openwebrx-clone/owrx/admin/commands.py

from abc import ABC, ABCMeta, abstractmethod
from getpass import getpass
from owrx.users import UserList, User, DefaultPasswordClass
import sys
import random
import string
import os


class Command(ABC):
    @abstractmethod
    def run(self, args):
        pass


class UserCommand(Command, metaclass=ABCMeta):
    def getPassword(self, args, username):
        if args.noninteractive:
            if "OWRX_PASSWORD" in os.environ:
                password = os.environ["OWRX_PASSWORD"]
                generated = False
            else:
                print("Generating password for user {username}...".format(username=username))
                password = self.getRandomPassword()
                generated = True
                print('Password for {username} is "{password}".'.format(username=username, password=password))
                print('This password is suitable for initial setup only, you will be asked to reset it on initial use.')
                print('This password cannot be recovered from the system, please copy it now.')
        else:
            password = getpass("Please enter the new password for {username}: ".format(username=username))
            confirm = getpass("Please confirm the new password: ")
            if password != confirm:
                print("ERROR: Password mismatch.")
                sys.exit(1)
            generated = False
        return password, generated

    def getRandomPassword(self, length=10):
        printable = list(string.ascii_letters) + list(string.digits)
        return ''.join(random.choices(printable, k=length))


class NewUser(UserCommand):
    def run(self, args):
        username = args.user
        userList = UserList()
        # early test to bypass the password stuff if the user already exists
        if username in userList:
            raise KeyError("User {username} already exists".format(username=username))

        password, generated = self.getPassword(args, username)

        print("Creating user {username}...".format(username=username))
        user = User(name=username, enabled=True, password=DefaultPasswordClass(password), must_change_password=generated)
        userList.addUser(user)


class DeleteUser(UserCommand):
    def run(self, args):
        username = args.user
        print("Deleting user {username}...".format(username=username))
        userList = UserList()
        userList.deleteUser(username)


class ResetPassword(UserCommand):
    def run(self, args):
        username = args.user
        password, generated = self.getPassword(args, username)
        userList = UserList()
        userList[username].setPassword(DefaultPasswordClass(password), must_change_password=generated)
        # this is a change to an object in the list, not the list itself
        # in this case, store() is explicit
        userList.store()


class DisableUser(UserCommand):
    def run(self, args):
        username = args.user
        userList = UserList()
        userList[username].disable()
        userList.store()


class EnableUser(UserCommand):
    def run(self, args):
        username = args.user
        userList = UserList()
        userList[username].enable()
        userList.store()


class ListUsers(Command):
    def run(self, args):
        userList = UserList()
        print("List of enabled users:")
        for u in userList.values():
            if args.all or u.enabled:
                print("  {name}".format(name=u.name))


class HasUser(Command):
    """
    internal command used by the debian config scripts to test if the admin user has already been created
    """
    def run(self, args):
        userList = UserList()
        if args.user in userList:
            if not args.silent:
                print('User "{name}" exists.'.format(name=args.user))
        else:
            if not args.silent:
                print('User "{name}" does not exist.'.format(name=args.user))
            # in bash, a return code > 0 is interpreted as "false"
            sys.exit(1)
implement user deletion 2021-02-06 17:15:02 +00:00			`from abc import ABC, ABCMeta, abstractmethod`
include command to create a user 2021-02-06 17:04:32 +00:00			`from getpass import getpass`
default password implementation 2021-02-06 17:22:13 +00:00			`from owrx.users import UserList, User, DefaultPasswordClass`
include command to create a user 2021-02-06 17:04:32 +00:00			`import sys`
			`import random`
			`import string`
parse password from env if available 2021-02-18 00:32:27 +00:00			`import os`
include command to create a user 2021-02-06 17:04:32 +00:00

