+# 03/15/2016  Re-factor Ucert::AdTracker class; depreciate the 'adfind' connector support.
+# 03/14/2016  Add 'demo/idm_ad_reload.rb' script to automate the 'cyber_idm' AD tables update automatically in the
+#               server side.
+# 03/09/2016  Add 'db_tbls' file into 'data' directory, where its contains the list of matching db table names; the
+#               file would be needed by the app to perform database update.
+# 03/08/2016  Add 'ad_delta' AD record change tracking support in the 'AdTracker' class.
+# 03/04/2016  Fix a bug in the T24Tracker class 'parse_t24_user_report' method, where additional
+#               application or group  entitlements were omitted.
+# 03/04/2016  Improve the 'adgrep' bin utility to catch and display multiple matches.
+# 02/29/2016  Implement additional logic in the GoTracker.go_searches_by_text method, to handle
+#               more flexible user search string input.
+# 02/29/2016  Implement Ucert::AixTracker class and the associated bin utility; implement better DN record change
+#               detection mechanism across the board including GoTracker class.
+# 02/25/2016  Implement Ucert::CitrixSharefileTracker class and the associated bin utility.
+# 02/24/2016  Implement Ucert::EquinixTracker class and the associated bin utility;
+#               remove the obsolete AccountMap class.
+# 02/24/2016  Update search function to Ucert::GoTracker.
+# 02/24/2016  Add computer search function to Ucert::AdTracker.
+# 02/23/2016  Bug fix of the inconsistancy with STB map file.
+# 02/23/2016  Add search function to UCert::GoTracker class.
+# 02/23/2016  Implement Ucert::StbTracker class and the associated bin utility.
+# 02/19/2016  Fix map file dn data loss bug.
+# 02/19/2016  Implement Ucert::CitidirectBETracker class and the associated bin utility.
+# 02/18/2016  Implement function to Ucert::GoTracker to export go contact sheet.
+# 02/17/2016  Implement Ucert::AudiologTracker class and the associated bin utility.
+# 02/16/2016  Implement Ucert::MantisTracker class and the associated bin utility.
+# 02/11/2016  Add membership information into the 'ad_dump' bin utility.
+# 02/11/2016  Implement Ucert::CmbrunNYTracker class and the associated bin utility.
+# 01/20/2016  Modify 'ad_update' utility to disable support for 'adfind' support and Domain ID logon;
+#               going forward, a valid DN would be needed. (Better Ubuntu Linux platform deployment experience).
+# 01/20/2016  Implement Ucert::Check21Tracker class and the associated bin utility; fix a bug in
+#               Ucert::SwiftOnlineTracker.
+# 01/14/2016  Implement Ucert::SwiftOnlineTracker class and the associated bin utility.
+# 01/13/2016  Fix a bug in the Ucert::FisPrimeTracker.insert_dn method; implement Ucert::VpnTracker class
+#               and associated bin utility.
+# 01/12/2016  Add two structural functions to Ucert::GoTracker.
+# 01/12/2016  Implement Ucert::Sage100Tracker class and the associated bin utility.
+# 01/11/2016  Re-factor 'insert_dn' mechanism, so that it would automatically detect and update the 'DN'
+#               field when it loads.
+# 01/08/2016  Re-factor the Ucert::T24Tracker class, abstract out the 'insert_dn' method (finally).
+# 01/08/2016  Implement Ucert::DbDirectTracker class and the associated bin utility.
+# 01/07/2016  Implement Ucert::JpmAccessTracker class and the associated bin utility.
+# 12/30/2015  Implement Ucert::CitidirectSecuritiesTracker class and the associated bin utility.
+# 12/30/2015  Fix a bug in the T24Tracker.parse_t24_user_report function.
+# 12/23/2015  Update several modifications for upload functions to different trackers by Chris
+# 12/14/2015  Update "Ucert::AdTracker.update_ad_cache" method and add sanity check for LDAP ID input.
+# 12/02/2015  Implement 'Ucert::AllianceSwiftTracker' class and associated 'swift_dump' utility; minor
+#               adjustment to the 'save!' method across all tracker classes.
+# 12/01/2015  Re-implement 'adump.rb' by using 'Ucert::AdTracker' class; change its name to 'adgrep';
+#               fix a small bug in the 'Ucert::AdTracker.ad_search_by_text' method
+# 11/30/2015  Modification for 'Ucert::T24Tracker.t24_2_ad_user' method
+# 11/24/2015  Implement Ucert::FisEgiftsTracker class; add 'egifts_dump' utility; minor improvement to
+#               'Ucert::T24Tracker.t24_2_ad_user' method
+# 11/13/2015  Refactor 'ad_dump', 'ad_update' utilities; add ability to dump out 'computer' table
+# 11/12/2015  Refactor Ucert::AdTracker class: a) add support to openldap as an AD connector,
+#               b) add 'get_dn_attribute' method
+# 11/02/2015  Add 'search_by_dn' method for the Ucert::T24Tracker and Ucert::FisPrimeTracker classes.
+# 10/30/2015  Add Ucert::Utils module; add Ucert::FisPrimeTracker class.
+# 10/23/2015  Add class 'acct_cntl_code' definition back to Ucert::AdTracker class
+# 10/08/2015  Ucert::T24Tracker class bug fixes and performance enhancement
+# 10/08/2015  Add small utiliies under bin directory, i.e. 'ad_dump', 'ad_update', 't24_dump'
+# 10/08/2015  Add Ucert::GoTracker class by Chris Gui
+# 10/06/2015  Add Ucert::T24Tracker class
+# 10/01/2015  Add 'get_os_info', 'cntl_code_2_property_flag', 'print' methods for Ucert::AdTracker class.
+# 09/30/2015  Small bug fix of method 'ad_searches_by_text' to return Array under Exception condition.
+# 09/29/2015  Add 'ad_searches_by_text', 'get_cns' methods for Ucert::AdTracker class.
+# 09/15/2015  Add 'get_email_address', 'get_department', 'get_cn' for Ucert::AdTracker class, credit to Chris
+
+## Mile-stones
+
+- March 2016, go live with 'cyber_idm' app in Debian 14.0 LTS.
+- Oct 2015, department proof-of-concept demo acceptance.
+- June 2015, design considerations and prototypes.
+
+### Backward Incompatibilities
+
+- List of features that are backward incompatible:
+
+
+## Beta Release 1.x
+
+
+## Development Release 0.x
+
+#
+#	06/15/2015	Implement the active directory tracker class.

