2007-11-13 12:06:18 -06:00
|
|
|
#! /usr/bin/python -E
|
|
|
|
|
# Authors: John Dennis <jdennis@redhat.com>
|
|
|
|
|
#
|
|
|
|
|
# Copyright (C) 2007 Red Hat
|
|
|
|
|
# see file 'COPYING' for use and warranty information
|
|
|
|
|
#
|
|
|
|
|
# This program is free software; you can redistribute it and/or
|
|
|
|
|
# modify it under the terms of the GNU General Public License as
|
|
|
|
|
# published by the Free Software Foundation; version 2 only
|
|
|
|
|
#
|
|
|
|
|
# This program is distributed in the hope that it will be useful,
|
|
|
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
# GNU General Public License for more details.
|
|
|
|
|
#
|
|
|
|
|
# You should have received a copy of the GNU General Public License
|
|
|
|
|
# along with this program; if not, write to the Free Software
|
|
|
|
|
# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
|
|
|
|
|
#
|
|
|
|
|
|
|
|
|
|
import sys
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
import os
|
2007-11-13 12:06:18 -06:00
|
|
|
from optparse import OptionParser
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
|
2007-11-13 12:06:18 -06:00
|
|
|
import ipa.ipaclient as ipaclient
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
import ipa.ipautil as ipautil
|
2007-11-13 12:06:18 -06:00
|
|
|
import ipa.config
|
|
|
|
|
import ipa.ipaerror
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
import ipa.radius_util as radius_util
|
2007-11-13 12:06:18 -06:00
|
|
|
|
|
|
|
|
import xmlrpclib
|
|
|
|
|
import kerberos
|
|
|
|
|
import ldap
|
|
|
|
|
|
|
|
|
|
#------------------------------------------------------------------------------
|
|
|
|
|
|
2007-11-24 10:20:28 -06:00
|
|
|
radius_attrs = radius_util.radius_client_attr_to_ldap_attr.keys()
|
2007-11-27 15:16:10 -06:00
|
|
|
radius_attr_to_ldap_attr = radius_util.radius_client_attr_to_ldap_attr
|
|
|
|
|
ldap_attr_to_radius_attr = radius_util.radius_client_ldap_attr_to_radius_attr
|
2007-11-24 10:20:28 -06:00
|
|
|
mandatory_radius_attrs = ['Client-IP-Address', 'Secret']
|
2007-11-27 15:16:10 -06:00
|
|
|
distinguished_attr = 'Client-IP-Address'
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
|
|
|
|
|
#------------------------------------------------------------------------------
|
|
|
|
|
|
|
|
|
|
def help_option_callback(option, opt_str, value, parser, *args, **kwargs):
|
|
|
|
|
parser.print_help()
|
|
|
|
|
print
|
|
|
|
|
print "Valid interative attributes are:"
|
2007-11-24 10:20:28 -06:00
|
|
|
print ipautil.format_list(radius_attrs, quote='"')
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
print
|
|
|
|
|
print "Required attributes are:"
|
2007-11-24 10:20:28 -06:00
|
|
|
print ipautil.format_list(mandatory_radius_attrs, quote='"')
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
sys.exit(0)
|
|
|
|
|
|
|
|
|
|
def main():
|
|
|
|
|
pairs = {}
|
|
|
|
|
|
|
|
|
|
opt_parser = OptionParser(add_help_option=False)
|
|
|
|
|
|
|
|
|
|
opt_parser.add_option("-a", "--Client-IP-Address", dest="ip_addr",
|
|
|
|
|
help="RADIUS client ip address")
|
|
|
|
|
opt_parser.add_option("-s", "--Secret", dest="secret",
|
|
|
|
|
help="RADIUS client ip address")
|
|
|
|
|
opt_parser.add_option("-n", "--Name", dest="name",
|
2007-11-13 12:06:18 -06:00
|
|
|
help="RADIUS client name")
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
opt_parser.add_option("-t", "--NAS-Type", dest="nastype",
|
2007-11-13 23:04:19 -06:00
|
|
|
help="RADIUS client NAS Type")
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
opt_parser.add_option("-d", "--Description", dest="desc",
|
2007-11-13 12:06:18 -06:00
|
|
|
help="description of the RADIUS client")
|
|
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
opt_parser.add_option("-h", "--help", action="callback", callback=help_option_callback,
