
502 lines
14 KiB
Raw Normal View History

2016-01-01 20:55:48 +01:00
package Lemonldap::NG::Manager::Cli;
use strict;
use Crypt::URandom;
2016-01-01 20:55:48 +01:00
use Mouse;
use Data::Dumper;
use Lemonldap::NG::Common::Conf::ReConstants;
2016-01-01 20:55:48 +01:00
2020-01-08 23:05:19 +01:00
our $VERSION = '2.0.8';
2018-05-07 17:17:55 +02:00
$Data::Dumper::Useperl = 1;
2017-02-28 21:53:19 +01:00
2016-01-01 20:55:48 +01:00
has cfgNum => (
is => 'rw',
isa => 'Int',
trigger => sub {
$_[0]->{req} =
cfgNum => $_[0]->{cfgNum} );
2020-01-08 23:05:19 +01:00
has log => ( is => 'rw' );
has req => ( is => 'ro' );
has sep => ( is => 'rw', isa => 'Str', default => '/' );
2016-01-01 20:55:53 +01:00
has format => ( is => 'rw', isa => 'Str', default => "%-25s | %-25s | %-25s" );
2020-01-08 23:05:19 +01:00
has yes => ( is => 'rw', isa => 'Bool', default => 0 );
has force => ( is => 'rw', isa => 'Bool', default => 0 );
has logger => ( is => 'ro', lazy => 1, builder => sub { $_[0]->mgr->logger } );
has userLogger =>
( is => 'ro', lazy => 1, builder => sub { $_[0]->mgr->userLogger } );
has localConf => ( is => 'ro', lazy => 1, builder => sub { $_[0]->mgr } );
2019-05-14 22:05:30 +02:00
2016-01-01 20:55:48 +01:00
sub get {
2016-01-01 20:55:53 +01:00
my ( $self, @keys ) = @_;
die 'get requires at least one key' unless (@keys);
L: foreach my $key (@keys) {
my $value = $self->_getKey($key);
if ( ref $value eq 'HASH' ) {
2016-01-01 20:55:48 +01:00
print "$key has the following keys:\n";
2016-01-01 20:55:53 +01:00
print " $_\n" foreach ( sort keys %$value );
2016-01-01 20:55:48 +01:00
else {
2016-01-01 20:55:51 +01:00
$value //= '';
2016-01-01 20:55:48 +01:00
print "$key = $value\n";
2016-01-01 20:55:53 +01:00
sub set {
my ( $self, %pairs ) = @_;
my $format = $self->format . "\n";
die 'set requires at least one key and one value' unless (%pairs);
my @list;
foreach my $key ( keys %pairs ) {
my $oldValue = $self->_getKey($key);
if ( ref $oldValue ) {
die "$key seems to be a hash, modification refused";
$oldValue //= '';
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Set key $key with $pairs{$key}");
2016-01-01 20:55:53 +01:00
push @list, [ $key, $oldValue, $pairs{$key} ];
unless ( $self->yes ) {
print "Proposed changes:\n";
printf $format, 'Key', 'Old value', 'New value';
foreach (@list) {
printf $format, @$_;
print "Confirm (N/y)? ";
my $c = <STDIN>;
unless ( $c =~ /^y(?:es)?$/ ) {
die "Aborting";
require Clone;
my $new = Clone::clone( $self->mgr->currentConf );
foreach my $key ( keys %pairs ) {
$self->_setKey( $new, $key, $pairs{$key} );
return $self->_save($new);
sub addKey {
my $self = shift;
unless ( @_ % 3 == 0 ) {
die 'usage: "addKey (?:rootKey newKey newValue)+';
my $sep = $self->sep;
my @list;
while (@_) {
my $root = shift;
my $newKey = shift;
my $value = shift;
unless ( $root =~ /$simpleHashKeys$/o or $root =~ /$sep/o ) {
die "$root is not a simple hash. Aborting";
2016-01-01 20:55:53 +01:00
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Append key $root/$newKey $value");
push @list, [ $root, $newKey, $value ];
2016-01-01 20:55:53 +01:00
require Clone;
my $new = Clone::clone( $self->mgr->currentConf );
foreach my $el (@list) {
my @path = split $sep, $el->[0];
if ( $#path == 0 ) {