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2012-2015  CMBNY Risk Department
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.rdoc

@@ -0,0 +1,61 @@
+= Ucert Ruby API README
+
+
+== What's this program for?
+This program is designed for the enterprise wide user certification / recertification / audit purpose.
+
+
+== Credits
+The software architect and main developer is CMBNY ISO Yang Li starting in July 2015. Chris Gui is contributing to this software since September 2015.
+
+
+== Program Version
+The latest release is Beta version 0.2.x as of Sprint 2016. Please refer to the CHANGELOG.md for the program's history information.
+
+
+== Author Contact
+This program is designed and developed by CMBNY ISO Yang Li. You can reach him by Email. <yangli@ny.cmbchina.com> or Phone <646.843.6761>
+
+
+== Installation
+The easiest way to install ruby-prof is by using Ruby Gems.  To install from the local gem file:
+
+  gem install ucert
+
+
+== Requirements?
+You need the Ruby 1.9.3 or above in order to use this program. In addition, I developed and tested the code in cygwin with Ruby 2.2.2.
+1. You need to setup Ruby 1.9.x environment. In my test environment, I was able to set it up with RVM. Please refer to this page for more installation information:
+http://www.ruby-lang.org/en/downloads/
+
+2. In addition, the following dependency are needed by different components of this software:
+	a. "adfind"windows executable program by Joe Richards: www.joeware.net/freetools/tools/adfind/index.htm
+      (depreciated as of Dec 2015, due to the close-source and only support Windows environment)
+  b. OpenLdap (http://www.openldap.org/), replacemnt of "adfind"
+
+
+== Active directory Discovery and Tracking
+  $ ad_update? (TBD)
+
+
+== More Usage Cases:
+There are more examples under the 'demos' folder of this package. The examples show how to use the 'ucert' API to get your job done easily. Please check out the code - they should be easy and straightforward to be understood.
+
+
+== More document(s):
+The software comes with the Ruby doc during your installation as shown above. For your convenience,
+the Ruby doc is also distributed in a separate package 'ucert-x.x.x-rdoc.tar.gz'. You can unzip the package, navigate to the 'doc' folder, and click the 'index.html' to open the start page in your favorite browser.
+
+If you need additional documentation / information other than this README file and the Ruby document package, please be patient - as I'm still working on it :)
+
+
+== How do I report the bugs, or maybe require some new features?
+Contact the author Yang Li directly at email 'yangli@ny.cmbchina.computer',  or phone me directly on my extension x6761.
+
+
+== Internal Distribution Only
+Currently the code base is indented to be distributed internally. It's not available from the Internet. Please contact me directly if you need the latest version of the gem.
+
+
+== Legal Disclaimer:
+This software is provided strictly 'as-if' without any implied warranty. You're free to copy or modify the codes anyway you want - a reference back to this software will be appreciated. Please refer to the 'LICENSE.txt' file for more information.