|
|
|
|
|
help="detailed help information")
|
|
|
|
|
opt_parser.add_option("-i", "--interactive", dest="interactive", action='store_true', default=False,
|
|
|
|
|
help="interactive mode, prompts with auto-completion")
|
|
|
|
|
opt_parser.add_option("-p", "--pair", dest="pairs", action='append',
|
|
|
|
|
help="specify one or more attribute=value pair(s), value may be optionally quoted, pairs are delimited by whitespace")
|
|
|
|
|
opt_parser.add_option("-f", "--file", dest="pair_file",
|
|
|
|
|
help="attribute=value pair(s) are read from file, value may be optionally quoted, pairs are delimited by whitespace. Reads from stdin if file is -")
|
|
|
|
|
opt_parser.add_option("-v", "--verbose", dest="verbose", action='store_true',
|
|
|
|
|
help="print information")
|
2007-11-13 12:06:18 -06:00
|
|
|
|
2007-11-27 20:29:50 -06:00
|
|
|
opt_parser.set_usage("Usage: %s [options] %s" % (distinguished_attr, os.path.basename(sys.argv[0])))
|
2007-11-13 12:06:18 -06:00
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
args = ipa.config.init_config(sys.argv)
|
|
|
|
|
options, args = opt_parser.parse_args(args)
|
|
|
|
|
|
2007-11-24 10:20:28 -06:00
|
|
|
if len(args) < 2:
|
2007-11-27 20:29:50 -06:00
|
|
|
opt_parser.error('missing %s' % (distinguished_attr))
|
2007-11-24 10:20:28 -06:00
|
|
|
|
|
|
|
|
ip_addr = args[1]
|
2007-11-27 15:16:10 -06:00
|
|
|
pairs[distinguished_attr] = ip_addr
|
2007-11-24 10:20:28 -06:00
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
# Get pairs from a file or stdin
|
|
|
|
|
if options.pair_file:
|
|
|
|
|
try:
|
2007-11-26 22:11:49 -06:00
|
|
|
av = ipautil.read_pairs_file(options.pair_file)
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
pairs.update(av)
|
|
|
|
|
except Exception, e:
|
|
|
|
|
print "ERROR, could not read pairs (%s)" % (e)
|
|
|
|
|
|
|
|
|
|
# Get pairs specified on the command line as a named argument
|
2007-11-27 15:16:10 -06:00
|
|
|
if options.ip_addr: pairs[distinguished_attr] = options.ip_addr
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
if options.secret: pairs['Secret'] = options.secret
|
|
|
|
|
if options.name: pairs['Name'] = options.name
|
|
|
|
|
if options.nastype: pairs['NAS-Type'] = options.nastype
|
|
|
|
|
if options.desc: pairs['Description'] = options.desc
|
|
|
|
|
|
|
|
|
|
# Get pairs specified on the command line as a pair argument
|
|
|
|
|
if options.pairs:
|
|
|
|
|
for p in options.pairs:
|
|
|
|
|
av = ipautil.parse_key_value_pairs(p)
|
|
|
|
|
pairs.update(av)
|
|
|
|
|
|
|
|
|
|
# Get pairs interactively
|
|
|
|
|
if options.interactive:
|
2007-11-27 15:16:10 -06:00
|
|
|
# Prompt first for mandatory attributes which have not been previously specified
|
|
|
|
|
prompted_mandatory_attrs = []
|
2007-11-27 20:55:06 -06:00
|
|
|
existing_attrs = pairs.keys()
|
2007-11-27 15:16:10 -06:00
|
|
|
for attr in mandatory_radius_attrs:
|
|
|
|
|
if not attr in existing_attrs:
|
|
|
|
|
prompted_mandatory_attrs.append(attr)
|
|
|
|
|
|
2007-11-24 10:20:28 -06:00
|
|
|
c = ipautil.AttributeValueCompleter(radius_attrs, pairs)
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
c.open()
|
2007-11-27 15:16:10 -06:00
|
|
|
av = c.get_pairs("Enter: ", prompted_mandatory_attrs, radius_util.validate)
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
pairs.update(av)
|
|
|
|
|
c.close()
|
|
|
|
|
|
2007-11-23 09:35:22 -06:00
|
|
|
# FIXME: validation should be moved to xmlrpc server
|
|
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
# Data collection done, assure mandatory data has been specified
|
2007-11-24 10:20:28 -06:00
|
|
|
|
2007-11-27 15:16:10 -06:00
|
|
|
if pairs.has_key(distinguished_attr) and pairs[distinguished_attr] != ip_addr:
|
|
|
|
|
