e-smith-ldap/sme8/e-smith-ldap-5.2.0-add_samba_attr_in_ldap.patch

diff -Nur -x '*.orig' -x '*.rej' e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update
--- e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update      2010-09-24 18:47:32.000000000 +0200
+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update    2010-09-24 16:15:45.000000000 +0200
@@ -97,6 +97,41 @@
 }
 endpwent();
 
+# Now parse samba info
+# We want to copy all this into LDAP
+# so it'll be easier to switch to real LDAP auth later
+my %lmpass;
+my %ntpass;
+my %smbflag;
+my %smblct;
+my %smbsid;
+my %smbpgsid;
+
+# First, parse users data
+foreach my $line (`/usr/bin/pdbedit -Lw`){
+    my ($key,undef,$lmpass,$ntpass,$smbflag,$smblct) = split(/:/,$line);
+    $lmpass{$key} = $lmpass;
+    $ntpass{$key} = $ntpass;
+    $smbflag{$key} = $smbflag;
+    $smblct =~ s/LCT\-//;
+    $smblct{$key} = hex($smblct);
+    foreach my $info (`/usr/bin/pdbedit -v $key`){
+        $smbsid{$key} = $1 if ($info =~ m/User SID:\s+(S-.*)/);
+        $smbpgsid{$key} = $1 if ($info =~ m/Primary Group SID:\s+(S-.*)/);
+    }
+}
+
+# Now, parse groupmaps data
+foreach (`/usr/bin/net groupmap list`){
+    chomp;
+    next unless (/^(.*?) \((S-.*-\d+)\) -> (.*)$/);
+    my ($desc, $smbsid, $key) = ($1, $2, $3);
+    # We only want group sid
+    my $account = $a->get($key) || next;
+    next unless ($account->prop('type') eq 'group');
+    $smbsid{$key} = $smbsid;
+}
+
 #------------------------------------------------------------
 # Update LDAP database entry.
 #------------------------------------------------------------
@@ -146,8 +181,14 @@
        my $gid = $gid{$key} || '';
        my $home = $home{$key} || '';
        my $shell = $shell{$key} || '';
+       my $lmpass = $lmpass{$key} || '';
+       my $ntpass = $ntpass{$key} || '';
+       my $smbflag = $smbflag{$key} || '';
+       my $smblct = $smblct{$key} || '';
+       my $smbsid = $smbsid{$key} || '';
+       my $smbpgsid = $smbpgsid{$key} || '';
 
-       push @attrs, (objectClass => ['inetOrgPerson', 'posixAccount']);
+       push @attrs, (objectClass => ['inetOrgPerson', 'posixAccount', 'sambaSamAccount']);
        push @attrs, (uid => $key);
 
        push @attrs, (cn => $name) unless ($name =~ /^\s*$/);
@@ -164,6 +205,12 @@
        push @attrs, (gidNumber => $gid) unless $gid =~ /^\s*$/;
        push @attrs, (homeDirectory => $home) unless $home =~ /^\s*$/;
        push @attrs, (loginShell => $shell) unless $shell =~ /^\s*$/;
+       push @attrs, (sambaLMPassword => $lmpass) unless $lmpass =~ /^\s*$/;
+       push @attrs, (sambaNTPassword => $ntpass) unless $ntpass =~ /^\s*$/;
+       push @attrs, (sambaAcctFlags => $smbflag) unless $smbflag =~ /^\s*$/;
+       push @attrs, (sambaPwdLastSet => $smblct) unless $smblct =~ /^\s*$/;
+       push @attrs, (sambaSID => $smbsid) unless $smbsid =~ /^\s*$/;
+       push @attrs, (sambaPrimaryGroupSID => $smbpgsid) unless $smbpgsid =~ /^\s*$/;
     }
     elsif ($type eq 'group')
     {
@@ -173,14 +220,19 @@
        utf8::upgrade($desc);
        my @members = split(/,/,($acct->prop('Members') || ''));
        my $gid = $acct->prop('Gid');
+       my $smbsid = $smbsid{$key};
 