data/Rakefile

@@ -0,0 +1,8 @@
+require 'rake/testtask'
+
+Rake::TestTask.new do |t|
+  t.libs << "ucert"
+  t.test_files = FileList['test/test*.rb']
+  t.warning = false
+  t.verbose = false
+end

data/TODO

@@ -0,0 +1,5 @@
+# The following improvements would be nice to have:
+
+
+1. Add unit test cases for all major modules / classes.
+2. Add the RoR front end. 

data/bin/ad_dump

@@ -0,0 +1,74 @@
+#!/usr/bin/env ruby
+#--
+# ucert
+#
+# A  Ruby library for enterprise person account certification / recertification / audit project
+#
+# Copyright (c)  CMBNY Risk Department
+#++
+
+# Small utility to dump out AD person and computer objectcategory from the AD cache file. The output is in plain-text format
+# and ready for the database import
+require 'optparse'
+require 'ostruct'
+require 'ucert'
+
+class CmdOptions
+    # Returen an OpenStruct describing the command line options
+  def self.parse(args)
+    @options = OpenStruct.new # OpenStruct is a structure like hash table
+    @options.verbose = false # verbose and banner are key and value
+    @options.banner = "Usage: #{__FILE__ } -h"
+    @version = ["0","1"]    # Program version information
+    @last_change = "10/07/2015"
+    opt_parser = OptionParser.new do |opts|
+
+      # Boolean switch for the verbose mode switch
+      opts.on("-v", "--[no-]verbose", "Verbose Mode") do |v|
+        @options.verbose = v
+      end
+
+      # Boolean switch for for person table dump switch
+      opts.on("-p", "--[no-]person", "Person Mode") do |v|
+        @options.person = v
+      end
+
+      # Boolean switch for for computer table dump switch
+      opts.on("-c", "--[no-]computer", "Computer Mode") do |v|
+        @options.computer = v
+      end
+
+      # Displaying help.
+      opts.on("-h", "--help", "Display Help") do |v|
+        puts opts
+        exit
+      end
+
+      # Another typical switch to print the version.
+      opts.on_tail("-V","--version", String, "Show Program Version") do
+        @options.version = "Program Version: #{@version.join('.')}; Last Modification: #{@last_change}"
+        puts @options.version
+        exit
+      end
+    end
+    opt_parser.parse!(args)
+    puts "Captured Command Line Arguments: #{@options}" if @options.verbose
+    return @options
+  end
+end
+
+##########################################################################
+###                              Main                                  ###
+##########################################################################
+# Command line arguments structure
+@options=CmdOptions.parse(ARGV)
+#puts "Options: #{@options}"
+k=Ucert::AdTracker.new(:verbose=>false)
+if @options.person
+  k.print("person")
+elsif @options.computer
+  k.print("computer")
+else
+  puts "Usage: #{__FILE__} -h"
+end
+k=nil