print "ERROR, %s specified on command line (%s) does not match value found in pairs (%s)" % \
|
|
|
|
|
(distinguished_attr, ip_addr, pairs[distinguished_attr])
|
2007-11-24 10:20:28 -06:00
|
|
|
return 1
|
|
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
valid = True
|
2007-11-24 10:20:28 -06:00
|
|
|
for attr in mandatory_radius_attrs:
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
if not pairs.has_key(attr):
|
|
|
|
|
valid = False
|
|
|
|
|
print "ERROR, %s is mandatory, but has not been specified" % (attr)
|
|
|
|
|
if not valid:
|
|
|
|
|
return 1
|
2007-11-13 12:06:18 -06:00
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
# Make sure each attribute is a member of the set of valid attributes
|
|
|
|
|
valid = True
|
|
|
|
|
for attr,value in pairs.items():
|
2007-11-24 10:20:28 -06:00
|
|
|
if attr not in radius_attrs:
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
valid = False
|
|
|
|
|
print "ERROR, %s is not a valid attribute" % (attr)
|
|
|
|
|
if not valid:
|
|
|
|
|
print "Valid attributes are:"
|
2007-11-24 10:20:28 -06:00
|
|
|
print ipautil.format_list(radius_attrs, quote='"')
|
2007-11-13 12:06:18 -06:00
|
|
|
return 1
|
|
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
# Makse sure each value is valid
|
|
|
|
|
valid = True
|
|
|
|
|
for attr,value in pairs.items():
|
2007-11-26 10:12:58 -06:00
|
|
|
if not radius_util.validate(attr, value):
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
valid = False
|
|
|
|
|
if not valid:
|
2007-11-13 12:06:18 -06:00
|
|
|
return 1
|
|
|
|
|
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
# Dump what we've got so far
|
|
|
|
|
if options.verbose:
|
|
|
|
|
print "Pairs:"
|
|
|
|
|
for attr,value in pairs.items():
|
|
|
|
|
print "\t%s = %s" % (attr, value)
|
|
|
|
|
|
2007-11-27 20:29:50 -06:00
|
|
|
radius_entity = radius_util.RadiusClient()
|
Add radius profile implementations:
get_radius_profile_by_uid
add_radius_profile
update_radius_profile
delete_radius_profile
find_radius_profiles
Rewrite command line arg handling, now support pair entry, interactive
mode with auto completion, reading pairs from a file, better handling
of mandatory values, better help, long arg names now match attribute
name in pairs
Establish mappings for all attributes and names used in clients and
profiles
Add notion of containers to radius clients and profiles in LDAP
Move common code, variables, constants, and strings into the files
radius_client.py, radius_util.py, ipautil.py to eliminate redundant
elements which could get out of sync if modified and to provide access
to other code which might benefit from using these items in the
future.
Add utility functions:
format_list()
parse_key_value_pairs()
Add utility class:
AttributeValueCompleter
Unify attribute usage in radius ldap schema
2007-11-21 12:11:10 -06:00
|
|
|
for attr,value in pairs.items():
|
2007-11-27 20:29:50 -06:00
|
|
|
radius_entity.setValue(radius_attr_to_ldap_attr[attr], value)
|
2007-11-13 12:06:18 -06:00
|
|
|
|
|
|
|
|
try:
|
2007-11-13 19:05:02 -06:00
|
|
|
ipa_client = ipaclient.IPAClient()
|
2007-11-27 20:29:50 -06:00
|
|
|
ipa_client.add_radius_client(radius_entity)
|
2007-11-13 12:06:18 -06:00
|
|
|
print "successfully added"
|
|
|
|
|
except xmlrpclib.Fault, f:
|
|
|
|
|
print f.faultString
|
|
|
|
|
return 1
|
|
|
|
|
except kerberos.GSSError, e:
|
|
|
|
|
print "Could not initialize GSSAPI: %s/%s" % (e[0][0][0], e[0][1][0])
|
|
|
|
|
return 1
|
|
|
|
|
except xmlrpclib.ProtocolError, e:
|
|
|
|
|
print "Unable to connect to IPA server: %s" % (e.errmsg)
|
|
|
|
|
return 1
|
|
|
|
|
except ipa.ipaerror.IPAError, e:
|
|
|
|
|
print "%s" % (e.message)
|
|
|
|
|
return 1
|
|
|
|
|
|
|
|
|
|
return 0
|
|
|
|
|
|
|
|
|
|
if __name__ == "__main__":
|
|
|
|
|
sys.exit(main())
|
