Class: Nexpose::UserConfig

Inherits:

Object

• Object
• Nexpose::UserConfig

Includes:

Sanitize

Defined in:

lib/nexpose/user.rb

Instance Attribute Summary

• #all_groups ⇒ Object

  Boolean values.

• #all_sites ⇒ Object

  Boolean values.

• #authsrcid ⇒ Object

  Will default to XML (1) for global-admin, Data Source (2) otherwise, but caller can override (e.g., using LDAP authenticator).

• #email ⇒ Object

  Optional fields.

• #enabled ⇒ Object

  1 to enable this user, 0 to disable.

• #full_name ⇒ Object

  Returns the value of attribute full_name.

• #groups ⇒ Object

  Optional fields.

• #id ⇒ Object readonly

  user id, set to -1 to create a new user.

• #name ⇒ Object readonly

  Required fields.

• #password ⇒ Object

  Optional fields.

• #role_name ⇒ Object

  valid roles: global-admin|security-manager|site-admin|system-admin|user|custom.

• #sites ⇒ Object

  Optional fields.

Class Method Summary

• .delete(connection, user_id) ⇒ Object

  Delete a user account.

• .load(connection, user_id) ⇒ Object

  Issue a UserConfigRequest to load an existing UserConfig from Nexpose.

Instance Method Summary

• #delete(connection) ⇒ Object

  Delete the user account associated with this object.

• #initialize(name, full_name, password, role_name = 'user', id = -1,, enabled = 1, email = nil, all_sites = false, all_groups = false) ⇒ UserConfig constructor

  A new instance of UserConfig.

• #save(connection) ⇒ Object

  Save a user configuration.

• #to_s ⇒ Object
• #to_xml ⇒ Object

Methods included from Sanitize

#replace_entities

Constructor Details

#initialize(name, full_name, password, role_name = 'user', id = -1,, enabled = 1, email = nil, all_sites = false, all_groups = false) ⇒ UserConfig

Returns a new instance of UserConfig.

# File 'lib/nexpose/user.rb', line 91

def initialize(name, full_name, password, role_name = 'user', id = -1, enabled = 1, email = nil, all_sites = false, all_groups = false)
  @name = name
  @password = password
  @role_name = role_name
  @authsrcid = ('global-admin'.eql? @role_name) ? '1' : '2'
  @id = id
  @enabled = enabled
  @full_name = full_name
  @email = email
  @all_sites = all_sites || role_name == 'global-admin'
  @all_groups = all_groups || role_name == 'global-admin'
  @sites = []
  @groups = []
end

Instance Attribute Details

#all_groups ⇒ Object

Boolean values

# File 'lib/nexpose/user.rb', line 89

def all_groups
  @all_groups
end

#all_sites ⇒ Object

Boolean values

# File 'lib/nexpose/user.rb', line 89

def all_sites
  @all_sites
end

#authsrcid ⇒ Object

Will default to XML (1) for global-admin, Data Source (2) otherwise, but caller can override (e.g., using LDAP authenticator).

# File 'lib/nexpose/user.rb', line 83

def authsrcid
  @authsrcid
end

#email ⇒ Object

Optional fields

# File 'lib/nexpose/user.rb', line 85

def email
  @email
end

#enabled ⇒ Object

1 to enable this user, 0 to disable

# File 'lib/nexpose/user.rb', line 87

def enabled
  @enabled
end

#full_name ⇒ Object

Returns the value of attribute full_name.

# File 'lib/nexpose/user.rb', line 80

def full_name
  @full_name
end

#groups ⇒ Object

Optional fields

# File 'lib/nexpose/user.rb', line 85

def groups
  @groups
end

#id ⇒ Object (readonly)

user id, set to -1 to create a new user

# File 'lib/nexpose/user.rb', line 75

def id
  @id
end

#name ⇒ Object (readonly)

Required fields

# File 'lib/nexpose/user.rb', line 79

def name
  @name
end

#password ⇒ Object

Optional fields

# File 'lib/nexpose/user.rb', line 85

def password
  @password
end

#role_name ⇒ Object

valid roles: global-admin|security-manager|site-admin|system-admin|user|custom

# File 'lib/nexpose/user.rb', line 77

def role_name
  @role_name
end

#sites ⇒ Object

Optional fields

# File 'lib/nexpose/user.rb', line 85

def sites
  @sites
end

Class Method Details

.delete(connection, user_id) ⇒ Object

Delete a user account.

