IntenseWebs/freeipa
3
0
Fork 0
mirror of https://salsa.debian.org/freeipa-team/freeipa.git synced 2025-02-25 18:55:28 -06:00
Code Issues Packages Projects Releases Wiki Activity

Fix the pwpolicy_find post_callback

Browse Source 
Always call convert_time_for_output so time gets reported correctly.
That method has its own checks for whether the attributes are present;
an additional check is unnecessary.

Use a key function for sorting; cmp is deprecated, slower and
more complicated.

Add a test

https://fedorahosted.org/freeipa/ticket/2726
This commit is contained in:
Petr Viktorin
2012-05-18 08:19:45 -04:00
committed by Martin Kosek
parent 74293426d9
commit ae12575170
2 changed files with 33 additions and 18 deletions
Download Patch File Download Diff File Expand all files Collapse all files

35
ipalib/plugins/pwpolicy.py
View File

@@ -459,34 +459,36 @@ class pwpolicy_find(LDAPSearch):
# this command does custom sorting in post_callback # this command does custom sorting in post_callback
sort_result_entries = False sort_result_entries = False
def sort_priority(self,x,y): def priority_sort_key(self, entry):
"""Key for sorting password policies
returns a pair: (is_global, priority)
"""
# global policy will be always last in the output # global policy will be always last in the output
if x[1]['cn'][0] == global_policy_name: if entry[1]['cn'][0] == global_policy_name:
return 1 return True, 0
elif y[1]['cn'][0] == global_policy_name:
return -1
else: else:
# policies with higher priority will be at the beginning of the list # policies with higher priority (lower number) will be at the
# beginning of the list
try: try:
x = cmp(int(x[1]['cospriority'][0]), int(y[1]['cospriority'][0])) cospriority = entry[1]['cospriority'][0]
except KeyError: except KeyError:
# if cospriority is not present in the entry, rather return 0 # if cospriority is not present in the entry, rather return 0
# than crash # than crash
x = 0 cospriority = 0
return x return False, cospriority
def post_callback(self, ldap, entries, truncated, *args, **options): def post_callback(self, ldap, entries, truncated, *args, **options):
for e in entries: for e in entries:
# attribute rights are not allowed for pwpolicy_find # When pkey_only flag is on, entries should contain only a cn.
# Add a cospriority attribute that will be used for sorting.
# Attribute rights are not allowed for pwpolicy_find.
self.obj.add_cospriority(e[1], e[1]['cn'][0], rights=False) self.obj.add_cospriority(e[1], e[1]['cn'][0], rights=False)
if options.get('pkey_only', False):
# when pkey_only flag is on, entries should contain only a cn self.obj.convert_time_for_output(e[1], **options)
# and a cospriority attribute that will be used for sorting
# When the entries are sorted, cosentry is removed
self.obj.convert_time_for_output(e[1], **options)
# do custom entry sorting by its cospriority # do custom entry sorting by its cospriority
entries.sort(self.sort_priority) entries.sort(key=self.priority_sort_key)
if options.get('pkey_only', False): if options.get('pkey_only', False):
# remove cospriority that was used for sorting # remove cospriority that was used for sorting
@@ -497,4 +499,3 @@ class pwpolicy_find(LDAPSearch):
pass pass
api.register(pwpolicy_find) api.register(pwpolicy_find)

16
tests/test_xmlrpc/test_pwpolicy_plugin.py
View File

@@ -180,6 +180,21 @@ class test_pwpolicy(XMLRPC_test):
assert_attr_equal(entry, 'cospriority', '3') assert_attr_equal(entry, 'cospriority', '3')
def test_c_pwpolicy_find(self): def test_c_pwpolicy_find(self):
"""Test that password policies are sorted and reported properly"""
result = api.Command['pwpolicy_find']()['result']
assert len(result) == 4
assert result[0]['cn'] == (self.group,)
assert result[1]['cn'] == (self.group2,)
assert result[2]['cn'] == (self.group3,)
assert result[3]['cn'] == ('global_policy',)
# Test that returned values match the arguments
# Only test the second and third results; the first one was modified
for entry, expected in (result[1], self.kw2), (result[2], self.kw3):
for name, value in expected.iteritems():
assert_attr_equal(entry, name, str(value))
def test_c_pwpolicy_find_pkey_only(self):
"""Test that password policies are sorted properly with --pkey-only""" """Test that password policies are sorted properly with --pkey-only"""
result = api.Command['pwpolicy_find'](pkey_only=True)['result'] result = api.Command['pwpolicy_find'](pkey_only=True)['result']
assert len(result) == 4 assert len(result) == 4
@@ -225,4 +240,3 @@ class test_pwpolicy(XMLRPC_test):
# Remove the user we created # Remove the user we created
api.Command['user_del'](self.user) api.Command['user_del'](self.user)