delete et activation

alainabbas · alainabbas · commit 69caea985b3a · 2024-10-28T11:52:33.000+01:00
diff --git a/src/bin/activation.py b/src/bin/activation.py
@@ -0,0 +1,53 @@
+import sys
+sys.path.append('../lib')
+import backend_ldap_utils as u
+import ldap
+import argparse
+
+def main():
+    parser = argparse.ArgumentParser()
+    parser.add_argument('--active', help='0 | 1 ', default='1')
+    args = parser.parse_args()
+    json=u.readjsoninput()
+    u.readconfig('../etc/config.conf')
+    if  u.is_backend_concerned(json) == False:
+        print(u.returncode(0, "Not concerned"))
+        exit(0)
+    l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
+    if u.config('disabledAttribute','') == '':
+        print(u.returncode(1,'attribut non trouvé : disabledAttribute'))
+        exit(1)
+    r=u.search_entity(l,json)
+    if len(r) ==0:
+        print(u.returncode(1,'Entrée LDAP non trouvée'))
+        exit(1)
+    ldif=[]
+    #verification si l object class est present
+    add_obj_class=u.config('additionnalObjectClass').encode()
+    present= False
+    objectclass=r[0][1]['objectClass']
+    for obj in objectclass:
+        if obj == add_obj_class:
+            present=True
+    if not present:
+        objectclass.append(add_obj_class)
+        ldif.append((ldap.MOD_REPLACE,'objectClass',objectclass))
+    message=""
+    if args.active == "1" :
+        attribute=u.config('disabledAttribute')
+        v=u.config('enableValue')
+        ldif.append((ldap.MOD_REPLACE, u.config('disabledAttribute'), u.config('enableValue').encode('utf-8')))
+        message="OK compte actif"
+    else:
+        ldif.append((ldap.MOD_REPLACE, u.config('disabledAttribute'), u.config('disableValue').encode('utf-8')))
+        message = "OK compte inactif"
+    try:
+        l.modify_s(r[0][0], ldif)
+    except ldap.LDAPError as e:
+        e_dict = e.args[0]
+        print(u.returncode(1, str(e_dict.get("result")) + ' ' + e_dict.get("desc")))
+        exit(1)
+
+    print(u.returncode(0, message))
+if __name__ == '__main__':
+    main()
diff --git a/src/bin/changepwd.py b/src/bin/changepwd.py
@@ -7,9 +7,11 @@
 def main():
     json=u.readjsoninput()
     config= u.readconfig('../etc/config.conf')
-    l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
-    print(u.change_entity_password(l,json))
-
+    if u.is_backend_concerned(json):
+        l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
+        print(u.change_entity_password(l,json))
+    else:
+        print(u.returncode(0,'not concerned'))
 
 if __name__ == '__main__':
     main()
diff --git a/src/bin/delentity.py b/src/bin/delentity.py
@@ -6,9 +6,11 @@
 def main():
     json=u.readjsoninput()
     u.readconfig('../etc/config.conf')
-    l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
-    print(u.delete_entry(l,json))
-
+    if u.is_backend_concerned(json):
+        l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
+        print(u.delete_entity(l,json))
+    else:
+        print(u.returncode(0, "Not concerned"))
 
 if __name__ == '__main__':
     main()
diff --git a/src/bin/resetpwd.py b/src/bin/resetpwd.py
@@ -7,8 +7,11 @@
 def main():
     json=u.readjsoninput()
     u.readconfig('../etc/config.conf')
-    l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
-    print(u.reset_entity_password(l,json))
+    if u.is_backend_concerned(json):
+        l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
+        print(u.reset_entity_password(l,json))
+    else:
+        print(u.returncode(0,'not concerned'))
 
 
 if __name__ == '__main__':
diff --git a/src/bin/upsertidentity.py b/src/bin/upsertidentity.py
@@ -6,8 +6,11 @@
 def main():
     json=u.readjsoninput()
     u.readconfig('../etc/config.conf')
-    l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
-    print(u.upsert_entry(l,json))
+    if u.is_backend_concerned(json):
+        l=u.connect_ldap(u.config('host'),u.config('dn'),u.config('password'))
+        print(u.upsert_entry(l,json))
+    else:
+        print(u.returncode(0,'not concerned'))
 
 
 if __name__ == '__main__':
diff --git a/src/config.yml b/src/config.yml
@@ -19,6 +19,10 @@ actions:
   IDENTITY_DELETE:
     script: 'delentity.py'
     onError: 'stop'
+  IDENTITY_ENABLE:
+    script: 'activation.py --active 1'
+  IDENTITY_DISABLE:
+    script: 'activation.py --active 0'
   PING_TARGET:
     script: 'ping.py'
     onError: 'stop'
diff --git a/src/etc/config.conf.exemple b/src/etc/config.conf.exemple
@@ -10,3 +10,6 @@ branchForAdm=ou=Administratifs
 branchForEsn=ou=Enseignants
 branchAttr=supannTypeEntiteAffectation
 backendFor=adm,etd,esn
+disabledAttribute=sogxdisableflag
+disableValue=1
+enableValue=0
diff --git a/src/lib/backend_ldap_utils.py b/src/lib/backend_ldap_utils.py
@@ -43,13 +43,13 @@ def returncode(code,message):
 
 def is_backend_concerned(entity):
     peopleType=find_key(entity,config('branchAttr'))
-    listBackend=config('backendFor')
     if type(peopleType) is list:
-        peopleType=peopleType[0]
-    if (listBackend.find(peopleType) == -1):
-        return False
+        listBackend=config('backendFor')
+        for v in peopleType:
+          peopleType=v
+          if (listBackend.find(peopleType) == -1):
+             return False
     return True
-
 def find_key(element, key):
     '''
     Check if *keys (nested) exists in `element` (dict).
@@ -268,7 +268,7 @@ def delete_entity(l,entity):
         # trouvé
         try:
             l.delete_s(r[0][0])
-            return returncode(0, "Password for " + r[0][0] + " deleted")
+            return returncode(0, "user : " + r[0][0] + " deleted")
         except ldap.LDAPError as e:
             e_dict = e.args[0]
             print(returncode(1, str(e_dict.get("result")) + ' ' + e_dict.get("desc")))