data/bin/ad_update

@@ -0,0 +1,48 @@
+#!/usr/bin/env ruby
+#--
+# ucert
+#
+# A  Ruby library for enterprise user account certification / recertification / audit project
+#
+# Copyright (c)  CMBNY Risk Department
+#++
+
+# Small utility to update AD cache files.
+require "ucert"
+require "io/console"
+
+
+if STDIN.respond_to?(:noecho)
+  def get_password(prompt="Password: ")
+    print prompt
+    STDIN.noecho(&:gets).chomp
+  end
+else
+  def get_password(prompt="Password: ")
+    `read -s -p "#{prompt}" password; echo $password`.chomp
+  end
+end
+
+ny_ad=Ucert::AdTracker.new(:verbose=>false)
+# Update adfind cache files
+#puts "Update the AD cache file for external program \"adfind\"..."
+#ny_ad.ldap_connector="adfind"
+#ny_ad.update_ad_cache("person")
+#ny_ad.update_ad_cache("computer")
+
+# Update openldap cache file
+puts "\n\nUpdate the AD cache file for external program \"openldap\"..."
+ny_ad.ldap_connector="openldap"
+puts "You need to provide the domain credential for connecting. Please enter a valid DN then press Enter: "
+STDOUT.flush
+ny_ad.ldap_connector_id=gets.chomp
+#puts "Password: "
+#STDOUT.flush
+#ny_ad.ldap_connector_pass=gets.chomp
+ny_ad.ldap_connector_pass = get_password("Then enter your password here: ")
+puts 
+ny_ad.update_ad_cache("person")
+ny_ad.update_ad_cache("computer")
+
+
+ny_ad=nil

