Attachment #8401 for bug #32086

View | Details | Raw Unified | Return to bug 32086 | Differences between
Collapse All | Expand All




import univention.s4connector.s4.computer

@!@

global_ignore_subtree=['cn=univention,@%@ldap/base@%@','cn=policies,@%@ldap/base@%@',
			'cn=shares,@%@ldap/base@%@','cn=printers,@%@ldap/base@%@',
			'cn=networks,@%@ldap/base@%@', 'cn=kerberos,@%@ldap/base@%@',

			con_search_filter='(&(objectClass=user)(!(objectClass=computer))(userAccountControl:1.2.840.113556.1.4.803:=512))',
			match_filter='(&(|(&(objectClass=posixAccount)(objectClass=krb5Principal))(objectClass=user))(!(objectClass=univentionHost)))',
@!@
from univention.s4connector.s4.mapping import ignore_filter_from_tmpl
ignore_filter = ignore_filter_from_tmpl('(uid={0!e})(CN={0!e})', 'connector/s4/mapping/user/ignorelist')
	if user:
		ignore_filter += '(uid=%s)(CN=%s)' % (user, user)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@
			ignore_subtree = global_ignore_subtree,
			

			scope='sub',

@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/group/ignorelist')
if configRegistry.is_false('connector/s4/mapping/group/grouptype', False):
	ignore_filter = '(|{}{})'.format('(sambaGroupType=5)(groupType=5)', ignore_filter)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
		ignore_filter += '(cn=%s)' % (group)
print "			ignore_filter='(|%s)'," % ignore_filter
@!@

			ignore_subtree = global_ignore_subtree,

			# and this subobject would avoid a deletion of this DC in S4
			con_subtree_delete_objects = [ 'cn=rid set' ],
@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/dc/ignorelist')
	if dc:
		ignore_filter += '(cn=%s)' % (dc)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@
	
			@!@


			ignore_subtree = global_ignore_subtree,
@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/windowscomputer/ignorelist')
	if computer:
		ignore_filter += '(cn=%s)' % (computer)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@

			con_create_objectclass=['top', 'computer' ],

	's4_dns_ldap_base': s4_dns_ldap_base,
	}

from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('dc', 'connector/s4/mapping/dns/ignorelist')

		ignore_filter += '(DC=%s)' % (dns)
if ignore_filter:
	dns_section = dns_section + '''
			ignore_filter=%r,''' % ignore_filter

	dns_section = dns_section + '''
			ignore_subtree = global_ignore_subtree,


print dns_section

from univention.s4connector.s4.mapping import ignore_filter_from_attr

if configRegistry.is_true('connector/s4/mapping/gpo', True):
	ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/gpo/ignorelist')
	for gpo in configRegistry.get('connector/s4/mapping/gpo/ignorelist', '').split(','):
		if gpo:
			ignore_filter += '(cn=%s)' % (gpo)
	if configRegistry.get('connector/s4/mapping/ou/syncmode'):
		sync_mode_ou=configRegistry.get('connector/s4/mapping/ou/syncmode')
	else:


			con_search_filter='(&(objectClass=container)(objectClass=groupPolicyContainer))',

			ignore_filter=%(ignore_filter)r,

			ignore_subtree = global_ignore_subtree,
			

'''
	print section

from univention.s4connector.s4.mapping import ignore_filter_from_attr

if configRegistry.is_true('connector/s4/mapping/wmifilter', False):
	ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/wmifilter/ignorelist')
	for wmifilter in configRegistry.get('connector/s4/mapping/wmifilter/ignorelist', '').split(','):
		if wmifilter:
			ignore_filter += '(cn=%s)' % (wmifilter)
	if configRegistry.get('connector/s4/mapping/ou/syncmode'):
		sync_mode_ou=configRegistry.get('connector/s4/mapping/ou/syncmode')
	else:


