undersys/proxmaster
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

add check function for logged-in clients

Browse source
This commit is contained in:
deflax 2016-05-21 18:49:53 +03:00
parent 690826ace1
commit a5a1d943b0
1 changed files with 18 additions and 12 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

30
clientsdb.py
View file

@ -25,11 +25,11 @@ def addclient(vmid, vmname, clientid, clientname, clientemail, vmpass):
salt = bcrypt.gensalt() salt = bcrypt.gensalt()
b_newpass = newpass.encode('ascii') b_newpass = newpass.encode('ascii')
encpasswd = bcrypt.hashpw(b_newpass, salt).decode('ascii') encpasswd = bcrypt.hashpw(b_newpass, salt).decode('ascii')
vcard = { 'name':str(clientname), 'email':str(clientemail), 'encpasswd':str(encpasswd) } vcard = { 'name':str(clientname), 'email':str(clientemail), 'encpasswd':str(encpasswd), 'id':str(clientid) }
newclient = { str(clientid):vcard } newclient = { str(clientid):vcard }
clientsdb.update(newclient) clientsdb.update(newclient)
#Send initial email to the user as we will use the internal auth from now on. #Send initial email to the user as we will use the internal auth from now on.
###utils.sendmail(clientemail, 'W{} logged in.'.format) ###utils.sendmail(clientemail, '{} logged in.'.format)
#TODO: Sync with proxmaster-admin database (shell command could be used for this one) #TODO: Sync with proxmaster-admin database (shell command could be used for this one)
ioconfig.logger.info('client[{}]> vmid {} is now owned by {} ({})'.format(clientid, vmid, clientemail, clientname)) ioconfig.logger.info('client[{}]> vmid {} is now owned by {} ({})'.format(clientid, vmid, clientemail, clientname))
@ -66,9 +66,20 @@ def setencpasswd(clientemail, newpass):
#TODO: Send new email to the client to notify the password change. This time sending the password in plain text is not needed. #TODO: Send new email to the client to notify the password change. This time sending the password in plain text is not needed.
def check(clientid):
""" return list of owned vmids if client id matches the client database. (logged-in users)"""
#1. search for the client
try:
clientsdb = readclientsdb()
c_id = clientsdb[str(clientid)]
return clientvms(clientsdb[c_id])
except:
ioconfig.logger.error('clients> user id: {} could not be checked.'.format(clientid))
return None
def validate(clientemail, password): def validate(clientemail, password):
""" return list of owned vmids or false if credentials match an user form the database. """ return list of owned vmids if credentials match an user from the database. (fresh logins)"""
useful for authing extrnal admin panels """
#1. search for the client #1. search for the client
try: try:
clientsdb = readclientsdb() clientsdb = readclientsdb()
@ -76,9 +87,9 @@ def validate(clientemail, password):
c_id = str(path[0]) c_id = str(path[0])
#ioconfig.logger.info('client[{}]> path={}'.format(c_id, str(path))) #ioconfig.logger.info('client[{}]> path={}'.format(c_id, str(path)))
except: except:
ioconfig.logger.warning('clients> {} was not found in the database!'.format(clientemail)) ioconfig.logger.error('clients> {} was not found in the database!'.format(clientemail))
#log bad ips here... #log bad ips here...
return {} return None
#2. check the password #2. check the password
encpass = clientsdb[c_id]['encpasswd'] encpass = clientsdb[c_id]['encpasswd']
@ -95,16 +106,11 @@ def validate(clientemail, password):
ioconfig.logger.warning('clients> {} access denied!'.format(clientemail)) ioconfig.logger.warning('clients> {} access denied!'.format(clientemail))
#cant compare password #cant compare password
#TODO: Log attempts and block. #TODO: Log attempts and block.
return {} return None
def clientvms(vmlist): def clientvms(vmlist):
""" generate vmlist """ """ generate vmlist """
#clear unused objects. perhaps there is a better way to do this but im kinda anxious today...
vmlist.pop('name')
vmlist.pop('email')
vmlist.pop('encpasswd')
response = {} response = {}
for vmid,data in vmlist.items(): for vmid,data in vmlist.items():
response[vmid] = data response[vmid] = data