data/bin/adgrep

@@ -0,0 +1,149 @@
+#!/usr/bin/env ruby
+##########################################################################
+#  Program to sift through CMBNY domain setting for CMBNY user information
+#  Usage:   ruby adgrep -h
+#
+#    by Yang Li, yang.li@ny.cmbchina.com, (646) 843.6761
+##########################################################################
+# Change Log:
+#
+# 12/01/2015  Re-implement the program by using the Ucert gem API; change program name from 'ad_dump.rb' to 'adgrep'
+# 09/25/2015  Re-org the program command option working flow; fix AD cache files path to the user home directory
+# 09/18/2015  Add method 'code_2_flag' to perform user account status lookup; 'get_os_info' to retrieve OS
+# 09/17/2015  Add method 'get_account_control_status' to retrieve user account status (i.e. lockout, disable etc..)
+# 09/16/2015  Add command option '-print ' to export the records in the tab-delimited format.
+# 09/15/2015  Add method 'get_cn' to retrieve the full name of CMBNY employee
+
+require 'optparse'
+require 'ostruct'
+require 'ucert'
+
+class CmdOptions
+    # Returen an OpenStruct describing the command line options
+  def self.parse(args)
+    # The options specified on the command line will be collected in *options*.
+    # We set default values here.
+    @options = OpenStruct.new # OpenStruct is a structure like hash table
+    @options.verbose = false # verbose and banner are key and value
+    @options.banner = "Usage: ruby adump.rb -h"
+    @version = ["0","9"]    # Program version information
+    @last_change = "09/25/2015"
+
+    opt_parser = OptionParser.new do |opts|
+      # Boolean switch.
+      opts.on("-v", "--[no-]verbose", "Verbose Mode") do |v|
+        @options.verbose = v
+      end
+
+      # Displaying help.
+      opts.on("-h", "--help", "Display Help") do |v|
+        puts opts
+        exit
+      end
+
+      # Update adstore cache.
+      opts.on("-u", "--update", "Update Active Directory Cache Datebase") do |v|
+        @options.update = v
+      end
+
+      # Update adstore cache.
+      opts.on("-s", "--search type", String, "Search Active Directory Cache Datebase by Record Type \(person or computer\)") do |type|
+        @options.search = type.downcase
+      end
+
+      # Print the adstore cache record in the tab delimited format (easy for mySQL DB import via 'LOAD DATA INFILE' command later).
+      opts.on("-p", "--print type", String, "Print out records in tab-delimited format, by Type \(person or computer\)") do |dump|
+        @options.dump = dump.downcase
+      end
+
+      # Another typical switch to print the version.
+      opts.on_tail("-V","--version", String, "Show Program Version") do
+        @options.version = "Program Version: #{@version.join('.')}; Last Modification: #{@last_change}"
+        puts @options.version
+        exit
+      end
+    end
+
+    opt_parser.parse!(args)
+    puts "Captured Command Line Arguments: #{@options}" if @options.verbose
+    return @options
+  end
+end  # class CmdOptions
+
+##########################################################################
+###                              Main                                  ###
+##########################################################################
+def print_person(my_dn)
+  ny_store=Ucert::AdTracker.new(:verbose=>@options.verbose)
+  my_record=ny_store.get_ad_record(my_dn)
+  my_id=ny_store.get_dn_attribute("person",my_dn,"sAMAccountName")
+  my_email=ny_store.get_dn_attribute("person",my_dn,"mail")
+  my_department=ny_store.get_dn_attribute("person",my_dn,"department")
+  my_cntl_code=ny_store.get_dn_attribute("person",my_dn,"userAccountControl")
+  my_acct_status=ny_store.code_2_flag(my_cntl_code)
+  puts "\nFound DN: #{my_dn}"
+  #puts "My Attributes: #{my_record}"
+  puts "Sam Account: #{my_id}"
+  puts "Email Address: #{my_email}"
+  puts "Department: #{my_department}"
+  puts "AD Account Status: #{my_acct_status}"
+  puts "AD Record: \n#{my_record}"
+  ny_store=nil
+end
+
+def print_computer(my_dn)
+  ny_store=Ucert::AdTracker.new(:verbose=>@options.verbose)
+  my_os=ny_store.get_os_info(my_dn)
+  my_record=ny_store.get_ad_record(my_dn)
+  puts "\nFound DN: #{my_dn}"
+  puts "OS: #{my_os}"
+  puts "AD Record: \n#{my_record}"
+  ny_store=nil
+end
+
+# Command line arguments structure
+@options=CmdOptions.parse(ARGV)
+# puts @options
+ny_store=Ucert::AdTracker.new(:verbose=>@options.verbose)
+if !@options.search.nil?
+  case @options.search
+  when "person"  # perform the adstore query on "person" records
+    puts "Please enter partial string of your email address / AD logon ID or other personal details, then press Enter key:"
+    STDOUT.flush
+    address=gets.chomp
+    my_dns=ny_store.searches(address,"person")
+    abort "No Match Found! System Exit. " if my_dns.empty?
+    my_dns.map {|d| print_person(d)}
+  when "computer" # perform the adstore query on "computer" records
+    puts "Please enter partial string of your computer IP address / hostname or other details, then press Enter key:"
+    STDOUT.flush
+    address=gets.chomp
+    my_dns=ny_store.searches(address,"computer")
+    abort "No Match Found! System Exit. " if my_dns.empty?
+    my_dns.map {|d| print_computer(d)}
+  else
+    puts "Error: search record type unknown. \n#{@options.banner} "
+    #exit
+  end
+elsif !@options.update.nil?
+  case @options.update
+  when true
+      puts "Update the local active directory cache database:"
+      ny_store.update_ad_cache("person")
+      ny_store.update_ad_cache("computer")
+      exit
+  else
+          #do nothing
+  end
+elsif !@options.dump.nil?
+  case @options.dump
+  when "person"  # perform the adstore query on "person" records
+    puts "Dumping out person records:" if @options.verbose
+    ny_store.print("person")
+  else
+          #do nothing
+  end
+else
+  puts "Usage: ruby adump.rb -h"#print help
+end
+ny_store=nil