			con_search_filter='(objectClass=msWMI-Som)',

			ignore_filter=%(ignore_filter)r,

			ignore_subtree = global_ignore_subtree,
			

		),
''' % {'ignore_filter': ignore_filter, 'sync_mode_ou': sync_mode_ou}

from univention.s4connector.s4.mapping import ignore_filter_from_attr

if configRegistry.is_true('connector/s4/mapping/msprintconnectionpolicy', False):
	ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/msprintconnectionpolicy/ignorelist')
	for cfilter in configRegistry.get('connector/s4/mapping/msprintconnectionpolicy/ignorelist', '').split(','):
		if cfilter:
			ignore_filter += '(cn=%s)' % (cfilter)
	if configRegistry.get('connector/s4/mapping/ou/syncmode'):
		sync_mode_ou=configRegistry.get('connector/s4/mapping/ou/syncmode')
	else:

			sync_mode='%(sync_mode_ou)s',
			scope='sub',
			con_search_filter='(objectClass=msPrint-ConnectionPolicy)',
			ignore_filter=%(ignore_filter)r,
			ignore_subtree = global_ignore_subtree,
			con_create_objectclass=['top', 'msPrint-ConnectionPolicy' ],
			attributes= {

			con_search_filter='(&(|(objectClass=container)(objectClass=builtinDomain))(!(objectClass=groupPolicyContainer)))', # builtinDomain is cn=builtin (with group cn=Administrators)

@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/container/ignorelist', 'mail,kerberos,MicrosoftDNS')
	if cn:
		ignore_filter += '(cn=%s)' % (cn)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@

			ignore_subtree = global_ignore_subtree,

			con_search_filter='objectClass=organizationalUnit',

@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('ou', 'connector/s4/mapping/ou/ignorelist')
	if ou:
		ignore_filter += '(ou=%s)' % (ou)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@

			ignore_subtree = global_ignore_subtree,

			con_search_filter='(|(&(objectClass=domain)(!(|(name=DomainDnsZones)(name=ForestDnsZones))))(objectClass=sambaDomainName))',

@!@
from univention.s4connector.s4.mapping import ignore_filter_from_attr
ignore_filter = ignore_filter_from_attr('cn', 'connector/s4/mapping/dc/ignorelist')

		ignore_filter += '(cn=%s)' % (cn)
if ignore_filter:
	print "			ignore_filter=%r," % ignore_filter
@!@

			ignore_subtree = global_ignore_subtree,




import univention.debug2 as ud
import univention.s4connector.s4

from univention.s4connector.s4 import format_escaped

configRegistry = ucr.ConfigRegistry()
configRegistry.load()


def ignore_filter_from_tmpl(template, ucr_key, default=''):
	"""
	Construct an `ignore_filter` from a `ucr_key`
	(`connector/s4/mapping/*/ignorelist`, a comma delimited list of values), as
	specified by `template` while correctly escaping the filter-expression.

	`template` must be formatted as required by `format_escaped`.

	>>> ignore_filter_from_tmpl('(cn={0!e})',
	... 'connector/s4/mapping/nonexistend/ignorelist',
	... 'one,two,three')
	'(|(cn=one)(cn=two)(cn=three))'
	"""
	variables = [v for v in configRegistry.get(ucr_key, default).split(',') if v]
	filter_parts = [format_escaped(template, v) for v in variables]
	if filter_parts:
		return '(|{})'.format(''.join(filter_parts))
	return ''


def ignore_filter_from_attr(attribute, ucr_key, default=''):
	"""
	Convenience-wrapper arround `ignore_filter_from_tmpl()`.

	This expects a single `attribute` instead of a `template` argument.

	>>> ignore_filter_from_attr('cn',
	... 'connector/s4/mapping/nonexistend/ignorelist',
	... 'one,two,three')
	'(|(cn=one)(cn=two)(cn=three))'
	"""
	template = '({}={{0!e}})'.format(attribute)
	return ignore_filter_from_tmpl(template, ucr_key, default)


def ucs2s4_sid(s4connector, key, object):
	_d = ud.function('mapping.ucs2s4_sid -- not implemented')

- 

Return to bug 32086