3 # Copyright (C) 2012, Ansgar Burchardt <ansgar@debian.org>
5 # This program is free software; you can redistribute it and/or modify
6 # it under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 2 of the License, or
8 # (at your option) any later version.
10 # This program is distributed in the hope that it will be useful,
11 # but WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License along
16 # with this program; if not, write to the Free Software Foundation, Inc.,
17 # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
22 from daklib.config import Config
23 from daklib.dbconn import DBConn, Fingerprint, Uid, ACL
26 print """Usage: dak acl set-fingerprints <acl-name>
28 Reads list of fingerprints from stdin and sets the ACL <acl-name> to these.
31 def get_fingerprint(entry, session):
32 """get fingerprint for given ACL entry
34 The entry is a string in one of these formats::
41 @param entry: ACL entry
43 @param session: database session
45 @rtype: L{daklib.dbconn.Fingerprint} or C{None}
46 @return: fingerprint for the entry
48 field, value = entry.split(":", 1)
49 q = session.query(Fingerprint)
52 q = q.join(Fingerprint.uid).filter(Uid.uid == value)
54 q = q.join(Fingerprint.uid).filter(Uid.name == value)
56 q = q.filter(Fingerprint.fingerprint == value)
60 def acl_set_fingerprints(acl_name, entries):
61 session = DBConn().session()
62 acl = session.query(ACL).filter_by(name=acl_name).one()
64 acl.fingerprints.clear()
67 fps = get_fingerprint(entry, session)
69 print "Unknown key for '{0}'".format(entry)
71 acl.fingerprints.update(fps)
75 def acl_export_per_source(acl_name):
76 session = DBConn().session()
77 acl = session.query(ACL).filter_by(name=acl_name).one()
82 (SELECT COALESCE(u.name, '') || ' <' || u.uid || '>'
84 JOIN fingerprint f2 ON u.id = f2.uid
85 WHERE f2.id = f.id) AS name,
86 STRING_AGG(a.source, ' ' ORDER BY a.source)
88 JOIN fingerprint f ON a.fingerprint_id = f.id
89 LEFT JOIN uid u ON f.uid = u.id
90 WHERE a.acl_id = :acl_id
91 GROUP BY f.id, f.fingerprint
95 for row in session.execute(query, {'acl_id': acl.id}):
96 print "Fingerprint:", row[0]
98 print "Allow:", row[2]
112 if argv[1] == 'set-fingerprints':
113 acl_set_fingerprints(argv[2], sys.stdin)
114 elif argv[1] == 'export-per-source':
115 acl_export_per_source(argv[2])