pyceo/ceod/model/Group.py

import json
from typing import List, Union

import ldap3
from zope import component
from zope.interface import implementer

from .utils import dn_to_uid
from ceo_common.errors import UserAlreadyInGroupError, UserNotInGroupError, \
    UserNotFoundError
from ceo_common.interfaces import ILDAPService, IGroup
from ceo_common.logger_factory import logger_factory

logger = logger_factory(__name__)


@implementer(IGroup)
class Group:
    def __init__(
        self,
        cn: str,
        gid_number: int,
        description: Union[str, None] = None,
        members: Union[List[str], None] = None,
        ldap3_entry: Union[ldap3.Entry, None] = None,
        user_cn: Union[str, None] = None,
    ):
        self.cn = cn
        self.gid_number = gid_number
        self.description = description
        # this is a list of the usernames of the members in this group
        self.members = members or []
        self.ldap3_entry = ldap3_entry
        self.user_cn = user_cn

        self.ldap_srv = component.getUtility(ILDAPService)

    def __repr__(self) -> str:
        return json.dumps(self.to_dict(), indent=2)

    def to_dict(self):
        data = {
            'cn': self.cn,
            'gid_number': self.gid_number,
        }
        description = None
        if self.description:
            description = self.description
        elif self.user_cn:
            # for clubs, the human-readable description is stored in the
            # 'cn' attribute of the associated user
            description = self.user_cn
        else:
            try:
                # TODO: only fetch the CN to save bandwidth
                user = self.ldap_srv.get_user(self.cn)
                description = user.cn
                self.user_cn = user.cn
            except UserNotFoundError:
                # some groups, like syscom, don't have an associated user
                pass
        if description:
            data['description'] = description
        # to_dict() is usually called for display purposes, so get some more
        # information to display
        data['members'] = self.ldap_srv.get_display_info_for_users(self.members)
        return data

    def add_to_ldap(self):
        self.ldap_srv.add_group(self)

    def remove_from_ldap(self):
        self.ldap_srv.remove_group(self)

    @staticmethod
    def deserialize_from_ldap(entry: ldap3.Entry) -> IGroup:
        """Deserialize this group from an LDAP entry."""
        attrs = entry.entry_attributes_as_dict
        return Group(
            cn=attrs['cn'][0],
            gid_number=attrs['gidNumber'][0],
            description=attrs.get('description', [None])[0],
            members=[
                dn_to_uid(dn) for dn in attrs.get('uniqueMember', [])
            ],
            ldap3_entry=entry,
        )

    def add_member(self, username: str):
        dn = self.ldap_srv.uid_to_dn(username)
        try:
            with self.ldap_srv.entry_ctx_for_group(self) as entry:
                entry.uniqueMember.add(dn)
        except ldap3.core.exceptions.LDAPAttributeOrValueExistsResult as err:
            logger.warning(err)
            raise UserAlreadyInGroupError()
        self.members.append(username)

    def remove_member(self, username: str):
        dn = self.ldap_srv.uid_to_dn(username)
        try:
            with self.ldap_srv.entry_ctx_for_group(self) as entry:
                entry.uniqueMember.delete(dn)
        except ldap3.core.exceptions.LDAPCursorError as err:
            logger.warning(err)
            raise UserNotInGroupError()
        self.members.remove(username)

    def set_members(self, usernames: List[str]):
        DNs = [
            self.ldap_srv.uid_to_dn(username) for username in usernames
        ]
        with self.ldap_srv.entry_ctx_for_group(self) as entry:
            entry.uniqueMember = DNs
        self.members = usernames
add tests for Group class 2021-08-04 02:33:50 -04:00			`import json`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`from typing import List, Union`
add base classes for users and groups 2021-07-19 01:47:39 -04:00
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`import ldap3`
add base classes for users and groups 2021-07-19 01:47:39 -04:00			`from zope import component`
			`from zope.interface import implementer`

use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`from .utils import dn_to_uid`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`from ceo_common.errors import UserAlreadyInGroupError, UserNotInGroupError, \`
			`UserNotFoundError`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`from ceo_common.interfaces import ILDAPService, IGroup`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`from ceo_common.logger_factory import logger_factory`

			`logger = logger_factory(__name__)`
add base classes for users and groups 2021-07-19 01:47:39 -04:00

			`@implementer(IGroup)`
			`class Group:`
			`def __init__(`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`self,`
			`cn: str,`
			`gid_number: int,`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`description: Union[str, None] = None,`
add base classes for users and groups 2021-07-19 01:47:39 -04:00			`members: Union[List[str], None] = None,`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`ldap3_entry: Union[ldap3.Entry, None] = None,`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`user_cn: Union[str, None] = None,`
add base classes for users and groups 2021-07-19 01:47:39 -04:00			`):`
			`self.cn = cn`
			`self.gid_number = gid_number`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`self.description = description`
add tests for Group class 2021-08-04 02:33:50 -04:00			`# this is a list of the usernames of the members in this group`
			`self.members = members or []`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`self.ldap3_entry = ldap3_entry`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`self.user_cn = user_cn`
add base classes for users and groups 2021-07-19 01:47:39 -04:00
			`self.ldap_srv = component.getUtility(ILDAPService)`

