From a55c5d6bcd0927091e54399c8cf5c1ad671f0e82 Mon Sep 17 00:00:00 2001 From: Rob Crittenden Date: Thu, 19 Mar 2009 15:40:50 -0400 Subject: New plugin to handle role groups Role groups will be part of the ACI system. It will let one create broad categories of permissions. Things like: helpdesk, user admin, group admin, whatever. --- ipalib/plugins/rolegroup.py | 85 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 85 insertions(+) create mode 100644 ipalib/plugins/rolegroup.py (limited to 'ipalib') diff --git a/ipalib/plugins/rolegroup.py b/ipalib/plugins/rolegroup.py new file mode 100644 index 000000000..c843c0988 --- /dev/null +++ b/ipalib/plugins/rolegroup.py @@ -0,0 +1,85 @@ +# Authors: +# Rob Crittenden +# +# Copyright (C) 2009 Red Hat +# see file 'COPYING' for use and warranty information +# +# This program is free software; you can redistribute it and/or +# modify it under the terms of the GNU General Public License as +# published by the Free Software Foundation; version 2 only +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License +# along with this program; if not, write to the Free Software +# Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA + +""" +Frontend plugins for rolegroups. +""" + +from ipalib import api +from ipalib.plugins.basegroup import * + +display_attributes = ['cn','description', 'member', 'memberof'] +container_rolegroup = "cn=rolegroups,cn=accounts" + +class rolegroup(BaseGroup): + """ + rolegroup object. + """ + container=container_rolegroup + +api.register(rolegroup) + + +class rolegroup_add(basegroup_add): + 'Add a new rolegroup.' + +api.register(rolegroup_add) + + +class rolegroup_del(basegroup_del): + 'Delete an existing rolegroup.' + container = container_rolegroup + +api.register(rolegroup_del) + + +class rolegroup_mod(basegroup_mod): + 'Edit an existing rolegroup.' + container = container_rolegroup + +api.register(rolegroup_mod) + + +class rolegroup_find(basegroup_find): + 'Search the groups.' + container = container_rolegroup + +api.register(rolegroup_find) + + +class rolegroup_show(basegroup_show): + 'Examine an existing rolegroup.' + default_attributes = display_attributes + container = container_rolegroup + +api.register(rolegroup_show) + + +class rolegroup_add_member(basegroup_add_member): + 'Add a member to a rolegroup.' + container = container_rolegroup + +api.register(rolegroup_add_member) + + +class rolegroup_remove_member(basegroup_remove_member): + 'Remove a member from a rolegroup.' + container = container_rolegroup + +api.register(rolegroup_remove_member) -- cgit