freeipa/ipaclient/plugins/user.py

# Authors:
#   Jason Gerard DeRose <jderose@redhat.com>
#   Pavel Zuna <pzuna@redhat.com>
#
# Copyright (C) 2008  Red Hat
# see file 'COPYING' for use and warranty information
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.

from ipaclient.frontend import MethodOverride
from ipaclient.plugins.baseuser import baseuser_add_passkey
from ipalib import errors
from ipalib import Flag
from ipalib import util
from ipalib.plugable import Registry
from ipalib import _
from ipalib import x509

register = Registry()


@register(override=True, no_fail=True)
class user_del(MethodOverride):
    def get_options(self):
        for option in super(user_del, self).get_options():
            yield option
        yield Flag(
            'preserve?',
            include='cli',
            doc=_('Delete a user, keeping the entry available for future use'),
        )
        yield Flag(
            'no_preserve?',
            include='cli',
            doc=_('Delete a user'),
        )

    def forward(self, *keys, **options):
        if self.api.env.context == 'cli':
            no_preserve = options.pop('no_preserve', False)
            preserve = options.pop('preserve', False)
            if no_preserve and preserve:
                raise errors.MutuallyExclusiveError(
                    reason=_("preserve and no-preserve cannot be both set"))
            elif no_preserve:
                options['preserve'] = False
            elif preserve:
                options['preserve'] = True

        return super(user_del, self).forward(*keys, **options)


@register(override=True, no_fail=True)
class user_show(MethodOverride):
    def forward(self, *keys, **options):
        if 'out' in options:
            util.check_writable_file(options['out'])
            result = super(user_show, self).forward(*keys, **options)
            if 'usercertificate' in result['result']:
                certs = (x509.load_der_x509_certificate(c)
                         for c in result['result']['usercertificate'])
                x509.write_certificate_list(certs, options['out'])
                result['summary'] = (
                    _('Certificate(s) stored in file \'%(file)s\'')
                    % dict(file=options['out'])
                )
                return result
            else:
                raise errors.NoCertificateError(entry=keys[-1])
        else:
            return super(user_show, self).forward(*keys, **options)


@register(override=True, no_fail=True)
class user_add_passkey(baseuser_add_passkey):
    __doc__ = _("Add one or more passkey mappings to the user entry.")
ipalib: split off client-side plugin code into ipaclient Provide client-side overrides for command plugins which implement any of the client-side `interactive_prompt_callback`, `forward` or `output_for_cli` methods and move the methods from the original plugins to the overrides. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-04-28 03:15:01 -05:00			`# Authors:`
			`# Jason Gerard DeRose <jderose@redhat.com>`
			`# Pavel Zuna <pzuna@redhat.com>`
			`#`
			`# Copyright (C) 2008 Red Hat`
			`# see file 'COPYING' for use and warranty information`
			`#`
			`# This program is free software; you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published by`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# This program is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with this program. If not, see <http://www.gnu.org/licenses/>.`

			`from ipaclient.frontend import MethodOverride`
API: add new commands for passkey mappings - ipa user-add-passkey - ipa user-remove-passkey - ipa stageuser-add-passkey - ipa stageuser-remove-passkey Fixes: https://pagure.io/freeipa/issue/9261 Signed-off-by: Florence Blanc-Renaud <flo@redhat.com> Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com> 2022-09-05 08:39:58 -05:00			`from ipaclient.plugins.baseuser import baseuser_add_passkey`
ipalib: split off client-side plugin code into ipaclient Provide client-side overrides for command plugins which implement any of the client-side `interactive_prompt_callback`, `forward` or `output_for_cli` methods and move the methods from the original plugins to the overrides. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-04-28 03:15:01 -05:00			`from ipalib import errors`
			`from ipalib import Flag`
			`from ipalib import util`
			`from ipalib.plugable import Registry`
			`from ipalib import _`
			`from ipalib import x509`

