[7430fc]: / Allura / allura / scripts / disable_users.py  Maximize  Restore  History

Download this file

82 lines (66 with data), 3.1 kB

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
# Licensed to the Apache Software Foundation (ASF) under one
# or more contributor license agreements. See the NOTICE file
# distributed with this work for additional information
# regarding copyright ownership. The ASF licenses this file
# to you under the Apache License, Version 2.0 (the
# "License"); you may not use this file except in compliance
# with the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing,
# software distributed under the License is distributed on an
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
# KIND, either express or implied. See the License for the
# specific language governing permissions and limitations
# under the License.
from __future__ import unicode_literals
from __future__ import absolute_import
import argparse
import logging
import sys
from ming.odm import session
from allura.lib.plugin import AuthenticationProvider
from allura.lib import helpers as h
from allura.scripts import ScriptTask
from allura import model as M
log = logging.getLogger(__name__)
class DisableUsers(ScriptTask):
@classmethod
def execute(cls, options):
if options.usernames == ['-']:
usernames = [line.strip() for line in sys.stdin]
else:
usernames = options.usernames
cls.disable_users(usernames, options.message)
@classmethod
def disable_users(cls, usernames, message):
auth_provider = AuthenticationProvider.get(request=None)
# would be nice to use the BatchIndexer extension around this but that only works for artifacts not users
for username in usernames:
user = M.User.query.get(username=username)
if not user:
log.info('Could not find user: %s', username)
elif user.disabled:
log.info('User is already disabled: %s', username)
session(user).expunge(user)
else:
log.info('Disabling user: %s', username)
auth_provider.disable_user(user)
session(user).flush(user)
if message:
log_entry = h.auditlog_user(message, user=user)
session(log_entry).flush(log_entry)
@classmethod
def parser(cls):
parser = argparse.ArgumentParser(description='Disable listed users')
parser.add_argument('--message', '-m', dest='message', type=str, default='Account disabled',
help='Message to add to the audit log for each user (set to empty string to skip message altogether)')
parser.add_argument(
'--usernames', dest='usernames', type=str, nargs='+', metavar='<username>', required=True,
help='List of usernames, or "-" to read from stdin')
return parser
def get_parser():
return DisableUsers.parser()
if __name__ == '__main__':
DisableUsers.main()