forked from geosolutions-it/geoserver-restconfig
-
Notifications
You must be signed in to change notification settings - Fork 29
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Added users listing and setting user and master passwords (#24)
* Services before refactor * Added services settings * Disabled create_service function * Part of changes - faced problem with geoserver - potential issue * Added setting self and master passwords * [Pep8] Flake8 refactor * - Test fixes Co-authored-by: Alessio Fabiani <alessio.fabiani@geo-solutions.it>
- Loading branch information
Showing
6 changed files
with
248 additions
and
30 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -7,5 +7,6 @@ lib/ | |
lib64 | ||
doc/_build/ | ||
.idea/ | ||
.env | ||
|
||
/src/geoserver_restconfig.egg-info/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,54 @@ | ||
# -*- coding: utf-8 -*- | ||
######################################################################### | ||
# | ||
# Copyright 2019, GeoSolutions Sas. | ||
# Jendrusk also was here | ||
# All rights reserved. | ||
# | ||
# This source code is licensed under the MIT license found in the | ||
# LICENSE.txt file in the root directory of this source tree. | ||
# | ||
######################################################################### | ||
try: | ||
from urllib.parse import urljoin | ||
except BaseException: | ||
from urlparse import urljoin | ||
|
||
from geoserver.support import ResourceInfo, xml_property, write_bool | ||
|
||
|
||
def user_from_index(catalog, node): | ||
user_name = node.find("userName").text | ||
return User(catalog, user_name) | ||
|
||
|
||
class User(ResourceInfo): | ||
resource_type = "user" | ||
|
||
def __init__(self, catalog, user_name): | ||
super(User, self).__init__() | ||
self._catalog = catalog | ||
self._user_name = user_name | ||
|
||
@property | ||
def catalog(self): | ||
return self._catalog | ||
|
||
@property | ||
def user_name(self): | ||
return self._user_name | ||
|
||
@property | ||
def href(self): | ||
return urljoin( | ||
f"{self.catalog.service_url}/", | ||
f"security/usergroup/users/{self.user_name}" | ||
) | ||
|
||
enabled = xml_property("enabled", lambda x: x.lower() == 'true') | ||
writers = { | ||
'enabled': write_bool("enabled") | ||
} | ||
|
||
def __repr__(self): | ||
return f"{self.user_name} @ {self.href}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,109 @@ | ||
import unittest | ||
import string | ||
import random | ||
import os | ||
from .utils import DBPARAMS | ||
from .utils import GSPARAMS | ||
import subprocess | ||
import re | ||
import time | ||
from geoserver.catalog import Catalog | ||
|
||
if GSPARAMS['GEOSERVER_HOME']: | ||
dest = GSPARAMS['DATA_DIR'] | ||
data = os.path.join(GSPARAMS['GEOSERVER_HOME'], 'data/release', '') | ||
if dest: | ||
os.system(f"rsync -v -a --delete {data} {os.path.join(dest, '')}") | ||
else: | ||
os.system(f'git clean -dxf -- {data}') | ||
os.system(f"curl -XPOST --user '{GSPARAMS['GSUSER']}':'{GSPARAMS['GSPASSWORD']}' '{GSPARAMS['GSURL']}/reload'") | ||
|
||
if GSPARAMS['GS_VERSION']: | ||
subprocess.Popen(["rm", "-rf", f"{GSPARAMS['GS_BASE_DIR']}/gs"]).communicate() | ||