$new->{ $path[0] }->{ $el->[1] } = $el->[2];
elsif ( $#path == 1 ) {
$new->{ $path[0] }->{ $path[1] }->{ $el->[1] } = $el->[2];
elsif ( $#path == 2 ) {
$new->{ $path[0] }->{ $path[1] }->{ $path[2] }->{ $el->[1] } =
elsif ( $#path == 3 ) {
$new->{ $path[0] }->{ $path[1] }->{ $path[2] }->{ $path[3] }
->{ $el->[1] } = $el->[2];
else {
die $el->[0] . " has too many levels. Aborting";
2016-01-01 20:55:53 +01:00
return $self->_save($new);
sub delKey {
my $self = shift;
unless ( @_ % 2 == 0 ) {
die 'usage: "delKey (?:rootKey key)+';
2016-01-01 20:55:53 +01:00
my $sep = $self->sep;
my @list;
while (@_) {
my $root = shift;
my $key = shift;
unless ( $root =~ /$simpleHashKeys$/o or $root =~ /$sep/o ) {
die "$root is not a simple hash. Aborting";
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Remove key $root/$key");
push @list, [ $root, $key ];
require Clone;
my $new = Clone::clone( $self->mgr->currentConf );
foreach my $el (@list) {
my @path = split $sep, $el->[0];
if ( $#path == 0 ) {
if ( exists $new->{ $path[0] }
&& exists $new->{ $path[0] }->{ $el->[1] } )
delete $new->{ $path[0] }->{ $el->[1] }
if exists $new->{ $path[0] }->{ $el->[1] };
elsif ( $#path == 1 ) {
if ( exists $new->{ $path[0] }
&& exists $new->{ $path[0] }->{ $path[1] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $el->[1] } )
delete $new->{ $path[0] }->{ $path[1] }->{ $el->[1] };
elsif ( $#path == 2 ) {
if ( exists $new->{ $path[0] }
&& exists $new->{ $path[0] }->{ $path[1] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
->{ $el->[1] } )
delete $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
->{ $el->[1] };
elsif ( $#path == 3 ) {
if ( exists $new->{ $path[0] }
&& exists $new->{ $path[0] }->{ $path[1] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
->{ $path[3] }
&& exists $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
->{ $path[3] }->{ $el->[1] } )
delete $new->{ $path[0] }->{ $path[1] }->{ $path[2] }
->{ $path[3] }->{ $el->[1] };
else {
die $el->[0] . " has too many levels. Aborting";
2016-01-01 20:55:53 +01:00
return $self->_save($new);
2016-01-01 20:55:53 +01:00
2016-01-01 20:55:48 +01:00
sub lastCfg {
my ($self) = @_;
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Retrieve last conf.");
2016-01-01 20:55:48 +01:00
return $self->jsonResponse('/confs/latest')->{cfgNum};
2019-05-30 09:41:40 +02:00
sub save {
my ($self) = @_;
my $conf = $self->jsonResponse( '/confs/latest', 'full=1' );
my $json = JSON->new->indent->canonical;
print $json->encode($conf);
2019-05-30 10:18:41 +02:00
sub restore {
my ( $self, $file ) = @_;
2019-06-30 17:48:59 +02:00
unless ($file) {
die "No file provided. Aborting";
2019-05-30 10:18:41 +02:00
require IO::String;
my $conf;
if ( $file eq '-' ) {
$conf = join '', <STDIN>;
else {
die "Unable to read $file" unless ( -r $file );
2019-07-01 16:45:40 +02:00
open( my $f, $file ) or die $!;
2019-05-30 10:18:41 +02:00
$conf = join '', <$f>;
close $f;
2019-07-01 16:45:40 +02:00
die "Empty or malformed file $file" unless ( $conf =~ /\w/s );
2019-05-30 10:18:41 +02:00
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Restore conf.");
2019-05-30 10:18:41 +02:00
my $res = $self->_post( '/confs/raw', '', IO::String->new($conf),
'application/json', length($conf) );