-       push @attrs, (objectClass => ['posixGroup','mailboxRelatedObject']);
+       push @attrs, (objectClass => ['posixGroup','mailboxRelatedObject','sambaGroupMapping']);
        push @attrs, (cn => $key);
        push @attrs, (mail => "$key\@$domain");
        push @attrs, (gidNumber => $gid);
        push @attrs, (description => $desc) unless $desc =~ /^\s*$/;
        push @attrs, (memberUid => \@members) 
            unless ((scalar @members == 0) && ($event eq 'group-create'));
+       # Samba requires the displayName attribute
+       push @attrs, (displayName => $desc) unless $desc =~ /^\s*$/;
+       push @attrs, (sambaGroupType => '2');
+       push @attrs, (sambaSID => $smbsid);
     }
     if (($event eq 'user-create') || ($event eq 'group-create'))
     {
diff -Nur -x '*.orig' -x '*.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups
--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups    2010-09-24 18:47:32.000000000 +0200
+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups  2010-09-24 18:43:40.000000000 +0200
@@ -5,18 +5,23 @@
        my $desc = $_->prop('Description') || '';
        my $gid = $_->prop('Gid');
        my @members = split( /,/, ($_->prop('Members') || '') );
+       my $smbsid = $smbsid{$key} || '';
 
        $OUT .= "\n";
        $OUT .= "dn: cn=$key,ou=Groups,$ldapBase\n";
        $OUT .= "objectClass: posixGroup\n";
        $OUT .= "objectClass: mailboxRelatedObject\n";
+       $OUT .= "objectClass: sambaGroupMapping\n";
        $OUT .= "gidNumber: $gid\n";
        $OUT .= "cn: $key\n";
        $OUT .= "description: $desc\n";
+       $OUT .= "displayName: $desc\n";
        $OUT .= "mail: $key\@$DomainName\n";
        foreach my $member (@members){
            $OUT .= "memberUid: $member\n";
        }
+       $OUT .= "sambaGroupType: 2\n";
+       $OUT .= "sambaSID: $smbsid\n";
     }
 }
 
diff -Nur -x '*.orig' -x '*.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users
--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users     2010-09-24 18:47:32.000000000 +0200
+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users   2010-09-24 16:15:45.000000000 +0200
@@ -18,10 +18,19 @@
        my $home = $home{$key};
        my $shell = $shell{$key};
 
+       my $lmpass = $lmpass{$key} || '';
+       my $ntpass = $ntpass{$key} || '';
+       my $smbflag = $smbflag{$key} || '';
+       my $smblct = $smblct{$key} || '';
+       my $smbsid = $smbsid{$key} || '';
+       my $smbpgsid = $smbpgsid{$key} || '';
+
+
        $OUT .= "\n";
        $OUT .= utf8("dn: uid=$key,ou=Users,$ldapBase\n");
        $OUT .= utf8("objectClass: inetOrgPerson\n");
        $OUT .= utf8("objectClass: posixAccount\n");
+       $OUT .= utf8("objectClass: sambaSamAccount\n");
        $OUT .= utf8("uid: $key\n");
        $OUT .= utf8("cn: $name\n") if $name;
        $OUT .= utf8("givenName: $first\n") if $first;
@@ -37,5 +46,12 @@
        $OUT .= utf8("gidNumber: $gid\n") if $gid;
        $OUT .= utf8("homeDirectory: $home\n") if $home;
        $OUT .= utf8("loginShell: $shell\n") if $shell;
+       $OUT .= utf8("sambaLMPassword: $lmpass\n") if $lmpass;
+       $OUT .= utf8("sambaNTPassword: $ntpass\n") if $ntpass;
+       $OUT .= utf8("sambaAcctFlags: $smbflag\n") if $smbflag;
+       $OUT .= utf8("sambaPwdLastSet: $smblct\n") if $smblct;
+       $OUT .= utf8("sambaSID: $smbsid\n") if $smbsid;
+       $OUT .= utf8("sambaPrimaryGroupSID: $smbpgsid\n") if $smbpgsid;
+
     }
 }
diff -Nur -x '*.orig' -x '*.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin
--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin      2010-09-24 18:47:32.000000000 +0200
+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin    2010-09-24 16:15:45.000000000 +0200
@@ -28,5 +28,35 @@
     }
     endpwent();
 
