simple proxmox

2020-08-26 15:41:37 -04:00
parent f7cee0239e
commit f18967ce8b
26 changed files with 964 additions and 2504 deletions
--- a/nodejs/models/email.js
+++ b/nodejs/models/email.js
@ -1,32 +0,0 @@
-'use strict';
-
-const sgMail = require('@sendgrid/mail');
-const mustache = require('mustache');
-const conf = require('../app').conf;
-
-sgMail.setApiKey(conf.SENDGRID_API_KEY);
-
-var Mail = {};
-
-Mail.send = async function(to, subject, message, from){
-	await sgMail.send({
-		to: to,
-		from: from || 'Theta 42 Accounts <accounts@no-reply.theta42.com>',
-		subject: subject,
-		text: message,
-		html: message,
-	});
-};
-
-
-Mail.sendTemplate = async function(to, template, context, from){
-	template = require(`../views/email_templates/${template}`);
-	await Mail.send(
-		to,
-		mustache.render(template.subject, context),
-		mustache.render(template.message, context),
-		from || (template.from && mustache.render(template.message, context))
-	)
-};
-
-module.exports = {Mail};
--- a/nodejs/models/group_ldap.js
+++ b/nodejs/models/group_ldap.js
@ -27,61 +27,6 @@ async function getGroups(client, member){
 	}
 }

-async function addGroup(client, data){
-	try{
-
-		await client.add(`cn=${data.name},${conf.groupBase}`, {
-			cn: data.name,
-			member: data.owner,
-			description: data.description,
-			owner: data.owner,
-			objectclass: [ 'groupOfNames', 'top'  ]
-		});
-
-		return data;
-
-	}catch(error){
-		throw error;
-	}
-}
-
-async function addMember(client, group, user){
-	try{
-		await client.modify(group.dn, [
-			new Change({
-				operation: 'add',
-				modification: new Attribute({
-					type: 'member',
-					values: [user.dn] 
-				})
-			}),
-		]); 
-	}catch(error){
-		// if(error = "TypeOrValueExistsError"){
-		// 	console.error('addMember error skipped', error)
-		// 	return ;
-		// }
-		throw error;
-	}
-}
-
-async function removeMember(client, group, user){
-  try{
-	await client.modify(group.dn, [
-		new Change({
-			operation: 'delete',
-			modification: new Attribute({
-				type: 'member',
-				values: [user.dn] 
-			})}),
-		]); 
-	}catch(error){
-		if(error = "TypeOrValueExistsError")return ;
-		throw error;
-	}
-}
-
-
 var Group = {};

 Group.list = async function(member){
@ -151,63 +96,4 @@ Group.get = async function(data){
 	}
 }

-Group.add = async function(data){
-	try{
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await addGroup(client, data);
-
-		await client.unbind();
-
-		return this.get(data);
-
-	}catch(error){
-		throw error;
-	}
-}
-
-Group.addMember = async function(user){
-	try{
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await addMember(client, this, user);
-
-		await client.unbind();
-
-		return this;
-
-	}catch(error){
-		throw error;
-	}
-};
-
-Group.removeMember = async function(user){
-	try{
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await removeMember(client, this, user);
-
-		await client.unbind();
-
-		return this;
-
-	}catch(error){
-		throw error;
-	}
-};
-
-Group.remove = async function(){
-	try{
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await client.del(this.dn);
-
-		await client.unbind();
-
-		return true;
-	}catch(error){
-		throw error;
-	}
-}
-
 module.exports = {Group};
--- a/nodejs/models/user_ldap.js
+++ b/nodejs/models/user_ldap.js
@ -3,7 +3,6 @@
 const { Client, Attribute, Change } = require('ldapts');
 const crypto = require('crypto');

-const {Mail} = require('./email');
 const {Token, InviteToken, PasswordResetToken} = require('./token');
 const conf = require('../app').conf.ldap;

@ -11,106 +10,6 @@ const client = new Client({
  url: conf.url,
 });