use Data::Dumper;
print STDERR Dumper($res);
2016-01-01 20:55:53 +01:00
sub _getKey {
my ( $self, $key ) = @_;
my $sep = $self->sep;
my ( $base, @path ) = split $sep, $key;
unless ( $base =~ /^\w+$/ ) {
warn "Malformed key $base";
return ();
my $value = $self->mgr->getConfKey( $self->req, $base, noCache => 1 );
2016-01-01 20:55:53 +01:00
if ( $self->req->error ) {
die $self->req->error;
if ( ref $value eq 'HASH' ) {
while ( my $next = shift @path ) {
unless ( exists $value->{$next} ) {
warn "Unknown subkey $next for $key";
next L;
$value = $value->{$next};
elsif (@path) {
warn "No subkeys for $base";
return ();
return $value;
sub _setKey {
my ( $self, $conf, $key, $value ) = @_;
my $sep = $self->sep;
my (@path) = split $sep, $key;
my $last = pop @path;
while ( my $next = shift @path ) {
$conf = $conf->{$next};
$conf->{$last} = $value;
sub _save {
my ( $self, $new ) = @_;
require Lemonldap::NG::Manager::Conf::Parser;
2019-07-01 16:45:40 +02:00
my $parser = Lemonldap::NG::Manager::Conf::Parser->new( {
newConf => $new,
refConf => $self->mgr->currentConf,
req => $self->req
unless ( $parser->testNewConf( $self->localConf ) ) {
"CLI: Configuration rejected with message: $parser->{message}");
printf STDERR "Modifications rejected: %s:\n", $parser->{message};
my $saveParams = { force => $self->force };
if ( $self->force and $self->cfgNum ) {
$self->logger->debug( "CLI: cfgNum forced with " . $self->cfgNum );
print STDERR "cfgNum forced with ", $self->cfgNum;
$saveParams->{cfgNum} = $self->cfgNum;
$saveParams->{cfgNumFixed} = 1;
2020-01-09 22:22:03 +01:00
$new->{cfgAuthor} = scalar( getpwuid $< ) . '(command-line-interface)';
chomp $new->{cfgAuthor};
2019-05-14 22:05:30 +02:00
$new->{cfgAuthorIP} = '';
$new->{cfgDate} = time;
2019-05-14 22:05:30 +02:00
$new->{cfgVersion} = $Lemonldap::NG::Manager::VERSION;
2020-01-09 22:22:03 +01:00
$new->{cfgLog} = $self->log // 'Modified with LL::NG CLI';
$new->{key} ||= join( '',
map { chr( int( ord( Crypt::URandom::urandom(1) ) * 94 / 256 ) + 33 ) }
( 1 .. 16 ) );
my $s = $self->mgr->confAcc->saveConf( $new, %$saveParams );
if ( $s > 0 ) {
"CLI: Configuration $s has been saved by $new->{cfgAuthor}");
2020-01-09 22:22:03 +01:00
$self->logger->info("CLI: Configuration $s saved");
print STDERR "Saved under number $s\n";
$parser->{status} = [ $self->mgr->applyConf($new) ];
else {
2020-01-09 22:22:03 +01:00
$self->logger->error("CLI: Configuration not saved!");
printf STDERR "Modifications rejected: %s:\n", $parser->{message};
print STDERR Dumper($parser);
foreach (qw(errors warnings status)) {
if ( $parser->{$_} and @{ $parser->{$_} } ) {
my $s = Dumper( $parser->{$_} );
$s =~ s/\$VAR1\s*=\s*//;
printf STDERR "%-8s: %s", ucfirst($_), $s;
2016-01-01 20:55:48 +01:00
sub run {
my $self = shift;
2016-01-01 20:55:51 +01:00
# Options simply call corresponding accessor
2016-02-25 09:40:25 +01:00
my $args = {};
2016-01-01 20:55:53 +01:00
while ( $_[0] =~ s/^--?// ) {
2016-01-01 20:55:51 +01:00
my $k = shift;
my $v = shift;
if ( ref $self ) {
eval { $self->$k($v) };
if ($@) {
die "Unknown option -$k or bad value ($@)";
2016-01-01 20:55:51 +01:00
else {
$args->{$k} = $v;
unless ( ref $self ) {
$self = $self->new($args);
2016-01-01 20:55:51 +01:00
2016-01-01 20:55:48 +01:00
unless (@_) {
die 'nothing to do, aborting';
$self->cfgNum( $self->lastCfg ) unless ( $self->cfgNum );
2016-01-01 20:55:48 +01:00
my $action = shift;
2019-05-30 10:18:41 +02:00
unless ( $action =~ /^(?:get|set|addKey|delKey|save|restore)$/ ) {
die "Unknown action $action. Only get, set, addKey or delKey allowed";
2016-01-01 20:55:48 +01:00
2020-01-09 22:22:03 +01:00
2016-01-01 20:55:48 +01:00
package Lemonldap::NG::Manager::Cli::Request;
use Mouse;
has cfgNum => ( is => 'rw' );
has error => ( is => 'rw' );
2016-01-01 20:55:48 +01:00
sub params {
my ( $self, $key ) = @_;
return $self->{$key};
2016-01-01 20:55:51 +01:00
=head1 NAME
=encoding utf8
Lemonldap::NG::Manager::Cli - Command line manager for Lemonldap::NG web SSO
2016-01-01 20:55:51 +01:00
#!/usr/bin/env perl
use warnings;
use strict;
use Lemonldap::NG::Manager::Cli;
# Optional: you can specify here some parameters
my $cli = Lemonldap::NG::Manager::Cli->new(iniFile=>'t/lemonldap-ng.ini');
or use llng-manager-cli provides with this package.
llng-manager-cli <options> <command> <keys>
Lemonldap::NG::Manager provides a web interface to manage Lemonldap::NG Web-SSO
Lemonldap::NG Manager::Cli provides a command line client to read or modify
2016-01-01 20:55:51 +01:00
=head1 METHODS
All accessors can be set using the command line: just set a '-' before their
names. Example
llng-manager-cli -sep ',' get macros,_whatToTrace
=head3 iniFile()
The lemonldap-ng.ini file to use is not default value.
=head3 sep()
The key separator, default to '/'. For example to read the value of macro
_whatToTrace using ',', use:
llng-manager-cli -sep ',' get macros,_whatToTrace
=head3 cfgNum()
The configuration number. If not set, it will use the latest configuration.
2016-01-01 20:55:53 +01:00
=head3 yes()
If set to 1, no confirmation is asked to save new values:
llng-manager -yes 1 set portal http://somewhere/
=head3 force()
Set it to 1 to save a configuration earlier than latest
=head3 format()
Confirmation array line format. Default to "%-25s | %-25s | %-25s"
2019-05-14 22:05:30 +02:00
=head3 log()
String to insert in configuration log field (cfgLog)
2016-01-01 20:55:51 +01:00
=head2 run()
The main method: it reads option, command and launch the corresponding
=head3 Commands
=head4 get
Using get, you can read several keys. Example:
llng-manager-cli get portal cookieName domain
=head1 SEE ALSO
2016-02-06 10:00:54 +01:00
For other features of llng-cli, see L<Lemonldap::NG::Common::Cli>
Other links: L<Lemonldap::NG::Manager>, L<http://lemonldap-ng.org/>
2016-01-01 20:55:51 +01:00
=head1 AUTHORS
2017-01-04 21:37:29 +01:00
=item Original idea from David Delassus in 2012
2016-01-01 20:55:51 +01:00
2017-01-04 21:37:29 +01:00
=item LemonLDAP::NG team L<http://lemonldap-ng.org/team>
2016-01-01 20:55:51 +01:00
Use OW2 system to report bug or ask for features:
2017-11-11 14:06:23 +01:00
2016-01-01 20:55:51 +01:00
Lemonldap::NG is available at
2017-01-04 21:37:29 +01:00
See COPYING file for details.
2016-01-01 20:55:51 +01:00
This library is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2, or (at your option)
any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program. If not, see L<http://www.gnu.org/licenses/>.