#!/usr/bin/env python3 import configparser import lib.uis.config_ui # only follow -c flag import lib.validator import lib.sqlitedb import lib.System import lib.UserExceptions import sqlite3 if __name__ == "__main__": lib.uis.config_ui.argparser.description += " - Edit Tilde Users" ArgParser = lib.uis.config_ui.argparser ArgParser.add_argument('--user', type=str, help='Tilde users name to edit', required=True) Mutually = ArgParser.add_mutually_exclusive_group() Mutually.add_argument('-r', '--remove', default=False, action="store_true", help='Remove an approved/unapproved User from the system(and DB). Effectively purges him.', required=False) Mutually.add_argument("--verify", default=True, action="store_false", help="Turns off value checks", required=False) ArgParser.add_argument('--sshpubkey', type=str, default=None, help="Stores the new given SSH-Key in given user", required=False) ArgParser.add_argument('--name', type=str, default=None, help="Sets the stored name of the given user") ArgParser.add_argument('--username', type=str, default=None, help="Rename given User") ArgParser.add_argument('--email', type=str, default=None, help="Set new email address for given user") ArgParser.add_argument('--status', type=int, default=None, help="Set status of given user") args = ArgParser.parse_args() config = configparser.ConfigParser() config.read(args.config) try: db = config['DEFAULT']['applications_db'] if not args.sshpubkey and not args.name and not args.username and not args.email and args.status is None \ and not args.remove: print(f"Well, SOMETHING must be done with {args.user} ;-)") exit(1) if not lib.validator.checkUserInDB(args.user, db): print(f"User {args.user} doesn't exist in the database.") exit(1) DB = lib.sqlitedb.SQLitedb(db) Sysctl = lib.System.System() if not DB: print("Couldn't establish connection to database") exit(1) CurrentUser = DB.safequery("SELECT * FROM `applications` WHERE `username`=?", tuple([args.user]))[0] if args.remove: print(f"Removing {args.user} from the system and the database...") try: DB.removeApplicantFromDBperUsername(args.user) print(f"Purged from the DB") if CurrentUser["status"] == 1: Sysctl.remove_user(args.user) print(f"Purged from the system") else: print(f"{args.user} wasn't approved before, therefore not deleting from system itself.") except lib.UserExceptions.General as e: print(f"{e}") exit(1) print("Success.") exit(0) if args.sshpubkey: if not lib.validator.checkSSHKey(args.sshpubkey): print(f"Pubkey {args.sshpubkey} isn't valid.") exit(1) try: DB.safequery("UPDATE `applications` SET `pubkey`=? WHERE `username`=?", tuple([args.sshpubkey, args.user])) except sqlite3.Error as e: print(f"Something unexpected happened! {e}") exit(1) fetch = DB.safequery("SELECT * FROM `applications` WHERE `username` = ? ", tuple([args.user])) if int(fetch[0]["status"]) == 1: try: Sysctl.make_ssh_usable(args.user, args.sshpubkey) except lib.UserExceptions.ModifyFilesystem as e: print(f"One action failed during writing the ssh key back to the authorization file. {e}") print(f"{args.user} updated successfully.") if args.name: if not lib.validator.checkName(args.name): print(f"{args.name} is not a valid Name.") exit(1) try: DB.safequery("UPDATE `applications` SET `name` =? WHERE `username` =?", tuple([args.name, args.user])) except sqlite3.Error as e: print(f"Couldn't write {args.name} to database: {e}") if args.email: if not lib.validator.checkEmail(args.email): print(f"{args.email} is not a valid Mail address!") exit(1) try: DB.safequery("UPDATE `applications` SET `email` =? WHERE `username` =?", tuple([args.email])) except sqlite3.Error as e: print(f"Couldn't write {args.email} to the database. {e}") if args.status is not None: if args.status != 0 and args.status != 1: print("Only 0 and 1 are valid status, where 1 is activated and 0 is unapproved.") exit(0) # just takes first result out of the dict if args.status == int(CurrentUser["status"]): print(f"Old and new Status matches, didn't change") if args.status == 0 and int(CurrentUser["status"]) == 1: try: DB.safequery("UPDATE `applications` SET `status` =? WHERE `id`=?", tuple([args.status, CurrentUser["id"]])) except sqlite3.Error as e: print(f"Couldn't update database entry for {args.user}, didn't touch the system") exit(1) try: Sysctl.remove_user(args.user) except lib.UserExceptions.UnknownReturnCode as e: print(f"Couldn't remove {args.user} from the system, unknown return code: {e}. DB is modified.") exit(1) if args.status == 1 and int(CurrentUser["status"]) == 0: try: DB.safequery("UPDATE `applications` SET `status`=? WHERE `username`=?", tuple([args.status, args.user])) except sqlite3.Error as e: print(f"Couldn't update Users status in database") exit(1) try: Sysctl.register(args.user) Sysctl.lock_user_pw(args.user) Sysctl.add_to_usergroup(args.user) Sysctl.make_ssh_usable(args.user, CurrentUser["pubkey"]) except lib.UserExceptions.UserExistsAlready as UEA: print(f"Somehow the user exists already on the system! {UEA}") exit(1) except lib.UserExceptions.UnknownReturnCode as URC: print(f"Unknown return code: {URC}") exit(1) except lib.UserExceptions.SSHDirUncreatable as SDU: print(f"Couldnt create ssh directory for {args.user}, exception: {SDU}") exit(1) except lib.UserExceptions.ModifyFilesystem as MFS: pass print(f"Success! {args.user}") exit(0) except KeyboardInterrupt as e: pass