Revision f706cc1d
Added by Marc Dequènes over 14 years ago
- ID f706cc1dcc9263550db2ca8219d705c9015ee535
| conf/ldap_shadows/shadows/MilkyPond/hooks/aspects/fs.rb | ||
|---|---|---|
|
STEP_UID = 100
|
||
|
DEFAULT_GROUP = 'dc-users'
|
||
|
|
||
|
def self.hook_modify(mapper, item)
|
||
|
def self.hook_before_create(mapper, item)
|
||
|
hook_common(mapper, item)
|
||
|
end
|
||
|
|
||
|
def self.hook_before_modify(mapper, item)
|
||
|
hook_common(mapper, item)
|
||
|
end
|
||
|
|
||
|
def self.hook_common(mapper, item)
|
||
|
unless item.attribute_present?('gidNumber')
|
||
|
item.primaryGroup = mapper.find_klass(:group).find(:first, DEFAULT_GROUP)
|
||
|
end
|
||
|
|
||
|
unless item.attribute_present?('uidNumber')
|
||
|
groups = ActiveLdap::Base.search(:scope => :sub, :filter => "(uidNumber=*)", :attributes => ['uidNumber'])
|
||
|
uidnumbers = groups.collect {|group| group[1]['uidNumber'].first.to_i }
|
||
|
if item.attribute_present?('uidNumber')
|
||
|
user = ActiveLdap::Base.find(:first, :scope => :sub, :filter => "(&(objectClass=posixAccount)(uidNumber=#{item.uidNumber}))", :attributes => ['uidNumber'])
|
||
|
unless user.nil? or user.dn == item.dn
|
||
|
raise_error "UID already used by another item"
|
||
|
end
|
||
|
else
|
||
|
users = ActiveLdap::Base.find(:all, :scope => :sub, :filter => "(&(objectClass=posixAccount)(uidNumber=*))", :attributes => ['uidNumber'])
|
||
|
uidnumbers = users.collect {|user| user.uidNumber }
|
||
|
|
||
|
avail_uidnumber = nil
|
||
|
min_uidn = MIN_UID
|
||
| ... | ... | |
|
end
|
||
|
|
||
|
if avail_uidnumber.nil?
|
||
|
STDERR.puts "Available UID range is depleted."
|
||
|
exit 4
|
||
|
raise_error "Available UID range is depleted."
|
||
|
else
|
||
|
item.uidNumber = avail_uidnumber
|
||
|
end
|
||
Also available in: Unified diff
[evol] fix and improve before hooks for aspects