#!/usr/bin/pkiperl # # --- BEGIN COPYRIGHT BLOCK --- # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; version 2 of the License. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License along # with this program; if not, write to the Free Software Foundation, Inc., # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. # # Copyright (C) 2007 Red Hat, Inc. # All rights reserved. # --- END COPYRIGHT BLOCK --- # # # # use strict; use warnings; use PKI::RA::GlobalVar; use PKI::RA::Common; package PKI::RA::AuthDBPanel; $PKI::RA::AuthDBPanel::VERSION = '1.00'; use PKI::RA::BasePanel; our @ISA = qw(PKI::RA::BasePanel); sub new { my $class = shift; my $self = {}; $self->{"isSubPanel"} = \&is_sub_panel; $self->{"hasSubPanel"} = \&has_sub_panel; $self->{"isPanelDone"} = \&PKI::RA::Common::no; $self->{"getPanelNo"} = &PKI::RA::Common::r(7); $self->{"getName"} = &PKI::RA::Common::r("Authentication Directory"); $self->{"vmfile"} = "authdbpanel.vm"; $self->{"update"} = \&update; $self->{"panelvars"} = \&display; bless $self,$class; return $self; } sub is_sub_panel { my ($q) = @_; return 0; } sub has_sub_panel { my ($q) = @_; return 0; } sub validate { my ($q) = @_; &PKI::RA::Wizard::debug_log("AuthDBPanel: validate"); return 1; } sub update { my ($q) = @_; &PKI::RA::Wizard::debug_log("AuthDBPanel: update"); my $host = $q->param('host'); my $port = $q->param('port'); my $basedn = $q->param('basedn'); &PKI::RA::Wizard::debug_log("AuthDBPanel: host=" . $host); &PKI::RA::Wizard::debug_log("AuthDBPanel: port=" . $port); &PKI::RA::Wizard::debug_log("AuthDBPanel: basedn=" . $basedn); if (!($port =~ /^[0-9]+$/)) { &PKI::RA::Wizard::debug_log("AuthDBPanel: bad port " . $port); $::symbol{errorString} = "Bad Port"; return 0; } # try to do a ldapsearch my $tmp = "/tmp/file$$"; my $mozldap_path = "/usr/lib/mozldap"; my $arch = `pkiarch`; $arch =~ s/\n//g; if ($arch eq "x86_64") { $mozldap_path = "/usr/lib64/mozldap"; } elsif ($arch eq "sparcv9") { $mozldap_path = "/usr/lib/sparcv9/mozldap6"; } &PKI::RA::Wizard::debug_log("AuthDBPanel: invoking $mozldap_path/ldapsearch"); my $status = system("$mozldap_path/ldapsearch -h '$host' " . "-p '$port' -b '$basedn' -s base 'objectclass=*' > $tmp 2>&1"); if ($status eq "0") { &PKI::RA::Wizard::debug_log("AuthDBPanel: auth database looks ok"); } else { my $reason = `cat $tmp`; &PKI::RA::Wizard::debug_log("AuthDBPanel: failed to connect " . $reason); $::symbol{errorString} = "Failed to Connect"; return 0; } system("rm $tmp"); # save values to CS.cfg $::config->put("auth.instance.0.baseDN", $basedn); $::config->put("auth.instance.0.hostport", $host . ":" . $port); $::config->commit(); return 1; } sub display { my ($q) = @_; &PKI::RA::Wizard::debug_log("AuthDBPanel: display"); my $machineName = $::config->get("service.machineName"); my $instanceId = $::config->get("service.instanceID"); my $basedn = $::config->get("auth.instance.0.baseDN"); if ($basedn =~ /\[/) { $basedn = $machineName; $basedn =~ s/^[^.]+\.//; if ($basedn eq "") { $basedn = "dc=" . $machineName; } else { $basedn =~ s/\./,dc=/g; $basedn = "dc=" . $basedn; } } my $host = ""; my $port = ""; my $hostport = $::config->get("auth.instance.0.hostport"); if ($hostport =~ /\[/) { $host = "localhost"; $port = "389"; } else { my ($hostx, $portx) = split(/:/, $hostport); $host = $hostx; $port = $portx; } $::symbol{hostname} = $host; $::symbol{portStr} = $port; $::symbol{basedn} = $basedn; return 1; } 1;