viewvc.cgi/useradm/otvori_nove%2Bdb

#!/usr/local/bin/perl -w

# Dobrica Pavlinusic <dpavlin@pliva.hr>
# 2000-01-31 DbP prva verzija
# 2000-02-14 DbP mozda i radi?
# 2000-03-06 DbP koristi DBD::pg
# 2000-03-09 DbP e-mail alias samo od malih slova
# 2000-03-13 DbP podrska za novu support/last_open tablicu
# 2000-03-16 DbP cuva stare aliase iz /etc/aliases
# 2000-03-20 DbP skida razmake prije/poslje imena/prezimena

use DBI;
use strict;

my $debug=0;

if (defined($ARGV[0]) && $ARGV[0] eq "-d") {
        $debug++;
        shift @ARGV;
}
my $open_only_id=shift @ARGV if (defined($ARGV[0]));

warn "DEBUG -- me kreira ni¹ta!" if ($debug);

$|++;


#----

sub xerror { print ERROR @_; print STDERR @_; }
sub xdebug { print DEBUG @_; print STDOUT @_ if ($debug); }
sub v { print STDOUT @_; print DEBUG @_; };

open(ERROR,"> error-log") || die "can't open error-log: $!";
open(DEBUG,"> debug-log") || die "can't open debug-log: $!";

my %etc_aliases;
my $mail_alias;
my $mail_login;

my @mail_to;            # array to main initial message to
open(WHO,"who am i |") || die "who am i? $!";
my $db_user=<WHO>;
chomp $db_user;
$db_user=~s/\s.+$//g;
close(WHO);

xdebug "koristim korinika $db_user\n";

open(HOSTNAME,"hostname |") || die "hostname: $!";
my $hostname=<HOSTNAME>;
chomp $hostname;
close(HOSTNAME);

xdebug "koristim hostname $hostname\n";

v "/etc/aliases\n";
open(ALIAS,"/etc/aliases") || die "Can't open /etc/aliases: $!";
open(NALIAS,">aliases.new") || die "Can't open aliases.new: $!";
while(<ALIAS>) {
        chop;
        print NALIAS "$_\n";
        next if (m!^#! || m!^$!);
        my ($mail_alias,$mail_login);
        if (m!\w+.\w+!) {
                ($mail_alias,$mail_login) = split(/\s*:\s*/,$_,2);
                $mail_alias =~ tr [A-Z] [a-z];
        }
        $etc_aliases{$mail_alias}=$mail_login;
#       xdebug "$mail_alias:$mail_login\n";
}
close(ALIAS);

my %etc_passwd;
my $uid;        # current (or max) uid

v "/etc/passwd\n";
open(PASSWD,"/etc/passwd") || die "Can't open /etc/passwd !";
open(NPASSWD,">passwd.new") || die "Can't open passwd.new !";
while(<PASSWD>) {
        chop;
        my ($login,$gid,$full_name,$dir,$shell);
        ($login,undef,$uid,$gid,$full_name,$dir,$shell) = split(/:/,$_,7);
        $etc_passwd{$login}=$full_name;
        print NPASSWD "$_\n";
#       xdebug "$login:$full_name\n";
}
close(PASSWD);

my %group_id;

v "/etc/group\n";
open(GROUP,"/etc/group") || die "Can't open /etc/group !";
while(<GROUP>) {
        my ($group,undef,$gid,undef) = split (/:/,$_,4);
        $group_id{$group}=$gid;
#       xdebug "$group:$gid\n";
}
close(GROUP);

sub nuke_chars {
        my $foo=$_[0];
        $foo =~ tr/ðèæÐÈÆ/¹ðèæ¾©ÐÈÆ®/;      # cp1250 -> iso88592
        $foo =~ s/ð/dj/g;
        $foo =~ s/Ð/Dj/g;
        $foo =~ tr/¹ðèæ¾©ÐÈÆ®/sdcczSDCCZ/;      # nuke iso88592
        $foo =~ s/^\s+//g;
        $foo =~ s/\s+$//g;
        return $foo;
}

my $max_osoba_id=0;

my $dbh = DBI->connect("DBI:Pg:dbname=informatika;host=support.pliva.hr;user=$db_user","","") || die $DBI::errstr;

my $sth = $dbh->prepare("select ko_id from unix2ko where login='$db_user' and host='$hostname'") || die $dbh->errstr();
$sth->execute() || die $sth->errstr();
my ($ko_id)=$sth->fetchrow_array;

xdebug "upotrebljavam ID kontakt osobe: $ko_id\n";