-async function addPosixGroup(client, data){
-
-  try{
-	const groups = (await client.search(conf.groupBase, {
-	  scope: 'sub',
-	  filter: '(&(objectClass=posixGroup))',
-	})).searchEntries;
-
-	data.gidNumber = (Math.max(...groups.map(i => i.gidNumber))+1)+'';
-
-	await client.add(`cn=${data.cn},${conf.groupBase}`, {
-	  cn: data.cn,
-	  gidNumber: data.gidNumber,
-	  objectclass: [ 'posixGroup', 'top' ]
-	});
-
-	return data;
-
-  }catch(error){
-	throw error;
-  }
-}
-
-async function addPosixAccount(client, data){
-  try{
-	const people = (await client.search(conf.userBase, {
-		scope: 'sub',
-		filter: conf.userFilter,
-	})).searchEntries;
-
-	data.uidNumber = (Math.max(...people.map(i => i.uidNumber))+1)+'';
-
-	await client.add(`cn=${data.cn},${conf.userBase}`, {
-		cn: data.cn,
-		sn: data.sn,
-		uid: data.uid,
-		uidNumber: data.uidNumber,
-		gidNumber: data.gidNumber,
-		givenName: data.givenName,
-		mail: data.mail,
-		mobile: data.mobile,
-		loginShell: data.loginShell,
-		homeDirectory: data.homeDirectory,
-		userPassword: data.userPassword,
-		description: data.description || ' ', 
-		sudoHost: 'ALL',
-		sudoCommand: 'ALL',
-		sudoUser: data.uid,
-		sshPublicKey: data.sshPublicKey,
-		objectclass: ['inetOrgPerson', 'sudoRole', 'ldapPublicKey', 'posixAccount', 'top' ]
-	});
-
-	return data
-
-  }catch(error){
-	throw error;
-  }
-
-}
-
-async function addLdapUser(client, data){
-
-	var group;
-
-  try{
-	data.uid = `${data.givenName[0]}${data.sn}`;
-	data.cn = data.uid;
-	data.loginShell = '/bin/bash';
-	data.homeDirectory= `/home/${data.uid}`;
-	data.userPassword = '{MD5}'+crypto.createHash('md5').update(data.userPassword, "binary").digest('base64');
-
-	group = await addPosixGroup(client, data);
-	data = await addPosixAccount(client, group);
-
-	return data;
-
-  }catch(error){
-  	await deleteLdapDN(client, `cn=${data.uid},${conf.groupBase}`, true);
-	throw error;
-  }
-}
-
-async function deleteLdapUser(client, data){
-	try{
-		await client.del(`cn=${data.cn},${conf.groupBase}`);
-		await client.del(data.dn);
-	}catch(error){
-		throw error;
-	}
-}
-
-async function deleteLdapDN(client, dn, ignoreError){
-	try{
-		client.del(dn)
-	}catch(error){
-		if(!ignoreError) throw error;
-		console.error('ERROR: deleteLdapDN', error)
-	}
-}
-
 const user_parse = function(data){
 	if(data[conf.userNameAttribute]){
 		data.username = data[conf.userNameAttribute]
@ -225,195 +124,6 @@ User.exists = async function(data, key){
 	}
 };

-User.add = async function(data) {
-	try{
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await addLdapUser(client, data);
-
-		await client.unbind();
-
-		let user = await this.get(data.uid);
-
-
-		await Mail.sendTemplate(
-			user.mail,
-			'welcome',
-			{
-				user: user
-			}
-		)
-
-		return user;
-
-	}catch(error){
-		if(error.message.includes('exists')){
-			let error = new Error('UserNameUsed');
-			error.name = 'UserNameUsed';
-			error.message = `LDAP:${data.uid} already exists`;
-			error.status = 409;
-
-			throw error;
-		}
-		throw error;
-	}
-};
-
-User.update = async function(data){
-	try{
-		let editableFeilds = ['mobile', 'sshPublicKey', 'description'];
-
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		for(let field of editableFeilds){
-			if(data[field]){
-				await client.modify(this.dn, [
-					new Change({
-						operation: 'replace',
-						modification: new Attribute({
-							type: field,
-							values: [data[field]] 
-						})
-					}),
-				]);
-			}
-		}
-
-		await client.unbind()
-
-		return this;
-
-	}catch(error){
-		throw error;
-	}
-};
-
-User.addByInvite = async function(data){
-	try{
-		let token = await InviteToken.get(data.token);
-
-		if(!token.is_valid && data.mailToken !== token.mail_token){
-			let error = new Error('Token Invalid');
-			error.name = 'Token Invalid';
-			error.message = `Token is not valid or as allready been used. ${data.token}`;
-			error.status = 401;
-			throw error;
-		}
-
-		data.mail = token.mail;
-
-		let user = await this.add(data);
-
-		if(user){
-			await token.consume({claimed_by: user.uid});
-			return user;
-		}
-
-	}catch(error){
-		throw error;
-	}
-
-};
-
-User.verifyEmail = async function(data){
-	try{
-
-		let exists = await this.exists(data.mail, 'mail');
-
-		if(exists) throw new Error('EmailInUse');
-
-		let token = await InviteToken.get(data.token);
-		await token.update({mail: data.mail})
-		await Mail.sendTemplate(
-			data.mail,
-			'validate_link',
-			{
-				link:`${data.url}/login/invite/${token.token}/${token.mail_token}`
-			}
-		)
-
-		return this;
-	}catch(error){
-		throw error;
-	}
-};
-
-User.passwordReset = async function(url, mail){
-	try{
-
-		let user = await User.get({
-			searchKey: 'mail',
-			searchValue: mail
-		});
-
-		let token = await PasswordResetToken.add(user);
-
-		await Mail.sendTemplate(
-			user.mail,
-			'reset_link',
-			{
-				user: user,
-				link:`${url}/login/resetpassword/${token.token}`
-			}
-		)
-
-		return true;
-	}catch(error){
-		// if(error.name === 'UserNotFound') return false;
-		throw error;
-	}
-};
-
-
-User.remove = async function(data){
-	try{
-
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await deleteLdapUser(client, this);
-
-		await client.unbind();
-
-		return true;
-
-	}catch(error){
-		throw error;
-	}
-};
-
-User.setPassword = async function(data){
-	try{
-
-		await client.bind(conf.bindDN, conf.bindPassword);
-
-		await client.modify(this.dn, [
-		  new Change({
-			operation: 'replace',
-			modification: new Attribute({
-			  type: 'userPassword',
-			  values: ['{MD5}'+crypto.createHash('md5').update(data.userPassword, "binary").digest('base64')] 
-			})}),
-		]); 
-
-		await client.unbind();
-
-		return this;
-	}catch(error){
-		throw error;
-	}
-};
-
-User.invite = async function(){
-	try{
-		let token = await InviteToken.add({created_by: this.uid});
-		
-		return token;
-
-	}catch(error){
-		throw error;
-	}
-};
-
 User.login = async function(data){
 	try{
 		let user = await this.get(data.uid);