YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity
yunohost/src/yunohost/data_migrations/0015_add_permission_protection.py
Josué Tille ce33592996
Remove bad comment
2019-12-29 22:19:08 +01:00

43 lines
1.5 KiB
Python
Raw Blame History

import time
import os
from moulinette import m18n
from yunohost.utils.error import YunohostError
from moulinette.utils.log import getActionLogger
from yunohost.tools import Migration
from yunohost.permission import user_permission_list, SYSTEM_PERMS
logger = getActionLogger('yunohost.migration')
class MyMigration(Migration):
"""
Add protected attribute in LDAP permission
"""
required = True
def run(self):
from yunohost.utils.ldap import _get_ldap_interface
from yunohost.regenconf import regen_conf, BACKUP_CONF_DIR
# Check if the migration can be processed
ldap_regen_conf_status = regen_conf(names=['slapd'], dry_run=True)
# By this we check if the have been customized
if ldap_regen_conf_status and ldap_regen_conf_status['slapd']['pending']:
logger.warning(m18n.n("migration_0011_slapd_config_will_be_overwritten", conf_backup_folder=BACKUP_CONF_DIR))
regen_conf(names=['slapd'], force=True)
ldap = _get_ldap_interface()
permission_list = user_permission_list(short=True)["permissions"]
for permission in permission_list:
if permission.split('.')[0] in SYSTEM_PERMS:
ldap.update('cn=%s,ou=permission' % permission, {'isProtected': "TRUE"})
elif permission.endswith(".main"):
ldap.update('cn=%s,ou=permission' % permission, {'isProtected': "FALSE"})
else:
ldap.update('cn=%s,ou=permission' % permission, {'isProtected': "TRUE"})
Reference in a new issue View git blame Copy permalink