[progfou.git] / ejabberd / auth-mysql.py

#!/usr/bin/env python
# -*- coding: UTF-8 -*-
# Depends: python-mysqldb
import sys
import traceback
import struct
import time
import MySQLdb
import crypt

# TODO: transformer toute la partie gestion de BdD en une classe
# TODO: connexion persistente et gérer les coupures de service MySQL

_host = 'nss'
_user = 'jabber'
_passwd = 'password'
_db = 'auth'

def find_user(user):
    global _host, _user, _passwd, _db
    db = MySQLdb.connect(host=_host, user=_user, passwd=_passwd,
                         db=_db, connect_timeout=1)
    cur = db.cursor(MySQLdb.cursors.DictCursor)
    nrows = cur.execute(
        """SELECT uid FROM users WHERE source=0 AND username=%s""", (user, ))
    del cur, db
    return (nrows > 0)

def authenticate_user(user, password):
    global _host, _user, _passwd, _db
    db = MySQLdb.connect(host=_host, user=_user, passwd=_passwd,
                         db=_db, connect_timeout=1)
    cur = db.cursor(MySQLdb.cursors.DictCursor)
    nrows = cur.execute(
        """SELECT password FROM users WHERE source=0 AND username=%s"""
        """ AND LENGTH(password)>1""", (user, ))
    users = cur.fetchall()
    del cur, db
    if nrows < 1:
        return False
    for user in users:
        if crypt.crypt(password, user['password']) == user['password']:
            return True
    return False

def main():
    log_file = open('/var/log/ejabberd/auth-mysql.log', 'a')
    while True:
        try:
            nread = sys.stdin.read(2)
            if len(nread) == 0:
                time.sleep(0.25)
                continue
            now = time.strftime('%Y/%m/%d %H:%M:%S', time.localtime())
            if len(nread) < 2:
                log_file.write('%s bytes_read=%d\n' % (now, len(nread)))
                log_file.flush()
                continue
            size = struct.unpack('>h', nread)[0]
            data = sys.stdin.read(size)
            (operation, data) = data.split(':', 1)
            if operation == 'auth':
                (user, host, password) = data.split(':', 2)
                log_file.write('%s operation=%s user=%s host=%s\n'
                               % (now, operation, user, host))
                log_file.flush()
                result = authenticate_user(user, password)
            elif operation == 'isuser':
                (user, host) = data.split(':', 1)
                log_file.write('%s operation=%s user=%s host=%s\n'
                               % (now, operation, user, host))
                log_file.flush()
                result = find_user(user)
            elif operation == 'setpass':
                (user, host, password) = data.split(':', 2)
                log_file.write('%s operation=%s user=%s host=%s\n'
                               % (now, operation, user, host))
                log_file.flush()
                #result = set_user_password(user, password)
                result = False
            else:
                result = False
            log_file.write('%s => result=%s\n' % (now, result))
            log_file.flush()
            sys.stdout.write(struct.pack('>hh', 2, result and 1 or 0))
            sys.stdout.flush()
        except:
            traceback.print_exc(file=log_file)
        #sys.exit()

if __name__ == '__main__':
    main()
Commit	Line	Data
	1	#!/usr/bin/env python
	2	# -- coding: UTF-8 --
	3	# Depends: python-mysqldb
	4	import sys
	5	import traceback
	6	import struct
	7	import time
	8	import MySQLdb
	9	import crypt
	10
	11	# TODO: transformer toute la partie gestion de BdD en une classe
	12	# TODO: connexion persistente et gérer les coupures de service MySQL
	13
	14	_host = 'nss'
	15	_user = 'jabber'
	16	_passwd = 'password'
	17	_db = 'auth'
	18
	19	def find_user(user):
	20	global _host, _user, _passwd, _db
	21	db = MySQLdb.connect(host=_host, user=_user, passwd=_passwd,
	22	db=_db, connect_timeout=1)
	23	cur = db.cursor(MySQLdb.cursors.DictCursor)
	24	nrows = cur.execute(
	25	"""SELECT uid FROM users WHERE source=0 AND username=%s""", (user, ))
	26	del cur, db
	27	return (nrows > 0)
	28
	29	def authenticate_user(user, password):
	30	global _host, _user, _passwd, _db
	31	db = MySQLdb.connect(host=_host, user=_user, passwd=_passwd,
	32	db=_db, connect_timeout=1)
	33	cur = db.cursor(MySQLdb.cursors.DictCursor)
	34	nrows = cur.execute(
	35	"""SELECT password FROM users WHERE source=0 AND username=%s"""
	36	""" AND LENGTH(password)>1""", (user, ))
	37	users = cur.fetchall()
	38	del cur, db
	39	if nrows < 1:
	40	return False
	41	for user in users:
	42	if crypt.crypt(password, user['password']) == user['password']:
	43	return True
	44	return False
	45
	46	def main():
	47	log_file = open('/var/log/ejabberd/auth-mysql.log', 'a')
	48	while True:
	49	try:
	50	nread = sys.stdin.read(2)
	51	if len(nread) == 0:
	52	time.sleep(0.25)
	53	continue
	54	now = time.strftime('%Y/%m/%d %H:%M:%S', time.localtime())
	55	if len(nread) < 2:
	56	log_file.write('%s bytes_read=%d\n' % (now, len(nread)))
	57	log_file.flush()
	58	continue
	59	size = struct.unpack('>h', nread)[0]
	60	data = sys.stdin.read(size)
	61	(operation, data) = data.split(':', 1)
	62	if operation == 'auth':
	63	(user, host, password) = data.split(':', 2)
	64	log_file.write('%s operation=%s user=%s host=%s\n'
	65	% (now, operation, user, host))
	66	log_file.flush()
	67	result = authenticate_user(user, password)
	68	elif operation == 'isuser':
	69	(user, host) = data.split(':', 1)
	70	log_file.write('%s operation=%s user=%s host=%s\n'
	71	% (now, operation, user, host))
	72	log_file.flush()
	73	result = find_user(user)
	74	elif operation == 'setpass':
	75	(user, host, password) = data.split(':', 2)
	76	log_file.write('%s operation=%s user=%s host=%s\n'
	77	% (now, operation, user, host))
	78	log_file.flush()
	79	#result = set_user_password(user, password)
	80	result = False
	81	else:
	82	result = False
	83	log_file.write('%s => result=%s\n' % (now, result))
	84	log_file.flush()
	85	sys.stdout.write(struct.pack('>hh', 2, result and 1 or 0))
	86	sys.stdout.flush()
	87	except:
	88	traceback.print_exc(file=log_file)
	89	#sys.exit()
	90
	91	if __name__ == '__main__':
	92	main()