mirror of
https://salsa.debian.org/freeipa-team/freeipa.git
synced 2025-01-13 09:41:55 -06:00
Implement group-del
This commit is contained in:
parent
5c07d97865
commit
8a97b3e8a8
@ -133,6 +133,15 @@ def get_entry_by_dn (dn, sattrs=None):
|
|||||||
# logging.info("IPA: get_entry_by_dn '%s'" % dn)
|
# logging.info("IPA: get_entry_by_dn '%s'" % dn)
|
||||||
return get_base_entry(dn, searchfilter, sattrs)
|
return get_base_entry(dn, searchfilter, sattrs)
|
||||||
|
|
||||||
|
def get_entry_by_cn (cn, sattrs):
|
||||||
|
"""Get a specific entry by cn. Return as a dict of values.
|
||||||
|
Multi-valued fields are represented as lists.
|
||||||
|
"""
|
||||||
|
# logging.info("IPA: get_entry_by_cn '%s'" % cn)
|
||||||
|
# cn = self.__safe_filter(cn)
|
||||||
|
searchfilter = "(cn=%s)" % cn
|
||||||
|
return get_sub_entry("cn=accounts," + basedn, searchfilter, sattrs)
|
||||||
|
|
||||||
# User support
|
# User support
|
||||||
|
|
||||||
def user_exists(uid):
|
def user_exists(uid):
|
||||||
|
@ -51,8 +51,13 @@ class xmlrpc(Backend):
|
|||||||
return command(*params)
|
return command(*params)
|
||||||
except socket.error, e:
|
except socket.error, e:
|
||||||
print e[1]
|
print e[1]
|
||||||
return False
|
|
||||||
except xmlrpclib.Fault, e:
|
except xmlrpclib.Fault, e:
|
||||||
raise errors.convertFault(e)
|
err = errors.convertFault(e)
|
||||||
|
code = getattr(err,'faultCode',None)
|
||||||
|
if code:
|
||||||
|
print "%s: %s" % (code, getattr(err,'__doc__',''))
|
||||||
|
else:
|
||||||
|
raise err
|
||||||
|
return False
|
||||||
|
|
||||||
api.register(xmlrpc)
|
api.register(xmlrpc)
|
||||||
|
@ -27,6 +27,7 @@ from ipalib.frontend import Param
|
|||||||
from ipalib import api
|
from ipalib import api
|
||||||
from ipa_server import servercore
|
from ipa_server import servercore
|
||||||
from ipa_server import ipaldap
|
from ipa_server import ipaldap
|
||||||
|
from ipa_server import ipautil
|
||||||
import ldap
|
import ldap
|
||||||
|
|
||||||
|
|
||||||
@ -83,13 +84,49 @@ class group_add(crud.Add):
|
|||||||
|
|
||||||
result = servercore.add_entry(entry)
|
result = servercore.add_entry(entry)
|
||||||
return result
|
return result
|
||||||
|
def forward(self, *args, **kw):
|
||||||
|
result = super(crud.Add, self).forward(*args, **kw)
|
||||||
|
if result:
|
||||||
|
print "Group %s added" % args[0]
|
||||||
api.register(group_add)
|
api.register(group_add)
|
||||||
|
|
||||||
|
|
||||||
class group_del(crud.Del):
|
class group_del(crud.Del):
|
||||||
'Delete an existing group.'
|
'Delete an existing group.'
|
||||||
|
def execute(self, *args, **kw):
|
||||||
|
"""args[0] = dn of the group to remove
|
||||||
|
|
||||||
|
Delete a group
|
||||||
|
|
||||||
|
The memberOf plugin handles removing the group from any other
|
||||||
|
groups.
|
||||||
|
"""
|
||||||
|
group_dn = args[0]
|
||||||
|
|
||||||
|
group = servercore.get_entry_by_dn(group_dn, ['dn', 'cn'])
|
||||||
|
if group is None:
|
||||||
|
raise errors.NotFound
|
||||||
|
# logging.info("IPA: delete_group '%s'" % group_dn)
|
||||||
|
|
||||||
|
# We have 2 special groups, don't allow them to be removed
|
||||||
|
# FIXME
|
||||||
|
# if "admins" in group.get('cn') or "editors" in group.get('cn'):
|
||||||
|
# raise ipaerror.gen_exception(ipaerror.CONFIG_REQUIRED_GROUPS)
|
||||||
|
|
||||||
|
# Don't allow the default user group to be removed
|
||||||
|
config=servercore.get_ipa_config()
|
||||||
|
default_group = servercore.get_entry_by_cn(config.get('ipadefaultprimarygroup'), None)
|
||||||
|
if group_dn == default_group.get('dn'):
|
||||||
|
raise errors.DefaultGroup
|
||||||
|
|
||||||
|
return servercore.delete_entry(group_dn)
|
||||||
|
def forward(self, *args, **kw):
|
||||||
|
group = self.api.Command['group_show'](ipautil.utf8_encode_value(args[0]))
|
||||||
|
if not group:
|
||||||
|
print "nothing found"
|
||||||
|
return False
|
||||||
|
a = group.get('dn')
|
||||||
|
result = super(crud.Del, self).forward(a)
|
||||||
api.register(group_del)
|
api.register(group_del)
|
||||||
|
|
||||||
|
|
||||||
@ -113,4 +150,11 @@ api.register(group_find)
|
|||||||
|
|
||||||
class group_show(crud.Get):
|
class group_show(crud.Get):
|
||||||
'Examine an existing group.'
|
'Examine an existing group.'
|
||||||
|
def execute(self, *args, **kw):
|
||||||
|
cn=args[0]
|
||||||
|
result = servercore.get_sub_entry(servercore.basedn, "cn=%s" % cn, ["*"])
|
||||||
|
return result
|
||||||
|
def forward(self, *args, **kw):
|
||||||
|
result = super(crud.Get, self).forward(*args, **kw)
|
||||||
|
return result
|
||||||
api.register(group_show)
|
api.register(group_show)
|
||||||
|
Loading…
Reference in New Issue
Block a user