$sth = $dbh->prepare("select max(id) from last_open") || die $dbh->errstr();
$sth->execute() || die $sth->errstr();
my ($last_open)=$sth->fetchrow_array;

if (! defined($open_only_id)) {
        $sth = $dbh->prepare("select id,ime,prezime,sifra,objekt,kat,soba,shell from view_otvori_nove where id > $last_open") || die $dbh->errstr();
} else {
        $sth = $dbh->prepare("select id,ime,prezime,sifra,objekt,kat,soba,shell from view_otvori_nove where id=$open_only_id") || die $dbh->errstr();

}
$sth->execute() || die $sth->errstr();


my $sth2;

while (my ($osoba_id,$ime,$prezime,$sifra,$objekt,$kat,$soba,$shell) = $sth->fetchrow_array() ) {

        $sth2 = $dbh->prepare("select max(status_tip_id) from status where osoba_id = $osoba_id") || die $dbh->errstr();
        $sth2->execute() || die $sth2->errstr();
        my ($max_status) = $sth2->fetchrow_array();
        xdebug "max status zahtjeva $osoba_id je $max_status\n";
        next if ($max_status > 3);      # 3 .. otvoren

        next if ($ime eq "ime" || $prezime eq "prezime");

        if (!defined($ime) || !defined($prezime) || $ime eq "" || $prezime eq "") {
                xerror "preskacem red '$_'\n";
                next;
        }

        $ime=nuke_chars($ime);
        $prezime=nuke_chars($prezime);

        my ($prezime_za_login,$ime_za_login);

        if ($prezime =~ /[- ]/) {          # dva prezimena prezime1-prezime2
                ($prezime_za_login,undef) = split(/[- ]/,$prezime,2);
        } else {
                $prezime_za_login = $prezime;
        }

        if ($ime =~ /[- ]/) {          # dva imena ime1-ime2
                ($ime_za_login,undef) = split(/[- ]/,$ime,2);
        } else {
                $ime_za_login = $ime;
        }

        my $add="";
        my $login;

        do {
                $login=substr($ime_za_login,0,1).substr($prezime_za_login,0,7-length($add)).$add;
                $login =~ tr [A-Z] [a-z];
                xdebug "$ime, $prezime   login: $login\n";
                $add++;
        } while defined($etc_passwd{$login});

        my $email_alias;

        $add="";
        do {
                $email_alias="$ime.$prezime$add";
                $email_alias =~ s/ /./g;        # space -> dot
                $email_alias =~ tr [A-Z] [a-z];
                xdebug "\t$email_alias\n";
                $add++;
        } while defined($etc_aliases{$login});


        my $group="users";

        if (defined($etc_passwd{$login})) {
                xerror "preskocen: $ime $prezime osoba_id=$osoba_id (postoji isti login $login)\n";
                $dbh->do("insert into status (osoba_id,kontakt_osoba_id,datum,status_tip_id) values ($osoba_id,3,'now'::datetime,4)") if (! $debug);
                next;
        }

        push @mail_to,$email_alias;

        my @saltch = ( 'a'..'z','0'..'9','A'..'Z' );
        my @passwdch = ( 'a'..'k','m'..'z','2'..'9','A'..'H','J'..'N','P'..'Z',
                '!','#','$','%','&','(',')','=','-','/','?' );

        my $passwd="";
        for (1..8) { $passwd.=$passwdch[int(rand($#passwdch))] };

        my $salt = $saltch[int(rand($#saltch))].$saltch[int(rand($#saltch))];
        my $crypt_passwd = crypt($passwd,$salt);

        $uid++;
        my $loc="";
        $loc.=$objekt if (defined($objekt));
        $loc.=" $kat" if (defined($kat));
        $loc.=" $soba" if (defined($soba));
        my $full_name="$ime $prezime,$loc,$sifra";
        $full_name=~s/, +/,/g;
        $full_name=~s/ +:/:/g;
        $full_name=~s/ +/ /g;
        $full_name=nuke_chars($full_name);
        if ($shell) {
                $shell="/usr/local/bin/bash";
        } else {
                $shell="/usr/bin/false";
        }
        my $dir="/usr/users/$login";

        die "Nema grupe $group!" if (! defined($group_id{$group}));
        xdebug "$login:$passwd:$uid:$group_id{$group}:$full_name:$dir:$shell\n";

        print NPASSWD "$login:$crypt_passwd:$uid:$group_id{$group}:$full_name:$dir:$shell\n";
        $dbh->do("insert into racuni (osoba_id,login,passwd) values ($osoba_id,'$login','$passwd')") if (! $debug);
        $etc_passwd{$login}=$full_name;

        if (defined($etc_aliases{$email_alias})) {
                xerror "upozorenje: $ime $prezime osoba_id=$osoba_id (postoji e-mail alias) -- $email_alias\n";
                print NALIAS "$email_alias:\t$login,$etc_aliases{$email_alias}\n";
        } else {
                print NALIAS "$email_alias:\t$login\n";
        }

        $dbh->do("insert into e_mail (osoba_id,alias) values ($osoba_id,'$email_alias')") if (! $debug);
        $etc_aliases{$email_alias}=$login;

#---- C2 security
#       if (!$debug || 1) {
#               open(AUTH,">> $0.auth");
#               print AUTH "$login:u_name=$login:u_id#$uid:u_pwd=$crypt_passwd:u_succhg#",time,":u_lock\@:chkent:\n";
#               close(AUTH);
#       }

        system "mkdir -p $dir ; mkdir $dir/bin ; \
                chown -R $uid:$group_id{$group} $dir ; chmod 755 $dir" if (! $debug);

        $dbh->do("insert into status (osoba_id,kontakt_osoba_id,datum,status_tip_id) values ($osoba_id,$ko_id,'now'::datetime,3)") if (! $debug);

        $max_osoba_id = $osoba_id if ($max_osoba_id < $osoba_id) ;
}

$dbh->do("insert into last_open values ('now',$max_osoba_id)") if (! $debug);

close(NPASSWD);
close(NALIAS);

undef $sth,$sth2;
$dbh->disconnect;

system "mv /etc/passwd passwd.orig" if (! $debug);
system "cp passwd.new /etc/passwd" if (! $debug);
system "chmod 644 /etc/passwd" if (! $debug);
system "/usr/sbin/mkpasswd /etc/passwd" if (! $debug);
system "mv /etc/aliases aliases.orig" if (! $debug);
system "cp aliases.new /etc/aliases" if (! $debug);
system "chmod 644 /etc/aliases" if (! $debug);
system "/usr/sbin/newaliases" if (! $debug);
#system "/tcb/bin/edauth -s < $0.auth" if (! $debug);

foreach my $alias (@mail_to) {
        system "/usr/lib/sendmail $alias < mail.txt" if (! $debug);
}
1	dpavlin	1.1	#!/usr/local/bin/perl -w
2
3			# Dobrica Pavlinusic <dpavlin@pliva.hr>
4			# 2000-01-31 DbP prva verzija
5			# 2000-02-14 DbP mozda i radi?
6			# 2000-03-06 DbP koristi DBD::pg
7			# 2000-03-09 DbP e-mail alias samo od malih slova
8			# 2000-03-13 DbP podrska za novu support/last_open tablicu
9			# 2000-03-16 DbP cuva stare aliase iz /etc/aliases
10			# 2000-03-20 DbP skida razmake prije/poslje imena/prezimena
11	dpavlin	1.2
12	dpavlin	1.1	use DBI;
13			use strict;
14
15			my $debug=0;
16
17	dpavlin	1.3	if (defined($ARGV[0]) && $ARGV[0] eq "-d") {
18			$debug++;
19			shift @ARGV;
20			}
21			my $open_only_id=shift @ARGV if (defined($ARGV[0]));
22	dpavlin	1.1
23			warn "DEBUG -- me kreira ni¹ta!" if ($debug);
24
25			$\|++;
26
27
28			#----
29
30			sub xerror { print ERROR @_; print STDERR @_; }
31			sub xdebug { print DEBUG @_; print STDOUT @_ if ($debug); }
32			sub v { print STDOUT @_; print DEBUG @_; };
33
34			open(ERROR,"> error-log") \|\| die "can't open error-log: $!";
35			open(DEBUG,"> debug-log") \|\| die "can't open debug-log: $!";
36
37			my %etc_aliases;
38			my $mail_alias;
39			my $mail_login;
40
41	dpavlin	1.3	my @mail_to; # array to main initial message to
42			open(WHO,"who am i \|") \|\| die "who am i? $!";
43			my $db_user=<WHO>;
44	dpavlin	1.7	chomp $db_user;
45	dpavlin	1.3	$db_user=~s/\s.+$//g;
46			close(WHO);
47
48			xdebug "koristim korinika $db_user\n";
49
50	dpavlin	1.7	open(HOSTNAME,"hostname \|") \|\| die "hostname: $!";
51			my $hostname=<HOSTNAME>;
52			chomp $hostname;
53			close(HOSTNAME);
54
55			xdebug "koristim hostname $hostname\n";
56	dpavlin	1.3
57	dpavlin	1.1	v "/etc/aliases\n";
58			open(ALIAS,"/etc/aliases") \|\| die "Can't open /etc/aliases: $!";
59			open(NALIAS,">aliases.new") \|\| die "Can't open aliases.new: $!";
60			while(<ALIAS>) {
61			chop;
62			print NALIAS "$_\n";
63			next if (m!^#! \|\| m!^$!);
64			my ($mail_alias,$mail_login);
65			if (m!\w+.\w+!) {
66			($mail_alias,$mail_login) = split(/\s:\s/,$_,2);
67			$mail_alias =~ tr [A-Z] [a-z];
68			}
69			$etc_aliases{$mail_alias}=$mail_login;
70			# xdebug "$mail_alias:$mail_login\n";
71			}
72			close(ALIAS);
73
74			my %etc_passwd;
75			my $uid; # current (or max) uid
76
77			v "/etc/passwd\n";
78			open(PASSWD,"/etc/passwd") \|\| die "Can't open /etc/passwd !";
79			open(NPASSWD,">passwd.new") \|\| die "Can't open passwd.new !";
80			while(<PASSWD>) {
81			chop;
82			my ($login,$gid,$full_name,$dir,$shell);
83			($login,undef,$uid,$gid,$full_name,$dir,$shell) = split(/:/,$_,7);
84			$etc_passwd{$login}=$full_name;
85			print NPASSWD "$_\n";
86			# xdebug "$login:$full_name\n";
87			}
88			close(PASSWD);
89
90			my %group_id;
91
92			v "/etc/group\n";
93			open(GROUP,"/etc/group") \|\| die "Can't open /etc/group !";
94			while(<GROUP>) {
95			my ($group,undef,$gid,undef) = split (/:/,$_,4);
96			$group_id{$group}=$gid;
97			# xdebug "$group:$gid\n";
98			}
99			close(GROUP);
100
101			sub nuke_chars {
102			my $foo=$_[0];
103			$foo =~ tr/ðèæÐÈÆ/¹ðèæ¾©ÐÈÆ®/; # cp1250 -> iso88592
104			$foo =~ s/ð/dj/g;
105			$foo =~ s/Ð/Dj/g;
106			$foo =~ tr/¹ðèæ¾©ÐÈÆ®/sdcczSDCCZ/; # nuke iso88592
107			$foo =~ s/^\s+//g;