+    %lmpass = ();
+    %ntpass = ();
+    %smbflag = ();
+    %smblct = ();
+    %smbsid = ();
+    %smbpgsid = ();
+
+    foreach my $line (`/usr/bin/pdbedit -Lw`){
+        my ($key,undef,$lmpass,$ntpass,$smbflag,$smblct) = split(/:/,$line);
+        $lmpass{$key} = $lmpass;
+        $ntpass{$key} = $ntpass;
+        $smbflag{$key} = $smbflag;
+        $smblct =~ s/LCT\-//;
+        $smblct{$key} = hex($smblct);
+        foreach my $info (`/usr/bin/pdbedit -v $key`){
+            $smbsid{$key} = $1 if ($info =~ m/User SID:\s+(S-.*)/);
+            $smbpgsid{$key} = $1 if ($info =~ m/Primary Group SID:\s+(S-.*)/);
+        }
+   }
+
+    foreach (`/usr/bin/net groupmap list`){
+        chomp;
+        next unless (/^(.*?) \((S-.*-\d+)\) -> (.*)$/);
+        my ($desc, $smbsid, $key) = ($1, $2, $3);
+        # We only want group sid
+        my $account = $a->get($key) || next;
+        next unless ($account->prop('type') eq 'group');
+        $smbsid{$key} = $smbsid;
+    }
+
     $OUT = "";
 }
1	diff -Nur -x '.orig' -x '.rej' e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update
2	--- e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update 2010-09-24 18:47:32.000000000 +0200
3	+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/events/actions/ldap-update 2010-09-24 16:15:45.000000000 +0200
4	@@ -97,6 +97,41 @@
5	}
6	endpwent();
7
8	+# Now parse samba info
9	+# We want to copy all this into LDAP
10	+# so it'll be easier to switch to real LDAP auth later
11	+my %lmpass;
12	+my %ntpass;
13	+my %smbflag;
14	+my %smblct;
15	+my %smbsid;
16	+my %smbpgsid;
17	+
18	+# First, parse users data
19	+foreach my $line (`/usr/bin/pdbedit -Lw`){
20	+ my ($key,undef,$lmpass,$ntpass,$smbflag,$smblct) = split(/:/,$line);
21	+ $lmpass{$key} = $lmpass;
22	+ $ntpass{$key} = $ntpass;
23	+ $smbflag{$key} = $smbflag;
24	+ $smblct =~ s/LCT\-//;
25	+ $smblct{$key} = hex($smblct);
26	+ foreach my $info (`/usr/bin/pdbedit -v $key`){
27	+ $smbsid{$key} = $1 if ($info =~ m/User SID:\s+(S-.*)/);
28	+ $smbpgsid{$key} = $1 if ($info =~ m/Primary Group SID:\s+(S-.*)/);
29	+ }
30	+}
31	+
32	+# Now, parse groupmaps data
33	+foreach (`/usr/bin/net groupmap list`){
34	+ chomp;
35	+ next unless (/^(.?) \((S-.-\d+)\) -> (.*)$/);
36	+ my ($desc, $smbsid, $key) = ($1, $2, $3);
37	+ # We only want group sid
38	+ my $account = $a->get($key) \|\| next;
39	+ next unless ($account->prop('type') eq 'group');
40	+ $smbsid{$key} = $smbsid;
41	+}
42	+
43	#------------------------------------------------------------
44	# Update LDAP database entry.
45	#------------------------------------------------------------
46	@@ -146,8 +181,14 @@
47	my $gid = $gid{$key} \|\| '';
48	my $home = $home{$key} \|\| '';
49	my $shell = $shell{$key} \|\| '';
50	+ my $lmpass = $lmpass{$key} \|\| '';
51	+ my $ntpass = $ntpass{$key} \|\| '';
52	+ my $smbflag = $smbflag{$key} \|\| '';
53	+ my $smblct = $smblct{$key} \|\| '';
54	+ my $smbsid = $smbsid{$key} \|\| '';
