diff options
author | Ken Raffenetti <raffenet@mcs.anl.gov> | 2006-10-27 21:04:31 +0000 |
---|---|---|
committer | Ken Raffenetti <raffenet@mcs.anl.gov> | 2006-10-27 21:04:31 +0000 |
commit | e8ee28690e839cf962f70103a28dc54f9f16c365 (patch) | |
tree | 8bd988407c6b850a6e06737e839aeb44cdf6b434 /src/lib/Server/Hostbase/nisauth.py | |
parent | 1b1975d6c4cae86a9b9d6d4ed5ffb9f9ef775f18 (diff) | |
download | bcfg2-e8ee28690e839cf962f70103a28dc54f9f16c365.tar.gz bcfg2-e8ee28690e839cf962f70103a28dc54f9f16c365.tar.bz2 bcfg2-e8ee28690e839cf962f70103a28dc54f9f16c365.zip |
nis auth added, login/logout link added to templates
git-svn-id: https://svn.mcs.anl.gov/repos/bcfg/trunk/bcfg2@2462 ce84e21b-d406-0410-9b95-82705330c041
Diffstat (limited to 'src/lib/Server/Hostbase/nisauth.py')
-rw-r--r-- | src/lib/Server/Hostbase/nisauth.py | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/src/lib/Server/Hostbase/nisauth.py b/src/lib/Server/Hostbase/nisauth.py new file mode 100644 index 000000000..24673ec17 --- /dev/null +++ b/src/lib/Server/Hostbase/nisauth.py @@ -0,0 +1,43 @@ +import os +import pwd, crypt, nis + +"""Checks with NIS to see if the current user is in the support group""" + +__revision__ = "$Revision: $" + +class NISAUTHError(Exception): + """NISAUTHError is raised when somehting goes boom.""" + pass + +class nisauth(object): + group_test = False +# check_member_of = os.environ['LDAP_CHECK_MBR_OF_GRP'] + samAcctName = None + distinguishedName = None + sAMAccountName = None + telephoneNumber = None + title = None + memberOf = None + department = None #this will be a list + mail = None + extensionAttribute1 = None #badgenumber + badge_no = None + uid = None + + def __init__(self,login,passwd=None): + """get user profile from NIS""" + try: + p = pwd.getpwnam(login) + print p + except: + raise NISAUTHError('username') + # check user password using crypt and 2 character salt from passwd file + if p[1] == crypt.crypt(passwd, p[1][:2]): + # check to see if user is in valid support groups + # will have to include these groups in a settings file eventually + if not login in nis.match('support', 'group.byname').split(':')[-1].split(','): + raise NISAUTHError('group') + self.uid = p[2] + print self.uid + else: + raise NISAUTHError('password') |