PMG/RuleDB/LDAPUser.pm: imported from private repository

author Dietmar Maurer <dietmar@proxmox.com>

Wed, 22 Mar 2017 09:28:12 +0000 (10:28 +0100)

committer Dietmar Maurer <dietmar@proxmox.com>

Wed, 22 Mar 2017 10:15:44 +0000 (11:15 +0100)
author Dietmar Maurer <dietmar@proxmox.com>
Wed, 22 Mar 2017 09:28:12 +0000 (10:28 +0100)
committer Dietmar Maurer <dietmar@proxmox.com>
Wed, 22 Mar 2017 10:15:44 +0000 (11:15 +0100)
diff --git a/Makefile b/Makefile

index 5b10f3a3bf0d20ba75e231da1f5398e295d58d62..b6853de22dfc4c66a225d0ec59a38087600ff6f3 100644 (file)
--- a/Makefile
+++ b/Makefile
@@ -79,6 +79,7 @@ LIBSOURCES =                          \
         PMG/RuleDB/Receiver.pm          \
         PMG/RuleDB/Domain.pm            \
         PMG/RuleDB/ReceiverDomain.pm    \
+       PMG/RuleDB/LDAPUser.pm          \
         PMG/RuleDB/TimeFrame.pm         \
         PMG/RuleDB/MatchField.pm        \
         PMG/RuleDB/ContentTypeFilter.pm \
diff --git a/PMG/RuleDB.pm b/PMG/RuleDB.pm

index 0e77d976db6e1322eab3d75d80234a7735fab66c..e064ef825e1176d337974e466cb1e6a2cbfb9ddd 100644 (file)
--- a/PMG/RuleDB.pm
+++ b/PMG/RuleDB.pm
@@ -25,7 +25,7 @@ use PMG::RuleDB::Domain;
  use PMG::RuleDB::ReceiverDomain;
  # fixme:
  #use Proxmox::RuleDB::LDAP;
-#use Proxmox::RuleDB::LDAPUser;
+use PMG::RuleDB::LDAPUser;
  use PMG::RuleDB::TimeFrame;
  use PMG::RuleDB::Spam;
  use PMG::RuleDB::ReportSpam;
@@ -320,9 +320,9 @@ sub get_object {
  #    elsif ($otype == Proxmox::RuleDB::LDAP::otype) {
  #      $obj = Proxmox::RuleDB::LDAP->new();
  #    }
-#    elsif ($otype == Proxmox::RuleDB::LDAPUser::otype) {
-#      $obj = Proxmox::RuleDB::LDAPUser->new();
-#    }
+    elsif ($otype == PMG::RuleDB::LDAPUser::otype) {
+       $obj = PMG::RuleDB::LDAPUser->new();
+    }
      # WHEN OBJECTS
      elsif ($otype == PMG::RuleDB::TimeFrame::otype) {
         $obj = PMG::RuleDB::TimeFrame->new();
diff --git a/PMG/RuleDB/LDAPUser.pm b/PMG/RuleDB/LDAPUser.pm

new file mode 100644 (file)

index 0000000..39d1bc2
--- /dev/null
+++ b/PMG/RuleDB/LDAPUser.pm
@@ -0,0 +1,134 @@
+package PMG::RuleDB::LDAPUser;
+
+use strict;
+use warnings;
+use DBI;
+use Digest::SHA;
+
+use PMG::Utils;
+use PMG::RuleDB::Object;
+use PMG::LDAPCache;
+use PMG::LDAPSet;
+
+use base qw(PMG::RuleDB::Object);
+
+sub otype {
+    return 1006;
+}
+
+sub oclass {
+    return 'who';
+}
+
+sub otype_text {
+    return 'LDAP User';
+}
+
+sub oicon {
+    return 'user.gif';
+}
+
+sub new {
+    my ($type, $ldapuser, $profile, $ogroup) = @_;
+
+    my $class = ref($type) || $type;
+ 
+    my $self = $class->SUPER::new($class->otype(), $ogroup);
+
+    $self->{ldapuser} = $ldapuser // '';
+    $self->{profile} = $profile // '';
+    
+    return $self;
+}
+
+sub load_attr {
+    my ($type, $ruledb, $id, $ogroup, $value) = @_;
+
+    my $class = ref($type) || $type;
+
+    defined($value) || die "undefined value: ERROR";
+    
+    my $obj;
+    if ($value =~ m/^([^:]*):(.*)$/) {
+       $obj = $class->new($2, $1, $ogroup);
+       $obj->{digest} = Digest::SHA::sha1_hex($id, $2, $1, $ogroup);
+   } else {
+       $obj = $class->new($value, '', $ogroup);
+       $obj->{digest} = Digest::SHA::sha1_hex ($id, $value, '#', $ogroup);
+    }
+
+    $obj->{id} = $id;
+    
+    return $obj;
+}
+
+sub save {
+    my ($self, $ruledb) = @_;
+
+    defined($self->{ogroup}) || die "undefined ogroup: ERROR";
+    defined($self->{ldapuser}) || die "undefined ldap user: ERROR";
+    defined($self->{profile}) || die "undefined ldap profile: ERROR";
+
+    my $user = $self->{ldapuser};
+    my $profile = $self->{profile};
+ 
+    my $confdata = "$profile:$user";
+    
+    if (defined($self->{id})) {
+       # update
+       
+       $ruledb->{dbh}->do(
+           "UPDATE Object SET Value = ? WHERE ID = ?", 
+           undef, $confdata, $self->{id});
+
+    } else {
+       # insert
+
+       my $sth = $ruledb->{dbh}->prepare(
+           "INSERT INTO Object (Objectgroup_ID, ObjectType, Value) " .
+           "VALUES (?, ?, ?);");
+
+       $sth->execute($self->{ogroup}, $self->otype, $confdata);
+    
+       $self->{id} = PMG::Utils::lastid($ruledb->{dbh}, 'object_id_seq'); 
+    }
+       
+    return $self->{id};
+}
+
+sub test_ldap {
+    my ($ldap, $addr, $user, $profile) = @_;
+
+    return $ldap->account_has_address($user, $addr, $profile); 
+}
+
+sub who_match {
+    my ($self, $addr, $ip, $ldap) = @_;
+
+    return 0 if !$ldap;
+
+    return test_ldap($ldap, $addr, $self->{ldapuser}, $self->{profile});
+}
+
+1;
+
+__END__
+
+=head1 PMG::RuleDB::LDAPUser
+
+A WHO object to check LDAP users
+
+=head2 Attribues
+
+=head3 ldapuser
+
+An LDAP user account (ignore case).
+
+=head3 profile
+
+The LDAP profile name
+
+=head2 Examples
+
+    $obj = PMG::RuleDB::LDAPUser>new('username', 'profile_name');
+
author	Dietmar Maurer <dietmar@proxmox.com>
	Wed, 22 Mar 2017 09:28:12 +0000 (10:28 +0100)
committer	Dietmar Maurer <dietmar@proxmox.com>
	Wed, 22 Mar 2017 10:15:44 +0000 (11:15 +0100)
Makefile		patch \| blob \| blame \| history
PMG/RuleDB.pm		patch \| blob \| blame \| history
PMG/RuleDB/LDAPUser.pm	[new file with mode: 0644]	patch \| blob