			`register = Registry()`


client: ignore override errors in command overrides This fixes API initialization errors when the remote server does not have the overriden command. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-06-27 02:33:29 -05:00			`@register(override=True, no_fail=True)`
ipalib: split off client-side plugin code into ipaclient Provide client-side overrides for command plugins which implement any of the client-side `interactive_prompt_callback`, `forward` or `output_for_cli` methods and move the methods from the original plugins to the overrides. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-04-28 03:15:01 -05:00			`class user_del(MethodOverride):`
			`def get_options(self):`
			`for option in super(user_del, self).get_options():`
			`yield option`
			`yield Flag(`
			`'preserve?',`
			`include='cli',`
			`doc=_('Delete a user, keeping the entry available for future use'),`
			`)`
			`yield Flag(`
			`'no_preserve?',`
			`include='cli',`
			`doc=_('Delete a user'),`
			`)`

			`def forward(self, keys, *options):`
			`if self.api.env.context == 'cli':`
			`no_preserve = options.pop('no_preserve', False)`
			`preserve = options.pop('preserve', False)`
			`if no_preserve and preserve:`
			`raise errors.MutuallyExclusiveError(`
			`reason=_("preserve and no-preserve cannot be both set"))`
			`elif no_preserve:`
			`options['preserve'] = False`
			`elif preserve:`
			`options['preserve'] = True`

			`return super(user_del, self).forward(keys, *options)`


client: ignore override errors in command overrides This fixes API initialization errors when the remote server does not have the overriden command. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-06-27 02:33:29 -05:00			`@register(override=True, no_fail=True)`
ipalib: split off client-side plugin code into ipaclient Provide client-side overrides for command plugins which implement any of the client-side `interactive_prompt_callback`, `forward` or `output_for_cli` methods and move the methods from the original plugins to the overrides. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-04-28 03:15:01 -05:00			`class user_show(MethodOverride):`
			`def forward(self, keys, *options):`
			`if 'out' in options:`
			`util.check_writable_file(options['out'])`
			`result = super(user_show, self).forward(keys, *options)`
			`if 'usercertificate' in result['result']:`
x509: Make certificates represented as objects https://pagure.io/freeipa/issue/4985 Reviewed-By: Fraser Tweedale <ftweedal@redhat.com> Reviewed-By: Rob Crittenden <rcritten@redhat.com> Reviewed-By: Martin Basti <mbasti@redhat.com> 2017-06-16 03:18:07 -05:00			`certs = (x509.load_der_x509_certificate(c)`
			`for c in result['result']['usercertificate'])`
			`x509.write_certificate_list(certs, options['out'])`
ipalib: split off client-side plugin code into ipaclient Provide client-side overrides for command plugins which implement any of the client-side `interactive_prompt_callback`, `forward` or `output_for_cli` methods and move the methods from the original plugins to the overrides. https://fedorahosted.org/freeipa/ticket/4739 Reviewed-By: David Kupka <dkupka@redhat.com> 2016-04-28 03:15:01 -05:00			`result['summary'] = (`
			`_('Certificate(s) stored in file \'%(file)s\'')`
			`% dict(file=options['out'])`
			`)`
			`return result`
			`else:`
			`raise errors.NoCertificateError(entry=keys[-1])`
			`else:`
			`return super(user_show, self).forward(keys, *options)`
API: add new commands for passkey mappings - ipa user-add-passkey - ipa user-remove-passkey - ipa stageuser-add-passkey - ipa stageuser-remove-passkey Fixes: https://pagure.io/freeipa/issue/9261 Signed-off-by: Florence Blanc-Renaud <flo@redhat.com> Reviewed-By: Alexander Bokovoy <abokovoy@redhat.com> 2022-09-05 08:39:58 -05:00

			`@register(override=True, no_fail=True)`
			`class user_add_passkey(baseuser_add_passkey):`
			`__doc__ = _("Add one or more passkey mappings to the user entry.")`