cr-connect-workflow/crc/services/ldap_service.py

import os

from crc import app
from ldap3 import Connection, Server, MOCK_SYNC

from crc.api.common import ApiError


class LdapUserInfo(object):

    def __init__(self):
        self.display_name = ''
        self.given_name = ''
        self.email_address = ''
        self.telephone_number = ''
        self.title = ''
        self.department = ''
        self.affiliation = ''
        self.sponsor_type = ''
        self.uid = ''

    @classmethod
    def from_entry(cls, entry):
        instance = cls()
        instance.display_name = entry.displayName.value
        instance.given_name = ", ".join(entry.givenName)
        instance.email_address = entry.mail.value
        instance.telephone_number = ", ".join(entry.telephoneNumber)
        instance.title = ", ".join(entry.title)
        instance.department = ", ".join(entry.uvaDisplayDepartment)
        instance.affiliation = ", ".join(entry.uvaPersonIAMAffiliation)
        instance.sponsor_type = ", ".join(entry.uvaPersonSponsoredType)
        instance.uid = entry.uid.value
        return instance

class LdapService(object):
    search_base = "ou=People,o=University of Virginia,c=US"
    attributes = ['uid', 'cn', 'sn', 'displayName', 'givenName', 'mail', 'objectClass', 'UvaDisplayDepartment',
                  'telephoneNumber', 'title', 'uvaPersonIAMAffiliation', 'uvaPersonSponsoredType']
    uid_search_string = "(&(objectclass=person)(uid=%s))"
    user_or_last_name_search_string = "(&(objectclass=person)(|(uid=%s*)(sn=%s*)))"

    def __init__(self):
        if app.config['TESTING']:
            server = Server('my_fake_server')
            self.conn = Connection(server, client_strategy=MOCK_SYNC)
            file_path = os.path.abspath(os.path.join(app.root_path, '..', 'tests', 'data', 'ldap_response.json'))
            self.conn.strategy.entries_from_json(file_path)
            self.conn.bind()
        else:
            server = Server(app.config['LDAP_URL'], connect_timeout=app.config['LDAP_TIMEOUT_SEC'])
            self.conn = Connection(server,
                                   auto_bind=True,
                                   receive_timeout=app.config['LDAP_TIMEOUT_SEC'],
                                   )

    def __del__(self):
        if self.conn:
            self.conn.unbind()

    def user_info(self, uva_uid):
        search_string = LdapService.uid_search_string % uva_uid
        self.conn.search(LdapService.search_base, search_string, attributes=LdapService.attributes)
        if len(self.conn.entries) < 1:
            raise ApiError("missing_ldap_record", "Unable to locate a user with id %s in LDAP" % uva_uid)
        entry = self.conn.entries[0]
        return LdapUserInfo.from_entry(entry)

    def search_users(self, query, limit):
        if len(query) < 3: return []
        search_string = LdapService.user_or_last_name_search_string % (query, query)
        self.conn.search(LdapService.search_base, search_string, attributes=LdapService.attributes)

        # Entries are returned as a generator, accessing entries
        # can make subsequent calls to the ldap service, so limit
        # those here.
        count = 0
        results = []
        for entry in self.conn.entries:
            if count > limit:
                break
            results.append(LdapUserInfo.from_entry(entry))
            count += 1
        return results
fixing a bunch of stupid mistakes because I am tried. 2020-04-21 00:28:12 +00:00			`import os`

Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00			`from crc import app`
fixing a bunch of stupid mistakes because I am tried. 2020-04-21 00:28:12 +00:00			`from ldap3 import Connection, Server, MOCK_SYNC`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00
			`from crc.api.common import ApiError`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00

