from ipsilon.login.common import LoginMgrsInstall
from ipsilon.providers.common import ProvidersInstall
+from ipsilon.helpers.common import EnvHelpersInstall
from ipsilon.util.data import Store
from ipsilon.tools import files
import argparse
import pwd
import shutil
import socket
+import subprocess
import sys
import time
confopts)
if not os.path.exists(args['httpd_conf']):
os.symlink(idp_conf, args['httpd_conf'])
- os.makedirs(os.path.join(args['data_dir'], 'sessions'), 0700)
+ sessdir = os.path.join(args['data_dir'], 'sessions')
+ if not os.path.exists(sessdir):
+ os.makedirs(sessdir, 0700)
data_conf = os.path.join(args['data_dir'], 'ipsilon.conf')
if not os.path.exists(data_conf):
os.symlink(ipsilon_conf, data_conf)
db = Store()
db.save_user_preferences(args['admin_user'], {'is_admin': 1})
+ logger.info('Configuring environment helpers')
+ for plugin_name in plugins['Environment Helpers']:
+ plugin = plugins['Environment Helpers'][plugin_name]
+ plugin.configure_server(args)
+
logger.info('Configuring login managers')
for plugin_name in args['lm_order']:
plugin = plugins['Login Managers'][plugin_name]
# Fixup permissions so only the ipsilon user can read these files
files.fix_user_dirs(instance_conf, opts['system_user'], mode=0500)
files.fix_user_dirs(args['data_dir'], opts['system_user'])
+ try:
+ subprocess.call(['/usr/sbin/restorecon', '-R', args['data_dir']])
+ except Exception: # pylint: disable=broad-except
+ pass
def uninstall(plugins, args):
logger.info('Uninstallation initiated')
def find_plugins():
plugins = {
+ 'Environment Helpers': EnvHelpersInstall().plugins,
'Login Managers': LoginMgrsInstall().plugins,
'Auth Providers': ProvidersInstall().plugins
}
help="User account used to run the server")
parser.add_argument('--admin-user', default='admin',
help="User account that is assigned admin privileges")
- parser.add_argument('--ipa', choices=['yes', 'no'], default='yes',
- help='Detect and use an IPA server for authentication')
parser.add_argument('--uninstall', action='store_true',
help="Uninstall the server and all data")