55	+ my $smbpgsid = $smbpgsid{$key} \|\| '';
56
57	- push @attrs, (objectClass => ['inetOrgPerson', 'posixAccount']);
58	+ push @attrs, (objectClass => ['inetOrgPerson', 'posixAccount', 'sambaSamAccount']);
59	push @attrs, (uid => $key);
60
61	push @attrs, (cn => $name) unless ($name =~ /^\s*$/);
62	@@ -164,6 +205,12 @@
63	push @attrs, (gidNumber => $gid) unless $gid =~ /^\s*$/;
64	push @attrs, (homeDirectory => $home) unless $home =~ /^\s*$/;
65	push @attrs, (loginShell => $shell) unless $shell =~ /^\s*$/;
66	+ push @attrs, (sambaLMPassword => $lmpass) unless $lmpass =~ /^\s*$/;
67	+ push @attrs, (sambaNTPassword => $ntpass) unless $ntpass =~ /^\s*$/;
68	+ push @attrs, (sambaAcctFlags => $smbflag) unless $smbflag =~ /^\s*$/;
69	+ push @attrs, (sambaPwdLastSet => $smblct) unless $smblct =~ /^\s*$/;
70	+ push @attrs, (sambaSID => $smbsid) unless $smbsid =~ /^\s*$/;
71	+ push @attrs, (sambaPrimaryGroupSID => $smbpgsid) unless $smbpgsid =~ /^\s*$/;
72	}
73	elsif ($type eq 'group')
74	{
75	@@ -173,14 +220,19 @@
76	utf8::upgrade($desc);
77	my @members = split(/,/,($acct->prop('Members') \|\| ''));
78	my $gid = $acct->prop('Gid');
79	+ my $smbsid = $smbsid{$key};
80
81	- push @attrs, (objectClass => ['posixGroup','mailboxRelatedObject']);
82	+ push @attrs, (objectClass => ['posixGroup','mailboxRelatedObject','sambaGroupMapping']);
83	push @attrs, (cn => $key);
84	push @attrs, (mail => "$key\@$domain");
85	push @attrs, (gidNumber => $gid);
86	push @attrs, (description => $desc) unless $desc =~ /^\s*$/;
87	push @attrs, (memberUid => \@members)
88	unless ((scalar @members == 0) && ($event eq 'group-create'));
89	+ # Samba requires the displayName attribute
90	+ push @attrs, (displayName => $desc) unless $desc =~ /^\s*$/;
91	+ push @attrs, (sambaGroupType => '2');
92	+ push @attrs, (sambaSID => $smbsid);
93	}
94	if (($event eq 'user-create') \|\| ($event eq 'group-create'))
95	{
96	diff -Nur -x '.orig' -x '.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups
97	--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups 2010-09-24 18:47:32.000000000 +0200
98	+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50groups 2010-09-24 18:43:40.000000000 +0200
99	@@ -5,18 +5,23 @@
100	my $desc = $_->prop('Description') \|\| '';
101	my $gid = $_->prop('Gid');
102	my @members = split( /,/, ($_->prop('Members') \|\| '') );
103	+ my $smbsid = $smbsid{$key} \|\| '';
104
105	$OUT .= "\n";
106	$OUT .= "dn: cn=$key,ou=Groups,$ldapBase\n";
107	$OUT .= "objectClass: posixGroup\n";
108	$OUT .= "objectClass: mailboxRelatedObject\n";
109	+ $OUT .= "objectClass: sambaGroupMapping\n";
110	$OUT .= "gidNumber: $gid\n";
111	$OUT .= "cn: $key\n";
112	$OUT .= "description: $desc\n";
113	+ $OUT .= "displayName: $desc\n";
114	$OUT .= "mail: $key\@$DomainName\n";
115	foreach my $member (@members){
116	$OUT .= "memberUid: $member\n";
117	}
118	+ $OUT .= "sambaGroupType: 2\n";
119	+ $OUT .= "sambaSID: $smbsid\n";
