1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
|
#
# Author:: Adam Jacob (<adam@opscode.com>)
# Author:: Nuo Yan (<nuo@opscode.com>)
# Copyright:: Copyright (c) 2008 Opscode, Inc.
# License:: Apache License, Version 2.0
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
require 'chef/config'
require 'chef/mixin/params_validate'
require 'chef/index_queue'
require 'digest/sha1'
require 'chef/json_compat'
class Chef
class WebUIUser
attr_accessor :name, :validated, :admin, :openid, :couchdb
attr_reader :password, :salt, :couchdb_id, :couchdb_rev
include Chef::Mixin::ParamsValidate
# Create a new Chef::WebUIUser object.
def initialize(opts={})
@name, @salt, @password = opts['name'], opts['salt'], opts['password']
@openid = opts['openid']
@admin = false
end
def name=(n)
@name = n.gsub(/\./, '_')
end
def admin?
admin
end
# Set the password for this object.
def set_password(password, confirm_password=password)
raise ArgumentError, "Passwords do not match" unless password == confirm_password
raise ArgumentError, "Password cannot be blank" if (password.nil? || password.length==0)
raise ArgumentError, "Password must be a minimum of 6 characters" if password.length < 6
generate_salt
@password = encrypt_password(password)
end
def set_openid(given_openid)
@openid = given_openid
end
def verify_password(given_password)
encrypt_password(given_password) == @password
end
# Serialize this object as a hash
def to_json(*a)
attributes = Hash.new
recipes = Array.new
result = {
'name' => name,
'json_class' => self.class.name,
'salt' => salt,
'password' => password,
'openid' => openid,
'admin' => admin,
'chef_type' => 'webui_user',
}
result["_id"] = @couchdb_id if @couchdb_id
result["_rev"] = @couchdb_rev if @couchdb_rev
result.to_json(*a)
end
# Create a Chef::WebUIUser from JSON
def self.json_create(o)
me = new(o)
me.admin = o["admin"]
me
end
def chef_server_rest
Chef::REST.new(Chef::Config[:chef_server_url])
end
def self.chef_server_rest
Chef::REST.new(Chef::Config[:chef_server_url])
end
def self.list(inflate=false)
if inflate
response = Hash.new
Chef::Search::Query.new.search(:user) do |n|
response[n.name] = n unless n.nil?
end
response
else
chef_server_rest.get_rest("users")
end
end
# Load a User by name
def self.load(name)
chef_server_rest.get_rest("users/#{name}")
end
# Remove this WebUIUser via the REST API
def destroy
chef_server_rest.delete_rest("users/#{@name}")
end
# Save this WebUIUser via the REST API
def save
begin
chef_server_rest.put_rest("users/#{@name}", self)
rescue Net::HTTPServerException => e
if e.response.code == "404"
chef_server_rest.post_rest("users", self)
else
raise e
end
end
self
end
# Create the WebUIUser via the REST API
def create
chef_server_rest.post_rest("users", self)
self
end
protected
def generate_salt
@salt = Time.now.to_s
chars = ("a".."z").to_a + ("A".."Z").to_a + ("0".."9").to_a
1.upto(30) { |i| @salt << chars[rand(chars.size-1)] }
@salt
end
def encrypt_password(password)
Digest::SHA1.hexdigest("--#{salt}--#{password}--")
end
end
end
|