			`class Command(ABC):`
			`@abstractmethod`
			`def run(self, args):`
			`pass`


implement user deletion 2021-02-06 17:15:02 +00:00			`class UserCommand(Command, metaclass=ABCMeta):`
implement password reset command 2021-02-06 18:12:44 +00:00			`def getPassword(self, args, username):`
include command to create a user 2021-02-06 17:04:32 +00:00			`if args.noninteractive:`
parse password from env if available 2021-02-18 00:32:27 +00:00			`if "OWRX_PASSWORD" in os.environ:`
			`password = os.environ["OWRX_PASSWORD"]`
			`generated = False`
			`else:`
			`print("Generating password for user {username}...".format(username=username))`
			`password = self.getRandomPassword()`
			`generated = True`
			`print('Password for {username} is "{password}".'.format(username=username, password=password))`
			`print('This password is suitable for initial setup only, you will be asked to reset it on initial use.')`
			`print('This password cannot be recovered from the system, please copy it now.')`
include command to create a user 2021-02-06 17:04:32 +00:00			`else:`
implement password reset command 2021-02-06 18:12:44 +00:00			`password = getpass("Please enter the new password for {username}: ".format(username=username))`
			`confirm = getpass("Please confirm the new password: ")`
include command to create a user 2021-02-06 17:04:32 +00:00			`if password != confirm:`
			`print("ERROR: Password mismatch.")`
			`sys.exit(1)`
implement forced password change for generated passwords 2021-02-08 17:30:54 +00:00			`generated = False`
			`return password, generated`
include command to create a user 2021-02-06 17:04:32 +00:00
			`def getRandomPassword(self, length=10):`
			`printable = list(string.ascii_letters) + list(string.digits)`
			`return ''.join(random.choices(printable, k=length))`
implement user deletion 2021-02-06 17:15:02 +00:00

implement password reset command 2021-02-06 18:12:44 +00:00			`class NewUser(UserCommand):`
			`def run(self, args):`
switch to subparsers 2021-02-12 17:34:28 +00:00			`username = args.user`
implement password reset command 2021-02-06 18:12:44 +00:00			`userList = UserList()`
			`# early test to bypass the password stuff if the user already exists`
			`if username in userList:`
			`raise KeyError("User {username} already exists".format(username=username))`

implement forced password change for generated passwords 2021-02-08 17:30:54 +00:00			`password, generated = self.getPassword(args, username)`
implement password reset command 2021-02-06 18:12:44 +00:00
			`print("Creating user {username}...".format(username=username))`
implement forced password change for generated passwords 2021-02-08 17:30:54 +00:00			`user = User(name=username, enabled=True, password=DefaultPasswordClass(password), must_change_password=generated)`
implement password reset command 2021-02-06 18:12:44 +00:00			`userList.addUser(user)`


implement user deletion 2021-02-06 17:15:02 +00:00			`class DeleteUser(UserCommand):`
			`def run(self, args):`
switch to subparsers 2021-02-12 17:34:28 +00:00			`username = args.user`
implement user deletion 2021-02-06 17:15:02 +00:00			`print("Deleting user {username}...".format(username=username))`
			`userList = UserList()`
			`userList.deleteUser(username)`
implement password reset command 2021-02-06 18:12:44 +00:00

			`class ResetPassword(UserCommand):`
			`def run(self, args):`
switch to subparsers 2021-02-12 17:34:28 +00:00			`username = args.user`
implement forced password change for generated passwords 2021-02-08 17:30:54 +00:00			`password, generated = self.getPassword(args, username)`
implement password reset command 2021-02-06 18:12:44 +00:00			`userList = UserList()`
implement forced password change for generated passwords 2021-02-08 17:30:54 +00:00			`userList[username].setPassword(DefaultPasswordClass(password), must_change_password=generated)`
implement password reset command 2021-02-06 18:12:44 +00:00			`# this is a change to an object in the list, not the list itself`
			`# in this case, store() is explicit`
			`userList.store()`
implement user list, enable, disable 2021-02-08 16:04:55 +00:00

			`class DisableUser(UserCommand):`
			`def run(self, args):`
switch to subparsers 2021-02-12 17:34:28 +00:00			`username = args.user`
implement user list, enable, disable 2021-02-08 16:04:55 +00:00			`userList = UserList()`
			`userList[username].disable()`
			`userList.store()`


			`class EnableUser(UserCommand):`
			`def run(self, args):`
switch to subparsers 2021-02-12 17:34:28 +00:00			`username = args.user`
implement user list, enable, disable 2021-02-08 16:04:55 +00:00			`userList = UserList()`
			`userList[username].enable()`
			`userList.store()`


			`class ListUsers(Command):`
			`def run(self, args):`
			`userList = UserList()`
			`print("List of enabled users:")`
			`for u in userList.values():`
			`if args.all or u.enabled:`
			`print(" {name}".format(name=u.name))`
implement a command to test for a user's existence 2021-02-18 14:42:12 +00:00

			`class HasUser(Command):`
			`"""`
			`internal command used by the debian config scripts to test if the admin user has already been created`
			`"""`
			`def run(self, args):`
			`userList = UserList()`
			`if args.user in userList:`
			`if not args.silent:`
			`print('User "{name}" exists.'.format(name=args.user))`
			`else:`
			`if not args.silent:`
			`print('User "{name}" does not exist.'.format(name=args.user))`
			`# in bash, a return code > 0 is interpreted as "false"`
			`sys.exit(1)`