			`def __repr__(self) -> str:`
add tests for Group class 2021-08-04 02:33:50 -04:00			`return json.dumps(self.to_dict(), indent=2)`

			`def to_dict(self):`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`data = {`
add tests for Group class 2021-08-04 02:33:50 -04:00			`'cn': self.cn,`
			`'gid_number': self.gid_number,`
			`}`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`description = None`
			`if self.description:`
			`description = self.description`
			`elif self.user_cn:`
			`# for clubs, the human-readable description is stored in the`
			`# 'cn' attribute of the associated user`
			`description = self.user_cn`
			`else:`
			`try:`
			`# TODO: only fetch the CN to save bandwidth`
			`user = self.ldap_srv.get_user(self.cn)`
			`description = user.cn`
			`self.user_cn = user.cn`
			`except UserNotFoundError:`
			`# some groups, like syscom, don't have an associated user`
			`pass`
			`if description:`
			`data['description'] = description`
			`# to_dict() is usually called for display purposes, so get some more`
			`# information to display`
			`data['members'] = self.ldap_srv.get_display_info_for_users(self.members)`
			`return data`
add base classes for users and groups 2021-07-19 01:47:39 -04:00
			`def add_to_ldap(self):`
			`self.ldap_srv.add_group(self)`

add app factory 2021-07-24 17:09:10 -04:00			`def remove_from_ldap(self):`
			`self.ldap_srv.remove_group(self)`

add base classes for users and groups 2021-07-19 01:47:39 -04:00			`@staticmethod`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`def deserialize_from_ldap(entry: ldap3.Entry) -> IGroup:`
			`"""Deserialize this group from an LDAP entry."""`
			`attrs = entry.entry_attributes_as_dict`
add base classes for users and groups 2021-07-19 01:47:39 -04:00			`return Group(`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`cn=attrs['cn'][0],`
			`gid_number=attrs['gidNumber'][0],`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`description=attrs.get('description', [None])[0],`
add tests for Group class 2021-08-04 02:33:50 -04:00			`members=[`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`dn_to_uid(dn) for dn in attrs.get('uniqueMember', [])`
add tests for Group class 2021-08-04 02:33:50 -04:00			`],`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`ldap3_entry=entry,`
add base classes for users and groups 2021-07-19 01:47:39 -04:00			`)`

			`def add_member(self, username: str):`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`dn = self.ldap_srv.uid_to_dn(username)`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`try:`
			`with self.ldap_srv.entry_ctx_for_group(self) as entry:`
			`entry.uniqueMember.add(dn)`
log error message instead of traceback 2021-08-18 20:19:57 -04:00			`except ldap3.core.exceptions.LDAPAttributeOrValueExistsResult as err:`
			`logger.warning(err)`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`raise UserAlreadyInGroupError()`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`self.members.append(username)`
add base classes for users and groups 2021-07-19 01:47:39 -04:00
			`def remove_member(self, username: str):`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`dn = self.ldap_srv.uid_to_dn(username)`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`try:`
			`with self.ldap_srv.entry_ctx_for_group(self) as entry:`
			`entry.uniqueMember.delete(dn)`
log error message instead of traceback 2021-08-18 20:19:57 -04:00			`except ldap3.core.exceptions.LDAPCursorError as err:`
			`logger.warning(err)`
implement /api/groups endpoints 2021-08-18 19:48:17 -04:00			`raise UserNotInGroupError()`
use ldap3 instead of python-ldap 2021-08-15 01:04:49 -04:00			`self.members.remove(username)`
Positions API (#7) Co-authored-by: Max Erenberg <merenber@csclub.uwaterloo.ca> Co-authored-by: Rio Liu <r345liu@csclub.uwaterloo.ca> Co-authored-by: Rio6 <rio.liu@r26.me> Reviewed-on: https://git.csclub.uwaterloo.ca/public/pyceo/pulls/7 Co-authored-by: Rio <r345liu@localhost> Co-committed-by: Rio <r345liu@localhost> 2021-08-22 17:57:36 -04:00
			`def set_members(self, usernames: List[str]):`
			`DNs = [`
			`self.ldap_srv.uid_to_dn(username) for username in usernames`
			`]`
			`with self.ldap_srv.entry_ctx_for_group(self) as entry:`
			`entry.uniqueMember = DNs`
			`self.members = usernames`