108			$foo =~ s/\s+$//g;
109			return $foo;
110			}
111
112			my $max_osoba_id=0;
113
114			my $dbh = DBI->connect("DBI:Pg:dbname=informatika;host=support.pliva.hr;user=$db_user","","") \|\| die $DBI::errstr;
115	dpavlin	1.7
116			my $sth = $dbh->prepare("select ko_id from unix2ko where login='$db_user' and host='$hostname'") \|\| die $dbh->errstr();
117			$sth->execute() \|\| die $sth->errstr();
118			my ($ko_id)=$sth->fetchrow_array;
119
120			xdebug "upotrebljavam ID kontakt osobe: $ko_id\n";
121
122			$sth = $dbh->prepare("select max(id) from last_open") \|\| die $dbh->errstr();
123	dpavlin	1.1	$sth->execute() \|\| die $sth->errstr();
124			my ($last_open)=$sth->fetchrow_array;
125	dpavlin	1.7
126	dpavlin	1.2	if (! defined($open_only_id)) {
127			$sth = $dbh->prepare("select id,ime,prezime,sifra,objekt,kat,soba,shell from view_otvori_nove where id > $last_open") \|\| die $dbh->errstr();
128			} else {
129			$sth = $dbh->prepare("select id,ime,prezime,sifra,objekt,kat,soba,shell from view_otvori_nove where id=$open_only_id") \|\| die $dbh->errstr();
130
131			}
132	dpavlin	1.1	$sth->execute() \|\| die $sth->errstr();
133	dpavlin	1.3
134
135			my $sth2;
136
137	dpavlin	1.1	while (my ($osoba_id,$ime,$prezime,$sifra,$objekt,$kat,$soba,$shell) = $sth->fetchrow_array() ) {
138
139	dpavlin	1.3	$sth2 = $dbh->prepare("select max(status_tip_id) from status where osoba_id = $osoba_id") \|\| die $dbh->errstr();
140			$sth2->execute() \|\| die $sth2->errstr();
141			my ($max_status) = $sth2->fetchrow_array();
142			xdebug "max status zahtjeva $osoba_id je $max_status\n";
143			next if ($max_status > 3); # 3 .. otvoren
144
145	dpavlin	1.1	next if ($ime eq "ime" \|\| $prezime eq "prezime");
146
147			if (!defined($ime) \|\| !defined($prezime) \|\| $ime eq "" \|\| $prezime eq "") {
148			xerror "preskacem red '$_'\n";
149			next;
150			}
151
152			$ime=nuke_chars($ime);
153			$prezime=nuke_chars($prezime);
154
155	dpavlin	1.5	my ($prezime_za_login,$ime_za_login);
156	dpavlin	1.1
157	dpavlin	1.4	if ($prezime =~ /[- ]/) { # dva prezimena prezime1-prezime2
158			($prezime_za_login,undef) = split(/[- ]/,$prezime,2);
159	dpavlin	1.1	} else {
160			$prezime_za_login = $prezime;
161			}
162
163	dpavlin	1.4	if ($ime =~ /[- ]/) { # dva imena ime1-ime2
164			($ime_za_login,undef) = split(/[- ]/,$ime,2);
165			} else {
166			$ime_za_login = $ime;
167			}
168
169	dpavlin	1.1	my $add="";
170			my $login;
171
172			do {
173	dpavlin	1.4	$login=substr($ime_za_login,0,1).substr($prezime_za_login,0,7-length($add)).$add;
174	dpavlin	1.2	$login =~ tr [A-Z] [a-z];
175			xdebug "$ime, $prezime login: $login\n";
176			$add++;
177	dpavlin	1.1	} while defined($etc_passwd{$login});
178
179			my $email_alias;
180
181			$add="";
182			do {
183			$email_alias="$ime.$prezime$add";
184	dpavlin	1.4	$email_alias =~ s/ /./g; # space -> dot
185	dpavlin	1.1	$email_alias =~ tr [A-Z] [a-z];
186			xdebug "\t$email_alias\n";
187			$add++;
188			} while defined($etc_aliases{$login});
189
190
191			my $group="users";
192
193			if (defined($etc_passwd{$login})) {
194	dpavlin	1.3	xerror "preskocen: $ime $prezime osoba_id=$osoba_id (postoji isti login $login)\n";
195	dpavlin	1.1	$dbh->do("insert into status (osoba_id,kontakt_osoba_id,datum,status_tip_id) values ($osoba_id,3,'now'::datetime,4)") if (! $debug);
196			next;
197			}
198
199			push @mail_to,$email_alias;
200
201			my @saltch = ( 'a'..'z','0'..'9','A'..'Z' );
202			my @passwdch = ( 'a'..'k','m'..'z','2'..'9','A'..'H','J'..'N','P'..'Z',
203			'!','#','$','%','&','(',')','=','-','/','?' );
204
205			my $passwd="";
206			for (1..8) { $passwd.=$passwdch[int(rand($#passwdch))] };
207
208			my $salt = $saltch[int(rand($#saltch))].$saltch[int(rand($#saltch))];
209			my $crypt_passwd = crypt($passwd,$salt);
210
211			$uid++;
212			my $loc="";
213			$loc.=$objekt if (defined($objekt));
214			$loc.=" $kat" if (defined($kat));
215			$loc.=" $soba" if (defined($soba));
216			my $full_name="$ime $prezime,$loc,$sifra";
217			$full_name=~s/, +/,/g;
218			$full_name=~s/ +:/:/g;
219			$full_name=~s/ +/ /g;
220			$full_name=nuke_chars($full_name);
221	dpavlin	1.6	if ($shell) {
222	dpavlin	1.1	$shell="/usr/local/bin/bash";
223			} else {
224			$shell="/usr/bin/false";
225			}
226			my $dir="/usr/users/$login";
227
228			die "Nema grupe $group!" if (! defined($group_id{$group}));
229			xdebug "$login:$passwd:$uid:$group_id{$group}:$full_name:$dir:$shell\n";
230
231			print NPASSWD "$login:$crypt_passwd:$uid:$group_id{$group}:$full_name:$dir:$shell\n";
232			$dbh->do("insert into racuni (osoba_id,login,passwd) values ($osoba_id,'$login','$passwd')") if (! $debug);
233			$etc_passwd{$login}=$full_name;
234
235			if (defined($etc_aliases{$email_alias})) {
236	dpavlin	1.3	xerror "upozorenje: $ime $prezime osoba_id=$osoba_id (postoji e-mail alias) -- $email_alias\n";
237	dpavlin	1.1	print NALIAS "$email_alias:\t$login,$etc_aliases{$email_alias}\n";
238			} else {
239			print NALIAS "$email_alias:\t$login\n";
240			}
241
242			$dbh->do("insert into e_mail (osoba_id,alias) values ($osoba_id,'$email_alias')") if (! $debug);
243			$etc_aliases{$email_alias}=$login;
244
245			#---- C2 security
246			# if (!$debug \|\| 1) {
247			# open(AUTH,">> $0.auth");
248			# print AUTH "$login:u_name=$login:u_id#$uid:u_pwd=$crypt_passwd:u_succhg#",time,":u_lock\@:chkent:\n";
249			# close(AUTH);
250			# }
251
252			system "mkdir -p $dir ; mkdir $dir/bin ; \
253			chown -R $uid:$group_id{$group} $dir ; chmod 755 $dir" if (! $debug);
254
255	dpavlin	1.7	$dbh->do("insert into status (osoba_id,kontakt_osoba_id,datum,status_tip_id) values ($osoba_id,$ko_id,'now'::datetime,3)") if (! $debug);
256	dpavlin	1.1
257			$max_osoba_id = $osoba_id if ($max_osoba_id < $osoba_id) ;
258			}
259
260			$dbh->do("insert into last_open values ('now',$max_osoba_id)") if (! $debug);
261
262			close(NPASSWD);
263			close(NALIAS);
264
265	dpavlin	1.5	undef $sth,$sth2;
266	dpavlin	1.1	$dbh->disconnect;
267
268			system "mv /etc/passwd passwd.orig" if (! $debug);
269			system "cp passwd.new /etc/passwd" if (! $debug);
270			system "chmod 644 /etc/passwd" if (! $debug);
271			system "/usr/sbin/mkpasswd /etc/passwd" if (! $debug);
272			system "mv /etc/aliases aliases.orig" if (! $debug);
273			system "cp aliases.new /etc/aliases" if (! $debug);
274			system "chmod 644 /etc/aliases" if (! $debug);
275			system "/usr/sbin/newaliases" if (! $debug);
276			#system "/tcb/bin/edauth -s < $0.auth" if (! $debug);
277
278			foreach my $alias (@mail_to) {
279			system "/usr/lib/sendmail $alias < mail.txt" if (! $debug);
280			}