 7393fc991f
			
		
	
	7393fc991f
	
	
	
		
			
			Remove all the explicit paranthesis tuples (under return values). Change-Id: Id8e2b2fd0d74788e46c8f8686e5653b4b7a44978
		
			
				
	
	
		
			92 lines
		
	
	
		
			3.2 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
			
		
		
	
	
			92 lines
		
	
	
		
			3.2 KiB
		
	
	
	
		
			Python
		
	
	
	
	
	
| # Copyright 2012 Cloudbase Solutions Srl
 | |
| #
 | |
| #    Licensed under the Apache License, Version 2.0 (the "License"); you may
 | |
| #    not use this file except in compliance with the License. You may obtain
 | |
| #    a copy of the License at
 | |
| #
 | |
| #         http://www.apache.org/licenses/LICENSE-2.0
 | |
| #
 | |
| #    Unless required by applicable law or agreed to in writing, software
 | |
| #    distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
 | |
| #    WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
 | |
| #    License for the specific language governing permissions and limitations
 | |
| #    under the License.
 | |
| 
 | |
| import abc
 | |
| 
 | |
| from oslo.config import cfg
 | |
| import six
 | |
| 
 | |
| from cloudbaseinit.openstack.common import log as logging
 | |
| from cloudbaseinit.osutils import factory as osutils_factory
 | |
| from cloudbaseinit.plugins.common import base
 | |
| from cloudbaseinit.plugins.common import constants
 | |
| 
 | |
| opts = [
 | |
|     cfg.StrOpt('username', default='Admin', help='User to be added to the '
 | |
|                'system or updated if already existing'),
 | |
|     cfg.ListOpt('groups', default=['Administrators'], help='List of local '
 | |
|                 'groups to which the user specified in \'username\' will '
 | |
|                 'be added'),
 | |
| ]
 | |
| 
 | |
| CONF = cfg.CONF
 | |
| CONF.register_opts(opts)
 | |
| 
 | |
| LOG = logging.getLogger(__name__)
 | |
| 
 | |
| 
 | |
| @six.add_metaclass(abc.ABCMeta)
 | |
| class BaseCreateUserPlugin(base.BasePlugin):
 | |
|     """This is a base class for creating or modifying an user."""
 | |
| 
 | |
|     @abc.abstractmethod
 | |
|     def create_user(self, username, password, osutils):
 | |
|         """Create a new username, with the given *username*.
 | |
| 
 | |
|         This will be called by :meth:`~execute`, whenever
 | |
|         a new user must be created.
 | |
|         """
 | |
| 
 | |
|     @abc.abstractmethod
 | |
|     def post_create_user(self, user_name, password, osutils):
 | |
|         """Executes post user creation logic.
 | |
| 
 | |
|         This will be called after by :meth:`~execute`, after
 | |
|         the user is created or the user password is updated.
 | |
|         """
 | |
| 
 | |
|     @staticmethod
 | |
|     def _get_password(osutils):
 | |
|         # Generate a temporary random password to be replaced
 | |
|         # by SetUserPasswordPlugin (starting from Grizzly)
 | |
|         maximum_length = osutils.get_maximum_password_length()
 | |
|         return osutils.generate_random_password(maximum_length)
 | |
| 
 | |
|     def execute(self, service, shared_data):
 | |
|         user_name = CONF.username
 | |
|         shared_data[constants.SHARED_DATA_USERNAME] = user_name
 | |
| 
 | |
|         osutils = osutils_factory.get_os_utils()
 | |
|         password = self._get_password(osutils)
 | |
| 
 | |
|         if osutils.user_exists(user_name):
 | |
|             LOG.info('Setting password for existing user "%s"', user_name)
 | |
|             osutils.set_user_password(user_name, password)
 | |
|         else:
 | |
|             LOG.info('Creating user "%s" and setting password', user_name)
 | |
|             self.create_user(user_name, password, osutils)
 | |
| 
 | |
|             # TODO(alexpilotti): encrypt with DPAPI
 | |
|             shared_data[constants.SHARED_DATA_PASSWORD] = password
 | |
| 
 | |
|         self.post_create_user(user_name, password, osutils)
 | |
| 
 | |
|         for group_name in CONF.groups:
 | |
|             try:
 | |
|                 osutils.add_user_to_local_group(user_name, group_name)
 | |
|             except Exception:
 | |
|                 LOG.exception('Cannot add user to group "%s"', group_name)
 | |
| 
 | |
|         return base.PLUGIN_EXECUTION_DONE, False
 |