# File 'lib/nexpose/user.rb', line 181

def self.delete(connection, user_id)
  xml = '<UserDeleteRequest session-id="' + connection.session_id + '"'
  xml << %Q{ id="#{user_id}"}
  xml << ' />'
  r = connection.execute(xml, '1.1')
  if r.success
    r.res.elements.each('UserConfigResponse/UserConfig') do |config|
      '1'.eql? config.attributes['id']
    end
  end
end

.load(connection, user_id) ⇒ Object

Issue a UserConfigRequest to load an existing UserConfig from Nexpose.

# File 'lib/nexpose/user.rb', line 155

def self.load(connection, user_id)
  xml = '<UserConfigRequest session-id="' + connection.session_id + '"'
  xml << %Q{ id="#{user_id}"}
  xml << ' />'
  r = connection.execute(xml, '1.1')
  if r.success
    r.res.elements.each('UserConfigResponse/UserConfig') do |config|
      id = config.attributes['id']
      role_name = config.attributes['role-name']
      #authsrcid = config.attributes['authsrcid']
      name = config.attributes['name']
      fullname = config.attributes['fullname']

      email = config.attributes['email']
      password = config.attributes['password']
      enabled = config.attributes['enabled'].to_i
      all_sites = config.attributes['allSites'] == 'true' ? true : false
      all_groups = config.attributes['allGroups'] == 'true' ? true : false
      # Not trying to load sites and groups.
      # Looks like API currently doesn't return that info to load.
      return UserConfig.new(name, fullname, password, role_name, id, enabled, email, all_sites, all_groups)
    end
  end
end

Instance Method Details

#delete(connection) ⇒ Object

Delete the user account associated with this object.

# File 'lib/nexpose/user.rb', line 194

def delete(connection)
  UserConfig.delete(connection, @id)
end

#save(connection) ⇒ Object

Save a user configuration. Returns the (new) user ID if successful.

# File 'lib/nexpose/user.rb', line 139

def save(connection)
  xml = '<UserSaveRequest session-id="' + connection.session_id + '">'
  xml << to_xml
  xml << '</UserSaveRequest>'
  r = connection.execute(xml, '1.1')
  if r.success
    r.res.elements.each('UserSaveResponse') do |attr|
      @id = attr.attributes['id'].to_i
    end
    @id
  else
    -1
  end
end

#to_s ⇒ Object

# File 'lib/nexpose/user.rb', line 106

def to_s
  out = "#{@name} (#{@full_name}) [ID: #{@id}, Role: #{@role_name}]"
  out << ' Disabled' unless @enabled
  out << ' All-Sites' if @all_sites
  out << ' All-Groups' if @all_groups
  out << " e-mail: #{@email}" unless @email.nil? || @email.empty?
  out
end

#to_xml ⇒ Object

# File 'lib/nexpose/user.rb', line 115

def to_xml
  xml = '<UserConfig'
  xml << %Q{ id="#{@id}"}
  xml << %Q{ authsrcid="#{@authsrcid}"}
  xml << %Q{ name="#{replace_entities(@name)}"}
  xml << %Q{ fullname="#{replace_entities(@full_name)}"}
  xml << %Q{ role-name="#{@role_name}"}
  xml << %Q{ password="#{replace_entities(@password)}"} if @password
  xml << %Q{ email="#{@email}"} if @email
  xml << %Q{ enabled="#{@enabled}"}
  # These two fields are keying off role_name to work around a defect.
  xml << %Q{ allGroups="#{@all_groups || @role_name == 'global-admin'}"}
  xml << %Q{ allSites="#{@all_sites || @role_name == 'global-admin'}"}
  xml << '>'
  @sites.each do |site|
    xml << %Q{<site id="#{site}" />}
  end
  @groups.each do |group|
    xml << %Q{<group id="#{group}" />}
  end
  xml << '</UserConfig>'
end