| # Licensed to the Apache Software Foundation (ASF) under one |
| # or more contributor license agreements. See the NOTICE file |
| # distributed with this work for additional information |
| # regarding copyright ownership. The ASF licenses this file |
| # to you under the Apache License, Version 2.0 (the |
| # "License"); you may not use this file except in compliance |
| # with the License. You may obtain a copy of the License at |
| # |
| # http://www.apache.org/licenses/LICENSE-2.0 |
| # |
| # Unless required by applicable law or agreed to in writing, |
| # software distributed under the License is distributed on an |
| # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY |
| # KIND, either express or implied. See the License for the |
| # specific language governing permissions and limitations |
| # under the License. |
| |
| import sys, os, os.path |
| import elasticsearch |
| import argparse |
| import yaml |
| import bcrypt |
| |
| from kibble.settings import YAML_DIRECTORY, KIBBLE_YAML |
| |
| |
| class KibbleDatabase(object): |
| def __init__(self, config): |
| self.config = config |
| self.dbname = config["elasticsearch"]["dbname"] |
| self.ES = elasticsearch.Elasticsearch( |
| [ |
| { |
| "host": config["elasticsearch"]["host"], |
| "port": int(config["elasticsearch"]["port"]), |
| "use_ssl": config["elasticsearch"]["ssl"], |
| "verify_certs": False, |
| "url_prefix": config["elasticsearch"]["uri"] |
| if "uri" in config["elasticsearch"] |
| else "", |
| "http_auth": config["elasticsearch"]["auth"] |
| if "auth" in config["elasticsearch"] |
| else None, |
| } |
| ], |
| max_retries=5, |
| retry_on_timeout=True, |
| ) |
| |
| |
| arg_parser = argparse.ArgumentParser() |
| arg_parser.add_argument( |
| "-u", "--username", required=True, help="Username (email) of accoun to create" |
| ) |
| arg_parser.add_argument( |
| "-p", "--password", required=True, help="Password to set for account" |
| ) |
| arg_parser.add_argument( |
| "-n", "--name", help="Real name (displayname) of account (optional)" |
| ) |
| arg_parser.add_argument( |
| "-A", "--admin", action="store_true", help="Make account global admin" |
| ) |
| arg_parser.add_argument( |
| "-a", |
| "--orgadmin", |
| action="store_true", |
| help="Make account owner of orgs invited to", |
| ) |
| arg_parser.add_argument("-o", "--org", help="Invite to this organisation") |
| |
| args = arg_parser.parse_args() |
| |
| # Load Kibble master configuration |
| with open(KIBBLE_YAML) as f: |
| config = yaml.load(f) |
| |
| DB = KibbleDatabase(config) |
| |
| username = args.username |
| password = args.password |
| name = args.name if args.name else args.username |
| admin = True if args.admin else False |
| adminorg = True if args.orgadmin else False |
| orgs = [args.org] if args.org else [] |
| aorgs = orgs if adminorg else [] |
| |
| salt = bcrypt.gensalt() |
| pwd = bcrypt.hashpw(password.encode("utf-8"), salt).decode("ascii") |
| doc = { |
| "email": username, # Username (email) |
| "password": pwd, # Hashed password |
| "displayName": username, # Display Name |
| "organisations": orgs, # Orgs user belongs to (default is none) |
| "ownerships": aorgs, # Orgs user owns (default is none) |
| "defaultOrganisation": None, # Default org for user |
| "verified": True, # Account verified via email? |
| "userlevel": "admin" if admin else "user", # User level (user/admin) |
| } |
| DB.ES.index(index=DB.dbname, doc_type="useraccount", id=username, body=doc) |
| print("Account created!") |
