root/conf/ldap_shadows/shadows/MilkyPond/hooks/aspects/fs.rb @ 88b0bbce
dba6a81b | Marc Dequènes (Duck) | ||
7b832340 | Marc Dequènes (Duck) | # TODO: should be in the configuration file, so find a way to get these parameters
|
|
dba6a81b | Marc Dequènes (Duck) | MIN_UID = 10000
|
|
MAX_UID = 65535
|
|||
STEP_UID = 100
|
|||
DEFAULT_GROUP = 'dc-users'
|
|||
cb14c112 | Marc Dequènes (Duck) | def self.hook_before_create(shadow, item)
|
|
hook_common(shadow, item)
|
|||
f706cc1d | Marc Dequènes (Duck) | end
|
|
cb14c112 | Marc Dequènes (Duck) | def self.hook_before_modify(shadow, item)
|
|
hook_common(shadow, item)
|
|||
f706cc1d | Marc Dequènes (Duck) | end
|
|
cb14c112 | Marc Dequènes (Duck) | def self.hook_common(shadow, item)
|
|
dba6a81b | Marc Dequènes (Duck) | unless item.attribute_present?('gidNumber')
|
|
cb14c112 | Marc Dequènes (Duck) | item.primaryGroup = shadow.find_klass(:group).find(:first, DEFAULT_GROUP)
|
|
dba6a81b | Marc Dequènes (Duck) | end
|
|
f706cc1d | Marc Dequènes (Duck) | if item.attribute_present?('uidNumber')
|
|
user = ActiveLdap::Base.find(:first, :scope => :sub, :filter => "(&(objectClass=posixAccount)(uidNumber=#{item.uidNumber}))", :attributes => ['uidNumber'])
|
|||
unless user.nil? or user.dn == item.dn
|
|||
raise_error "UID already used by another item"
|
|||
end
|
|||
else
|
|||
users = ActiveLdap::Base.find(:all, :scope => :sub, :filter => "(&(objectClass=posixAccount)(uidNumber=*))", :attributes => ['uidNumber'])
|
|||
uidnumbers = users.collect {|user| user.uidNumber }
|
|||
dba6a81b | Marc Dequènes (Duck) | ||
avail_uidnumber = nil
|
|||
min_uidn = MIN_UID
|
|||
max_uidn = [min_uidn + STEP_UID, MAX_UID].min
|
|||
while avail_uidnumber.nil?
|
|||
avail = (min_uidn..max_uidn).to_a - uidnumbers
|
|||
unless avail.empty?
|
|||
avail_uidnumber = avail.first
|
|||
break
|
|||
end
|
|||
min_uidn = max_uidn
|
|||
max_uidn = [min_uidn + STEP_UID, MAX_UID].min
|
|||
end
|
|||
if avail_uidnumber.nil?
|
|||
f706cc1d | Marc Dequènes (Duck) | raise_error "Available UID range is depleted."
|
|
dba6a81b | Marc Dequènes (Duck) | else
|
|
item.uidNumber = avail_uidnumber
|
|||
end
|
|||
end
|
|||
unless item.attribute_present?('homeDirectory')
|
|||
item.homeDirectory = "/home/" + item.uid
|
|||
end
|
|||
end
|