|
#!/usr/bin/ruby -Ku
|
|
|
|
# http://www.ruby-doc.org/stdlib/libdoc/net/imap/rdoc/index.html
|
|
# http://tmail.rubyforge.org/reference/index.html
|
|
# http://tools.ietf.org/html/rfc3156
|
|
|
|
$: << "./lib"
|
|
|
|
require 'net/imap'
|
|
require 'tmail'
|
|
require 'tmail_extra'
|
|
#require 'socket'
|
|
#require 'fileutils'
|
|
#require 'tempfile'
|
|
require 'gpgme'
|
|
require 'active_ldap'
|
|
require 'shellwords'
|
|
require 'cyborghood/base'
|
|
require 'cyborghood/objects'
|
|
require 'cyborghood/mail'
|
|
|
|
#Socket.gethostname
|
|
|
|
#
|
|
# TODO:
|
|
# - should be able to handle encrypted messages for user to send sensitive data (postman would need a GPG key too)
|
|
#
|
|
|
|
class CommandParser
|
|
def self.run(order)
|
|
order.commands.each do |cmd|
|
|
logger.info "Executing command: #{cmd}"
|
|
begin
|
|
execute_cmd(order.user, cmd, order.refs)
|
|
rescue
|
|
logger.info "Command failed: " + $!
|
|
end
|
|
end
|
|
end
|
|
|
|
private
|
|
|
|
def self.execute_cmd(user, cmdstr, refs)
|
|
cmdline = Shellwords.shellwords(cmdstr)
|
|
subsys = cmdline.shift
|
|
|
|
ok = true
|
|
case subsys.upcase
|
|
when "DNS"
|
|
case cmdline.shift.upcase
|
|
when "INFO"
|
|
if cmdline.empty?
|
|
list = CyborgHood::DnsDomain.find_by_manager(user)
|
|
logger.info "User is manager of the following zones: " + list.collect{|z| z.cn }.sort.join(", ")
|
|
else
|
|
ok = false
|
|
end
|
|
when "GET"
|
|
case cmdline.shift.upcase
|
|
when "ZONE"
|
|
zone = cmdline.shift.downcase
|
|
dom = CyborgHood::DnsDomain.new(zone)
|
|
logger.info "User requesting zone content for '#{zone}'"
|
|
if dom.hosted?
|
|
if dom.managed_by? user
|
|
logger.info "User is manager of the zone"
|
|
else
|
|
logger.info "User is not allowed to manage the zone"
|
|
end
|
|
else
|
|
logger.info "Zone not hosted"
|
|
end
|
|
else
|
|
ok = false
|
|
end
|
|
when "SET"
|
|
else
|
|
ok = false
|
|
end
|
|
else
|
|
ok = false
|
|
end
|
|
|
|
if not ok
|
|
logger.info "Command not recognized: #{cmdstr}"
|
|
end
|
|
end
|
|
end
|
|
|
|
module CyborgHood
|
|
# not yet ready to be a real Cyborg
|
|
class Postman #< Cyborg
|
|
def initialize
|
|
# load config
|
|
Config.load(self.human_name.downcase)
|
|
@config = Config.instance
|
|
|
|
ldap_config = @config.ldap
|
|
ldap_config.logger = logger
|
|
ActiveLdap::Base.establish_connection(ldap_config.marshal_dump)
|
|
|
|
# setup logs
|
|
unless @config.log.nil?
|
|
logger.output_level(@config.log.console_level) unless @config.log.console_level.nil?
|
|
logger.log_to_file(@config.log.file) unless @config.log.file.nil?
|
|
end
|
|
|
|
logger.info "Bot '#{self.human_name}' loaded"
|
|
end
|
|
|
|
def run
|
|
# using SSL because TLS does not work in the NET::IMAP library
|
|
#imap = Net::IMAP.new('imap.duckcorp.org', 993, true, "/etc/ssl/certs/duckcorp.crt", true)
|
|
imap = Net::IMAP.new('localhost')
|
|
logger.debug "Connected to IMAP server"
|
|
logger.debug "IMAP Capabilities: " + imap.capability.join(", ")
|
|
imap.authenticate('LOGIN', @config.imap.login, @config.imap.passwd)
|
|
logger.debug "Logged into IMAP account"
|
|
#p imap.getquotaroot("INBOX")
|
|
imap.select('INBOX')
|
|
imap.search(["ALL"], "UTF-8").each do |message_id|
|
|
msg = imap.fetch(message_id, "RFC822")[0].attr["RFC822"]
|
|
|
|
mail = Mail.new(msg)
|
|
|
|
#logger.set_prefix()
|
|
logger.debug "######################################"
|
|
#logger.set_prefix("[#{mail.message_id}] ")
|
|
logger.info "New mail #{mail.message_id}: #{mail.from_addrs} -> #{mail.to_addrs} (#{mail.subject})"
|
|
# ignore mails not signed
|
|
unless mail.is_pgp_signed?
|
|
logger.info "Mail not signed or not RFC3156 compliant, ignoring..."
|
|
next
|
|
end
|
|
|
|
logger.debug "Proper signed content detected"
|
|
begin
|
|
order = mail.parse
|
|
rescue CyberError => e
|
|
logger.error "Internal processing error, skipping mail (#{e.message})"
|
|
next
|
|
end
|
|
if order.nil?
|
|
logger.info "Mail is invalid, ignoring..."
|
|
next
|
|
end
|
|
|
|
CommandParser.run(order)
|
|
end
|
|
imap.logout
|
|
end
|
|
|
|
def ask_to_stop
|
|
end
|
|
end
|
|
end
|
|
|
|
bot = CyborgHood::Postman.new
|
|
|
|
trap('INT') do
|
|
bot.ask_to_stop
|
|
end
|
|
trap('TERM') do
|
|
bot.ask_to_stop
|
|
end
|
|
|
|
bot.run
|