120	}
121	}
122
123	diff -Nur -x '.orig' -x '.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users
124	--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users 2010-09-24 18:47:32.000000000 +0200
125	+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/50users 2010-09-24 16:15:45.000000000 +0200
126	@@ -18,10 +18,19 @@
127	my $home = $home{$key};
128	my $shell = $shell{$key};
129
130	+ my $lmpass = $lmpass{$key} \|\| '';
131	+ my $ntpass = $ntpass{$key} \|\| '';
132	+ my $smbflag = $smbflag{$key} \|\| '';
133	+ my $smblct = $smblct{$key} \|\| '';
134	+ my $smbsid = $smbsid{$key} \|\| '';
135	+ my $smbpgsid = $smbpgsid{$key} \|\| '';
136	+
137	+
138	$OUT .= "\n";
139	$OUT .= utf8("dn: uid=$key,ou=Users,$ldapBase\n");
140	$OUT .= utf8("objectClass: inetOrgPerson\n");
141	$OUT .= utf8("objectClass: posixAccount\n");
142	+ $OUT .= utf8("objectClass: sambaSamAccount\n");
143	$OUT .= utf8("uid: $key\n");
144	$OUT .= utf8("cn: $name\n") if $name;
145	$OUT .= utf8("givenName: $first\n") if $first;
146	@@ -37,5 +46,12 @@
147	$OUT .= utf8("gidNumber: $gid\n") if $gid;
148	$OUT .= utf8("homeDirectory: $home\n") if $home;
149	$OUT .= utf8("loginShell: $shell\n") if $shell;
150	+ $OUT .= utf8("sambaLMPassword: $lmpass\n") if $lmpass;
151	+ $OUT .= utf8("sambaNTPassword: $ntpass\n") if $ntpass;
152	+ $OUT .= utf8("sambaAcctFlags: $smbflag\n") if $smbflag;
153	+ $OUT .= utf8("sambaPwdLastSet: $smblct\n") if $smblct;
154	+ $OUT .= utf8("sambaSID: $smbsid\n") if $smbsid;
155	+ $OUT .= utf8("sambaPrimaryGroupSID: $smbpgsid\n") if $smbpgsid;
156	+
157	}
158	}
159	diff -Nur -x '.orig' -x '.rej' e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin
160	--- e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin 2010-09-24 18:47:32.000000000 +0200
161	+++ mezzanine_patched_e-smith-ldap-5.2.0/root/etc/e-smith/templates/home/e-smith/db/ldap/ldif/template-begin 2010-09-24 16:15:45.000000000 +0200
162	@@ -28,5 +28,35 @@
163	}
164	endpwent();
165
166	+ %lmpass = ();
167	+ %ntpass = ();
168	+ %smbflag = ();
169	+ %smblct = ();
170	+ %smbsid = ();
171	+ %smbpgsid = ();
172	+
173	+ foreach my $line (`/usr/bin/pdbedit -Lw`){
174	+ my ($key,undef,$lmpass,$ntpass,$smbflag,$smblct) = split(/:/,$line);
175	+ $lmpass{$key} = $lmpass;
176	+ $ntpass{$key} = $ntpass;
177	+ $smbflag{$key} = $smbflag;
178	+ $smblct =~ s/LCT\-//;
179	+ $smblct{$key} = hex($smblct);
180	+ foreach my $info (`/usr/bin/pdbedit -v $key`){
181	+ $smbsid{$key} = $1 if ($info =~ m/User SID:\s+(S-.*)/);
182	+ $smbpgsid{$key} = $1 if ($info =~ m/Primary Group SID:\s+(S-.*)/);
183	+ }
184	+ }
185	+
186	+ foreach (`/usr/bin/net groupmap list`){
187	+ chomp;
188	+ next unless (/^(.?) \((S-.-\d+)\) -> (.*)$/);
189	+ my ($desc, $smbsid, $key) = ($1, $2, $3);
190	+ # We only want group sid
191	+ my $account = $a->get($key) \|\| next;
192	+ next unless ($account->prop('type') eq 'group');
193	+ $smbsid{$key} = $smbsid;
194	+ }
195	+
196	$OUT = "";
197	}