9.1.4.1.2. cobbler.modules.authorization package

9.1.4.1.2.1. Submodules

9.1.4.1.2.2. cobbler.modules.authorization.allowall module

Authorization module that allows everything, which is the default for new Cobbler installs.

Copyright 2007-2009, Red Hat, Inc and Others Michael DeHaan <michael.dehaan AT gmail>

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA

cobbler.modules.authorization.allowall.authorize(api_handle, user, resource, arg1=None, arg2=None) bool[source]

Validate a user against a resource. NOTE: acls are not enforced as there is no group support in this module

Parameters
  • api_handle – This parameter is not used currently.

  • user – This parameter is not used currently.

  • resource – This parameter is not used currently.

  • arg1 – This parameter is not used currently.

  • arg2 – This parameter is not used currently.

Returns

Always True

cobbler.modules.authorization.allowall.register() str[source]

The mandatory Cobbler module registration hook.

Returns

Always “authz”

9.1.4.1.2.3. cobbler.modules.authorization.configfile module

Authorization module that allow users listed in /etc/cobbler/users.conf to be permitted to access resources. For instance, when using authz_ldap, you want to use authn_configfile, not authz_allowall, which will most likely NOT do what you want.

This software may be freely redistributed under the terms of the GNU general public license.

You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.

cobbler.modules.authorization.configfile.authorize(api_handle, user: str, resource: str, arg1=None, arg2=None) int[source]

Validate a user against a resource. All users in the file are permitted by this module.

Parameters
  • api_handle – This parameter is not used currently.

  • user – The user to authorize.

  • resource – This parameter is not used currently.

  • arg1 – This parameter is not used currently.

  • arg2 – This parameter is not used currently.

Returns

“0” if no authorized, “1” if authorized.

cobbler.modules.authorization.configfile.register() str[source]

The mandatory Cobbler module registration hook.

Returns

Always “authz”.

9.1.4.1.2.4. cobbler.modules.authorization.ownership module

Authorization module that allow users listed in /etc/cobbler/users.conf to be permitted to access resources, with the further restriction that Cobbler objects can be edited to only allow certain users/groups to access those specific objects.

Copyright 2008-2009, Red Hat, Inc and Others Michael DeHaan <michael.dehaan AT gmail>

This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA

cobbler.modules.authorization.ownership.authorize(api_handle, user: str, resource: str, arg1=None, arg2=None) Union[bool, int][source]

Validate a user against a resource. All users in the file are permitted by this module.

Parameters
  • api_handle – The api to resolve required information.

  • user – The user to authorize to the resource.

  • resource – The resource the user is asking for access. This is something abstract like a remove operation.

  • arg1 – This is normally the name of the specific object in question.

  • arg2 – This parameter is pointless currently. Reserved for future code.

Returns

True or 1 if okay, otherwise False.

cobbler.modules.authorization.ownership.register() str[source]

The mandatory Cobbler module registration hook.

Returns

Always “authz”

9.1.4.1.2.5. Module contents

This module represents all Cobbler methods of authorization. All present modules may be used through the configuration file modules.conf normally found at /etc/cobbler/.