Create a global webapp database connection and create a config class.

[ipfire.org.git] / www / webapp / db.py
diff --git a/www/webapp/db.py b/www/webapp/db.py

index 1f08817e670047b61ad3c6e3fa17a560eb7f1ae5..c4661965a9467f1ec49d70eba6557060f6a555e8 100644 (file)
--- a/www/webapp/db.py
+++ b/www/webapp/db.py
@@ -1,6 +1,7 @@
  #!/usr/bin/python
  
  import hashlib
+import ldap
  import sqlite3
  import os.path
  
@@ -49,3 +50,93 @@ class HashDatabase(object):
                 f.close()
  
                 return m.hexdigest()
+
+
+class UserDatabase(object):
+       HOST = "ldap://ldap.ipfire.org"
+       BASEDN = "ou=People,dc=mcfly,dc=local"
+
+       def __init__(self):
+               self.conn = ldap.initialize(self.HOST)
+               self.conn.simple_bind()
+
+       def __del__(self):
+               self.conn.unbind()
+
+       def _find_dn_by_name(self, name):
+               results = self._search(filterstr="(uid=%s)" % name)
+               assert len(results) == 1
+               return results[0][0]
+       
+       def _search(self, filterstr="(objectClass=*)", attrlist=None):
+               return self.conn.search_st(self.BASEDN, ldap.SCOPE_SUBTREE,
+                       filterstr=filterstr, attrlist=attrlist)
+
+       def check_password(self, name, password):
+               dn = self._find_dn_by_name(name)
+               conn = ldap.initialize(self.HOST)
+               try:
+                       conn.simple_bind_s(dn, password)
+                       return True
+               except ldap.INVALID_CREDENTIALS:
+                       return False
+               finally:
+                       conn.unbind_s()
+
+       def get_user_by_id(self, id):
+               results = self._search(filterstr="(uidNumber=%s)" % id)
+               assert len(results) == 1
+               return User(results[0][1])
+
+       def get_user_by_name(self, name):
+               results = self._search(filterstr="(uid=%s)" % name)
+               assert len(results) == 1
+               return User(results[0][1])
+
+       @property
+       def users(self):
+               ret = []
+
+               for dn, attr in self._search():
+                       if dn == self.BASEDN or not attr:
+                               continue
+                       ret.append(User(attr))
+
+               return sorted(ret)
+
+
+class User(object):
+       def __init__(self, obj):
+               self.obj = obj
+
+       def __cmp__(self, other):
+               return cmp(self.realname, other.realname)
+
+       def __repr__(self):
+               return "<%s '%s'>" % (self.__class__.__name__, self.name)
+
+       @property
+       def name(self):
+               return self.obj["uid"][0]
+
+       @property
+       def id(self):
+               return int(self.obj["uidNumber"][0])
+
+       @property
+       def mail(self):
+               #return self.obj["mail"]
+               return "%s@ipfire.org" % self.name
+
+       @property
+       def realname(self):
+               return self.obj["cn"][0]
+
+
+class Databases(object):
+       def __init__(self, application):
+               self.application = application
+
+               self.hashes = HashDatabase()
+               self.planet = PlanetDatabase()
+               self.users = UserDatabase()