1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
|
#
# Author:: Adam Edwards (<adamed@chef.io>)
# Copyright:: Copyright (c) 2016 Chef Software, Inc.
# License:: Apache License, Version 2.0
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
class Chef
module Mixin
module UserIdentity
def validate_identity(specified_user, password = nil, specified_domain = nil)
validate_identity_platform(specified_user, password, specified_domain)
validate_identity_syntax(specified_user, password, specified_domain)
end
def validate_identity_platform(specified_user, password = nil, specified_domain = nil)
if ! Chef::Platform.windows?
if password || specified_domain
raise Exceptions::UnsupportedPlatform, "Values for `domain` and `password` are only supported on the Windows platform"
end
else
if specified_user && password.nil?
raise ArgumentError, "A value for `password` must be specified when a value for `user` is specified on the Windows platform"
end
end
end
def validate_identity_syntax(specified_user, password = nil, specified_domain = nil)
identity = qualify_user(specified_user, specified_domain)
if ( password || identity[:domain] ) && identity[:user].nil?
raise ArgumentError, "A value for `password` or `domain` was specified without specification of a value for `user`"
end
end
def qualify_user(specified_user, specified_domain = nil)
domain = specified_domain
user = specified_user
if specified_user.nil? && ! specified_domain.nil?
raise ArgumentError, "The domain `#{specified_domain}` was specified, but no user name was given"
end
if ! specified_user.nil? && specified_domain.nil?
domain_and_user = user.split('\\')
if domain_and_user.length == 1
domain_and_user = user.split("@")
end
if domain_and_user.length == 2
domain = domain_and_user[0]
user = domain_and_user[1]
elsif domain_and_user.length != 1
raise ArgumentError, "The specified user name `#{user}` is not a syntactically valid user name"
end
end
{ domain: domain, user: user }
end
private(:validate_identity)
private(:validate_identity_platform)
private(:validate_identity_syntax)
private(:qualify_user)
end
end
end
|
