aboutsummaryrefslogtreecommitdiff
blob: 3f417052cdaee42612d5895733589a879ac676d6 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
# vim:fileencoding=utf8:et:ts=4:sts=4:sw=4:ft=python

from django.conf import settings
from django.db import models
from ldapdb.models.fields import (CharField, IntegerField, ListField,
                                  FloatField, ACLField, DateField)
import ldapdb.models

from ..crypto.models import EncryptedPKModel


class Queue(EncryptedPKModel):
    username = models.CharField(max_length=100, unique=True)
    password = models.CharField(max_length=30)
    first_name = models.CharField(max_length=100)
    last_name = models.CharField(max_length=100)
    email = models.EmailField(max_length=254, unique=True)


class LDAPUser(ldapdb.models.Model):
    """ Class representing an LDAP user entry """
    # LDAP metadata
    base_dn = settings.AUTH_LDAP_USER_BASE_DN
    object_classes = settings.AUTH_LDAP_USER_OBJECTCLASS
    # top
    object_class = ListField(db_column='objectClass')
    # person
    last_name = CharField(db_column='sn')
    full_name = CharField(db_column='cn')
    description = CharField(db_column='description')
    phone = CharField(db_column='telephoneNumber', blank=True)
    password = ListField(db_column='userPassword')
    # inetOrgPerson
    first_name = CharField(db_column='givenName')
    email = ListField(db_column='mail')
    username = CharField(db_column='uid', primary_key=True)
    # posixAccount
    uid = IntegerField(db_column='uidNumber', unique=True)
    gid = IntegerField(db_column='gidNumber')
    gecos = CharField(db_column='gecos')
    home_directory = CharField(db_column='homeDirectory')
    login_shell = CharField(db_column='loginShell', default='/bin/bash')
    # ldapPublicKey
    ssh_key = ListField(db_column='sshPublicKey')
    # gentooGroup
    ACL = ListField(db_column='gentooACL')
    birthday = DateField(db_column='birthday')
    developer_bug = ListField(db_column='gentooDevBug')
    gentoo_join_date = ListField(db_column='gentooJoin')
    gentoo_retire_date = ListField(db_column='gentooRetire')
    gpg_fingerprint = ListField(db_column='gpgfingerprint')
    gpg_key = ListField(db_column='gpgKey')
    im = ListField(db_column='gentooIM')
    latitude = FloatField(db_column='lat')
    location = CharField(db_column='gentooLocation')
    longitude = FloatField(db_column='lon')
    mentor = ListField(db_column='gentooMentor')
    otp_recovery_keys = ListField(db_column='gentooOTPRecoveryKey')
    otp_secret = CharField(db_column='gentooOTPSecret')
    planet_feed = CharField(db_column='gentooPlanetFeed')
    universe_feed = CharField(db_column='gentooUniverseFeed')
    website = ListField(db_column='website')
    # gentooDevGroup
    roles = CharField(db_column='gentooRoles')
    alias = ListField(db_column='gentooAlias')
    spf = ListField(db_column='gentooSPF')
    # additional ACL fields based on gentooACL
    is_user = ACLField(db_column='gentooACL')
    is_developer = ACLField(db_column='gentooACL')
    is_foundation = ACLField(db_column='gentooACL')
    is_staff = ACLField(db_column='gentooACL')
    is_docs = ACLField(db_column='gentooACL')
    is_council = ACLField(db_column='gentooACL')
    is_trustee = ACLField(db_column='gentooACL')
    is_overlays = ACLField(db_column='gentooACL')
    is_planet = ACLField(db_column='gentooACL')
    is_wiki = ACLField(db_column='gentooACL')
    is_forums = ACLField(db_column='gentooACL')
    is_security = ACLField(db_column='gentooACL')
    is_recruiter = ACLField(db_column='gentooACL')
    is_undertaker = ACLField(db_column='gentooACL')
    is_pr = ACLField(db_column='gentooACL')
    is_infra = ACLField(db_column='gentooACL')
    is_retired = ACLField(db_column='gentooACL')

    def __str__(self):
        return self.username

    def __unicode__(self):
        return self.username


# Models for OpenID data store

class OpenID_Nonce(models.Model):
    server_uri = models.URLField(max_length=2048)
    ts = models.DateTimeField()
    salt = models.CharField(max_length=40)

    class Meta:
        unique_together = ('server_uri', 'ts', 'salt')


class OpenID_Association(models.Model):
    server_uri = models.URLField(max_length=2048)
    handle = models.CharField(max_length=255)
    # TODO: BinaryField in newer versions of django
    secret = models.CharField(max_length=128)
    issued = models.DateTimeField()
    expires = models.DateTimeField()
    assoc_type = models.CharField(max_length=64)

    class Meta:
        unique_together = ('server_uri', 'handle')


class OpenID_Attributes(models.Model):
    """ An attribute choice for submission to the site requesting auth.
    """

    nickname = models.NullBooleanField('Nickname', default=True)
    email = models.NullBooleanField('E-mail address', default=True)
    fullname = models.NullBooleanField('Full name', default=True)
    # XXX: OpenID allows disabling invidual components
    dob = models.NullBooleanField('Date of birth', default=True)
    gender = models.NullBooleanField('Gender', default=True)
    postcode = models.NullBooleanField('Postal code', default=True)
    country = models.NullBooleanField('Country', default=True)
    language = models.NullBooleanField('Language', default=True)
    timezone = models.NullBooleanField('Time zone', default=True)

    which_email = models.CharField(max_length=254, null=True, blank=True)

    always_auth = models.BooleanField(
        'Always accept requests from this Trust Root', default=True)
    trust_root = models.CharField(max_length=2048)
    uid = models.IntegerField()

    class Meta:
        unique_together = ('trust_root', 'uid')