openstack
/
fuel-web
Code Issues Proposed changes
fuel-web/fuelmenu/fuelmenu/modules/rootpw.py

132 lines
4.5 KiB
Python
Raw Blame History

#!/usr/bin/env python
# Copyright 2013 Mirantis, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
import crypt
from fuelmenu.common.modulehelper import ModuleHelper
import logging
import subprocess
import urwid
import urwid.raw_display
import urwid.web_display
log = logging.getLogger('fuelmenu.rootpw')
blank = urwid.Divider()
class rootpw(urwid.WidgetWrap):
def __init__(self, parent):
self.name = "Root Password"
self.priority = 60
self.visible = True
self.parent = parent
#UI text
self.header_content = ["Set root user password", ""]
self.fields = ["PASSWORD", "CONFIRM_PASSWORD"]
self.defaults = \
{
"PASSWORD": {"label": "Enter password",
"tooltip": "Use ASCII characters only",
"value": ""},
"CONFIRM_PASSWORD": {"label": "Confirm password",
"tooltip": "Use ASCII characters only",
"value": ""},
}
self.screen = None
def check(self, args):
"""Validate that all fields have valid values and sanity checks."""
self.parent.footer.set_text("Checking data...")
self.parent.refreshScreen()
#Get field information
responses = dict()
for index, fieldname in enumerate(self.fields):
if fieldname != "blank":
responses[fieldname] = self.edits[index].get_edit_text()
###Validate each field
errors = []
#Passwords must match
if responses["PASSWORD"] != responses["CONFIRM_PASSWORD"]:
errors.append("Passwords do not match.")
#password must not be empty
if len(responses["PASSWORD"]) == 0:
errors.append("Password must not be empty.")
#password needs to be in ASCII character set
try:
if responses["PASSWORD"].decode('ascii'):
pass
except UnicodeDecodeError:
errors.append("Password contains non-ASCII characters.")
if len(errors) > 0:
self.parent.footer.set_text("Error: %s" % (errors[0]))
log.error("Errors: %s %s" % (len(errors), errors))
return False
else:
self.parent.footer.set_text("No errors found.")
return responses
def apply(self, args):
responses = self.check(args)
if responses is False:
log.error("Check failed. Not applying")
log.error("%s" % (responses))
for index, fieldname in enumerate(self.fields):
if fieldname == "PASSWORD":
return (self.edits[index].get_edit_text() == "")
return False
hashed = crypt.crypt(responses["PASSWORD"])
log.info("Changing root password")
try:
#clear any locks first
noout = open('/dev/null', 'w')
subprocess.call(["rm", "-f", "/etc/passwd.lock",
"/etc/shadow.lock"], stdout=noout,
stderr=noout)
retcode = subprocess.call(["usermod", "-p", hashed, "root"],
stdout=noout,
stderr=noout)
except OSError:
log.error("Unable to change password.")
self.parent.footer.set_text("Unable to change password.")
return False
if retcode == 0:
self.parent.footer.set_text("Changed applied successfully.")
log.info("Root password successfully changed.")
#Reset fields
self.cancel(None)
else:
self.parent.footer.set_text("Unable to apply changes. Check logs "
"for more details.")
return False
return True
def cancel(self, button):
ModuleHelper.cancel(self, button)
def refresh(self):
pass
def screenUI(self):
return ModuleHelper.screenUI(self, self.header_content, self.fields,
self.defaults)
View Git Blame Copy Permalink