			`class LdapUserInfo(object):`

dropping the remaining config stuff for flask_sso. updaing the user 'sso' endpoint to provide additional information for debugging. Pulling information from ldap to stay super consistent on where we get our information. 2020-05-22 13:50:18 +00:00			`def __init__(self):`
			`self.display_name = ''`
			`self.given_name = ''`
			`self.email_address = ''`
			`self.telephone_number = ''`
			`self.title = ''`
			`self.department = ''`
			`self.affiliation = ''`
			`self.sponsor_type = ''`
			`self.uid = ''`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00
dropping the remaining config stuff for flask_sso. updaing the user 'sso' endpoint to provide additional information for debugging. Pulling information from ldap to stay super consistent on where we get our information. 2020-05-22 13:50:18 +00:00			`@classmethod`
			`def from_entry(cls, entry):`
			`instance = cls()`
			`instance.display_name = entry.displayName.value`
			`instance.given_name = ", ".join(entry.givenName)`
			`instance.email_address = entry.mail.value`
			`instance.telephone_number = ", ".join(entry.telephoneNumber)`
			`instance.title = ", ".join(entry.title)`
			`instance.department = ", ".join(entry.uvaDisplayDepartment)`
			`instance.affiliation = ", ".join(entry.uvaPersonIAMAffiliation)`
			`instance.sponsor_type = ", ".join(entry.uvaPersonSponsoredType)`
			`instance.uid = entry.uid.value`
			`return instance`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00			`class LdapService(object):`
			`search_base = "ou=People,o=University of Virginia,c=US"`
Improved LDAP searches, allow filtering on last name as well as uva id. 2020-05-25 20:00:36 +00:00			`attributes = ['uid', 'cn', 'sn', 'displayName', 'givenName', 'mail', 'objectClass', 'UvaDisplayDepartment',`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00			`'telephoneNumber', 'title', 'uvaPersonIAMAffiliation', 'uvaPersonSponsoredType']`
ldap lookup. Refactored calls into a new lookup_service to keep things tidy. New keys for all enum/auto-complete fields: PROP_OPTIONS_FILE = "spreadsheet.name" PROP_OPTIONS_VALUE_COLUMN = "spreadsheet.value.column" PROP_OPTIONS_LABEL_COL = "spreadsheet.label.column" PROP_LDAP_LOOKUP = "ldap.lookup" FIELD_TYPE_AUTO_COMPLETE = "autocomplete" 2020-05-19 20:11:43 +00:00			`uid_search_string = "(&(objectclass=person)(uid=%s))"`
Improved LDAP searches, allow filtering on last name as well as uva id. 2020-05-25 20:00:36 +00:00			`user_or_last_name_search_string = "(&(objectclass=person)(\|(uid=%s)(sn=%s)))"`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00
fixing a bunch of stupid mistakes because I am tried. 2020-04-21 00:28:12 +00:00			`def __init__(self):`
			`if app.config['TESTING']:`
			`server = Server('my_fake_server')`
			`self.conn = Connection(server, client_strategy=MOCK_SYNC)`
			`file_path = os.path.abspath(os.path.join(app.root_path, '..', 'tests', 'data', 'ldap_response.json'))`
			`self.conn.strategy.entries_from_json(file_path)`
			`self.conn.bind()`
			`else:`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00			`server = Server(app.config['LDAP_URL'], connect_timeout=app.config['LDAP_TIMEOUT_SEC'])`
			`self.conn = Connection(server,`
			`auto_bind=True,`
			`receive_timeout=app.config['LDAP_TIMEOUT_SEC'],`
			`)`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00
			`def __del__(self):`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00			`if self.conn:`
			`self.conn.unbind()`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00
			`def user_info(self, uva_uid):`
ldap lookup. Refactored calls into a new lookup_service to keep things tidy. New keys for all enum/auto-complete fields: PROP_OPTIONS_FILE = "spreadsheet.name" PROP_OPTIONS_VALUE_COLUMN = "spreadsheet.value.column" PROP_OPTIONS_LABEL_COL = "spreadsheet.label.column" PROP_LDAP_LOOKUP = "ldap.lookup" FIELD_TYPE_AUTO_COMPLETE = "autocomplete" 2020-05-19 20:11:43 +00:00			`search_string = LdapService.uid_search_string % uva_uid`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00			`self.conn.search(LdapService.search_base, search_string, attributes=LdapService.attributes)`
Connect LDAP Requests to the StudyInfo service so we get back additional details. 2020-04-20 20:02:13 +00:00			`if len(self.conn.entries) < 1:`
			`raise ApiError("missing_ldap_record", "Unable to locate a user with id %s in LDAP" % uva_uid)`
Ldap Service with Test and mocks. LDAP_URL can be set in an environment variable. 2020-04-20 19:16:33 +00:00			`entry = self.conn.entries[0]`
dropping the remaining config stuff for flask_sso. updaing the user 'sso' endpoint to provide additional information for debugging. Pulling information from ldap to stay super consistent on where we get our information. 2020-05-22 13:50:18 +00:00			`return LdapUserInfo.from_entry(entry)`
ldap lookup. Refactored calls into a new lookup_service to keep things tidy. New keys for all enum/auto-complete fields: PROP_OPTIONS_FILE = "spreadsheet.name" PROP_OPTIONS_VALUE_COLUMN = "spreadsheet.value.column" PROP_OPTIONS_LABEL_COL = "spreadsheet.label.column" PROP_LDAP_LOOKUP = "ldap.lookup" FIELD_TYPE_AUTO_COMPLETE = "autocomplete" 2020-05-19 20:11:43 +00:00
			`def search_users(self, query, limit):`
Improved LDAP searches, allow filtering on last name as well as uva id. 2020-05-25 20:00:36 +00:00			`if len(query) < 3: return []`
			`search_string = LdapService.user_or_last_name_search_string % (query, query)`
ldap lookup. Refactored calls into a new lookup_service to keep things tidy. New keys for all enum/auto-complete fields: PROP_OPTIONS_FILE = "spreadsheet.name" PROP_OPTIONS_VALUE_COLUMN = "spreadsheet.value.column" PROP_OPTIONS_LABEL_COL = "spreadsheet.label.column" PROP_LDAP_LOOKUP = "ldap.lookup" FIELD_TYPE_AUTO_COMPLETE = "autocomplete" 2020-05-19 20:11:43 +00:00			`self.conn.search(LdapService.search_base, search_string, attributes=LdapService.attributes)`

			`# Entries are returned as a generator, accessing entries`
			`# can make subsequent calls to the ldap service, so limit`
			`# those here.`
			`count = 0`
			`results = []`
			`for entry in self.conn.entries:`
			`if count > limit:`
			`break`
dropping the remaining config stuff for flask_sso. updaing the user 'sso' endpoint to provide additional information for debugging. Pulling information from ldap to stay super consistent on where we get our information. 2020-05-22 13:50:18 +00:00			`results.append(LdapUserInfo.from_entry(entry))`
ldap lookup. Refactored calls into a new lookup_service to keep things tidy. New keys for all enum/auto-complete fields: PROP_OPTIONS_FILE = "spreadsheet.name" PROP_OPTIONS_VALUE_COLUMN = "spreadsheet.value.column" PROP_OPTIONS_LABEL_COL = "spreadsheet.label.column" PROP_LDAP_LOOKUP = "ldap.lookup" FIELD_TYPE_AUTO_COMPLETE = "autocomplete" 2020-05-19 20:11:43 +00:00			`count += 1`
			`return results`