subprocess.Popen(["mkdir", f"{GSPARAMS['GS_BASE_DIR']}/gs"]).communicate() | ||
subprocess.Popen( | ||
[ | ||
"wget", | ||
"http://central.maven.org/maven2/org/eclipse/jetty/jetty-runner/9.4.5.v20170502/jetty-runner-9.4.5.v20170502.jar", | ||
"-P", f"{GSPARAMS['GS_BASE_DIR']}/gs" | ||
] | ||
).communicate() | ||
|
||
subprocess.Popen( | ||
[ | ||
"wget", | ||
f"https://build.geoserver.org/geoserver/{GSPARAMS['GS_VERSION']}/geoserver-{GSPARAMS['GS_VERSION']}-latest-war.zip", | ||
"-P", f"{GSPARAMS['GS_BASE_DIR']}/gs" | ||
] | ||
).communicate() | ||
|
||
subprocess.Popen( | ||
[ | ||
"unzip", | ||
"-o", | ||
"-d", | ||
f"{GSPARAMS['GS_BASE_DIR']}/gs", | ||
f"{GSPARAMS['GS_BASE_DIR']}/gs/geoserver-{GSPARAMS['GS_VERSION']}-latest-war.zip" | ||
] | ||
).communicate() | ||
|
||
FNULL = open(os.devnull, 'w') | ||
|
||
match = re.compile(r'[^\d.]+') | ||
geoserver_short_version = match.sub('', GSPARAMS['GS_VERSION']).strip('.') | ||
if geoserver_short_version >= "2.15" or GSPARAMS['GS_VERSION'].lower() == 'master': | ||
java_executable = "/usr/local/lib/jvm/openjdk11/bin/java" | ||
else: | ||
java_executable = "/usr/lib/jvm/java-8-openjdk-amd64/jre/bin/java" | ||
|
||
print(f"geoserver_short_version: {geoserver_short_version}") | ||
print(f"java_executable: {java_executable}") | ||
proc = subprocess.Popen( | ||
[ | ||
java_executable, | ||
"-Xmx1024m", | ||
"-Dorg.eclipse.jetty.server.webapp.parentLoaderPriority=true", | ||
"-jar", f"{GSPARAMS['GS_BASE_DIR']}/gs/jetty-runner-9.4.5.v20170502.jar", | ||
"--path", "/geoserver", f"{GSPARAMS['GS_BASE_DIR']}/gs/geoserver.war" | ||
], | ||
stdout=FNULL, stderr=subprocess.STDOUT | ||
) | ||
child_pid = proc.pid | ||
print("Sleep (90)...") | ||
time.sleep(40) | ||
|
||
|
||
class SecurityTests(unittest.TestCase): | ||
def setUp(self): | ||
self.cat = Catalog(GSPARAMS['GSURL'], username=GSPARAMS['GSUSER'], password=GSPARAMS['GSPASSWORD']) | ||
self.bkp_cat = Catalog(GSPARAMS['GSURL'], username=GSPARAMS['GSUSER'], password=GSPARAMS['GSPASSWORD']) | ||
self.gs_version = self.cat.get_short_version() | ||
self.bkp_masterpwd = self.bkp_cat.get_master_pwd() | ||
self.bkp_my_pwd = self.cat.password | ||
|
||
def tearDown(self) -> None: | ||
self.bkp_cat.set_master_pwd(self.bkp_masterpwd) | ||
self.bkp_cat.set_my_pwd(self.bkp_my_pwd) | ||
|
||
def test_get_users(self): | ||
users = self.cat.get_users() | ||
self.assertGreater(len(users), 0) | ||
|
||
def test_get_master_pwd(self): | ||
master_pwd = self.cat.get_master_pwd() | ||
self.assertIsNotNone(master_pwd) | ||
|
||
def test_set_master_pwd(self): | ||
test_pwd = ''.join(random.sample(string.ascii_lowercase, 10)) | ||
master_pwd = self.cat.set_master_pwd(new_pwd=test_pwd) | ||
self.assertIsNotNone(master_pwd) | ||
self.assertEqual(master_pwd, test_pwd) | ||
new_master_pwd = self.cat.get_master_pwd() | ||
self.assertEqual(new_master_pwd, test_pwd) | ||
|
||
def test_set_my_pwd(self): | ||
test_pwd = ''.join(random.sample(string.ascii_lowercase, 10)) | ||
new_pwd = self.cat.set_my_pwd(new_pwd=test_pwd) | ||
self.assertIsNotNone(new_pwd) | ||
self.assertEqual(new_pwd, test_pwd) | ||
self.assertEqual(self.cat.password, test_pwd) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters