Class: Chef::Provider::User

Inherits:

Chef::Provider

• Object
• Chef::Provider
• Chef::Provider::User

Includes:

Mixin::Command, Mixin::ShellOut

Defined in:

lib/chef/provider/user.rb,
lib/chef/provider/user/pw.rb,
lib/chef/provider/user/dscl.rb,
lib/chef/provider/user/solaris.rb,
lib/chef/provider/user/useradd.rb,
lib/chef/provider/user/windows.rb

Direct Known Subclasses

Dscl, Pw, Useradd, Windows

Defined Under Namespace

Classes: Dscl, Pw, Solaris, Useradd, Windows

Constant Summary

Constants included from Mixin::ShellOut

Mixin::ShellOut::DEPRECATED_OPTIONS

Instance Attribute Summary

• #locked ⇒ Object

  Returns the value of attribute locked.

• #user_exists ⇒ Object

  Returns the value of attribute user_exists.

Attributes inherited from Chef::Provider

#action, #current_resource, #new_resource, #run_context

Instance Method Summary

• #action_create ⇒ Object
• #action_lock ⇒ Object
• #action_manage ⇒ Object
• #action_modify ⇒ Object
• #action_remove ⇒ Object
• #action_unlock ⇒ Object
• #check_lock ⇒ Object
• #compare_user ⇒ Object

  Check to see if the user needs any changes.

• #convert_group_name ⇒ Object
• #define_resource_requirements ⇒ Object
• #initialize(new_resource, run_context) ⇒ User constructor

  A new instance of User.

• #load_current_resource ⇒ Object
• #lock_user ⇒ Object
• #manage_user ⇒ Object
• #remove_user ⇒ Object
• #unlock_user ⇒ Object
• #whyrun_supported? ⇒ Boolean

Methods included from Mixin::ShellOut

#run_command_compatible_options, #shell_out, #shell_out!

Methods included from Mixin::Command

#chdir_or_tmpdir, #handle_command_failures, #output_of_command, #run_command, #run_command_with_systems_locale

Methods included from Mixin::Command::Windows

#popen4

Methods included from Mixin::Command::Unix

#popen4

Methods inherited from Chef::Provider

#action_nothing, build_from_file, #cleanup_after_converge, #cookbook_name, #events, #node, #process_resource_requirements, #requirements, #resource_collection, #run_action, #set_updated_status, #whyrun_mode?

Methods included from Mixin::ConvertToClassName

#convert_to_class_name, #convert_to_snake_case, #filename_to_qualified_string, #snake_case_basename

Methods included from Mixin::EnforceOwnershipAndPermissions

#access_controls, #enforce_ownership_and_permissions

Methods included from Mixin::RecipeDefinitionDSLCore

#method_missing

Methods included from Mixin::Language

#data_bag, #data_bag_item, #platform?, #platform_family?, #search, #value_for_platform, #value_for_platform_family

Constructor Details

#initialize(new_resource, run_context) ⇒ User

# File 'lib/chef/provider/user.rb', line 32

def initialize(new_resource, run_context)
  super
  @user_exists = true
  @locked = nil
  @shadow_lib_ok = true
  @group_name_resolved = true
end

Dynamic Method Handling

This class handles dynamic methods through the method_missing method in the class Chef::Mixin::RecipeDefinitionDSLCore

Instance Attribute Details

#locked ⇒ Object

Returns the value of attribute locked.

# File 'lib/chef/provider/user.rb', line 30

def locked
  @locked
end

#user_exists ⇒ Object

Returns the value of attribute user_exists.

# File 'lib/chef/provider/user.rb', line 30

def user_exists
  @user_exists
end

Instance Method Details

#action_create ⇒ Object

# File 'lib/chef/provider/user.rb', line 121

def action_create

  if !@user_exists
    converge_by("create user #{@new_resource}") do
      create_user
      Chef::Log.info("#{@new_resource} created")
    end
  elsif compare_user
    converge_by("alter user #{@new_resource}") do
      manage_user
      Chef::Log.info("#{@new_resource} altered")
    end
  end
end

#action_lock ⇒ Object

# File 'lib/chef/provider/user.rb', line 171

def action_lock
  if check_lock() == false
    converge_by("lock the user #{@new_resource}") do
      lock_user
      Chef::Log.info("#{@new_resource} locked")
    end
   else
    Chef::Log.debug("#{@new_resource} already locked - nothing to do")
  end
end

#action_manage ⇒ Object

# File 'lib/chef/provider/user.rb', line 149

def action_manage
  if @user_exists && compare_user
    converge_by("manage user #{@new_resource}") do
      manage_user
      Chef::Log.info("#{@new_resource} managed")
    end
  end
end

#action_modify ⇒ Object

# File 'lib/chef/provider/user.rb', line 162

def action_modify
  if compare_user
    converge_by("modify user #{@new_resource}") do
      manage_user
      Chef::Log.info("#{@new_resource} modified")
    end
  end
end

#action_remove ⇒ Object

# File 'lib/chef/provider/user.rb', line 136

def action_remove
  if @user_exists
    converge_by("remove user #{@new_resource}") do
      remove_user
      Chef::Log.info("#{@new_resource} removed")
    end
  end
end

#action_unlock ⇒ Object

# File 'lib/chef/provider/user.rb', line 190

def action_unlock
  if check_lock() == true
    converge_by("unlock user #{@new_resource}") do
      unlock_user
      Chef::Log.info("#{@new_resource} unlocked")
    end
  else
    Chef::Log.debug("#{@new_resource} already unlocked - nothing to do")
  end
end

#check_lock ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/chef/provider/user.rb', line 182

def check_lock
  raise NotImplementedError
end

#compare_user ⇒ Object

Check to see if the user needs any changes

Returns

<true>

If a change is required

<false>

If the users are identical

# File 'lib/chef/provider/user.rb', line 115

def compare_user
  [ :uid, :gid, :comment, :home, :shell, :password ].any? do |user_attrib|
    !@new_resource.send(user_attrib).nil? && @new_resource.send(user_attrib) != @current_resource.send(user_attrib)
  end
end

#convert_group_name ⇒ Object

# File 'lib/chef/provider/user.rb', line 40

def convert_group_name
  if @new_resource.gid.is_a? String
    @new_resource.gid(Etc.getgrnam(@new_resource.gid).gid)
  end
rescue ArgumentError => e
  @group_name_resolved = false
end

#define_resource_requirements ⇒ Object

# File 'lib/chef/provider/user.rb', line 91

def define_resource_requirements
  requirements.assert(:all_actions) do |a|
    a.assertion { @group_name_resolved } 
    a.failure_message Chef::Exceptions::User, "Couldn't lookup integer GID for group name #{@new_resource.gid}"
    a.whyrun "group name #{@new_resource.gid} does not exist.  This will cause group assignment to fail.  Assuming this group will have been created previously."
  end
  requirements.assert(:all_actions) do |a|
    a.assertion { @shadow_lib_ok } 
    a.failure_message Chef::Exceptions::MissingLibrary, "You must have ruby-shadow installed for password support!"
    a.whyrun "ruby-shadow is not installed. Attempts to set user password will cause failure.  Assuming that this gem will have been previously installed." + 
             "Note that user update converge may report false-positive on the basis of mismatched password. "
  end
  requirements.assert(:modify, :lock, :unlock) do |a|
    a.assertion { @user_exists }
    a.failure_message(Chef::Exceptions::User, "Cannot modify user #{@new_resource} - does not exist!")
    a.whyrun("Assuming user #{@new_resource} would have been created")
  end
end

#load_current_resource ⇒ Object

# File 'lib/chef/provider/user.rb', line 52

def load_current_resource
  @current_resource = Chef::Resource::User.new(@new_resource.name)
  @current_resource.username(@new_resource.username)

  begin
    user_info = Etc.getpwnam(@new_resource.username)
  rescue ArgumentError => e
    @user_exists = false
    Chef::Log.debug("#{@new_resource} user does not exist")
    user_info = nil
  end

  if user_info
    @current_resource.uid(user_info.uid)
    @current_resource.gid(user_info.gid)
    @current_resource.comment(user_info.gecos)
    @current_resource.home(user_info.dir)
    @current_resource.shell(user_info.shell)
    @current_resource.password(user_info.passwd)

    if @new_resource.password && @current_resource.password == 'x'
      begin
        require 'shadow'
      rescue LoadError
        @shadow_lib_ok = false
      else
        shadow_info = Shadow::Passwd.getspnam(@new_resource.username)
        @current_resource.password(shadow_info.sp_pwdp)
      end
    end

    if @new_resource.gid
      convert_group_name
    end
  end

  @current_resource
end

#lock_user ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/chef/provider/user.rb', line 186

def lock_user
  raise NotImplementedError
end

#manage_user ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/chef/provider/user.rb', line 158

def manage_user
  raise NotImplementedError
end

#remove_user ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/chef/provider/user.rb', line 145

def remove_user
  raise NotImplementedError
end

#unlock_user ⇒ Object

Raises:

• (NotImplementedError)

# File 'lib/chef/provider/user.rb', line 201

def unlock_user
  raise NotImplementedError
end

#whyrun_supported? ⇒ Boolean

# File 'lib/chef/provider/user.rb', line 48

def whyrun_supported?
  true
end