Id>ddlmZddlmZmZmZmZddlm Z ddl m Z m Z m Z ddlmZddlmZGddeZGd d eZGd d eZGd deZGddeZGddeZy)N)Command CommandErrorOption SuperCommand)AuthenticationPolicy)MIN_TGT_LIFETIMEMAX_TGT_LIFETIMEStrongNTLMPolicy) ModelError)RangeceZdZdZdZej ejdZe ddde dd e d d d d dgZ ddZ y)cmd_domain_auth_policy_listz+List authentication policies on the domain.%prog -H [options] sambaoptscredopts-H--URL&LDB URL for database or target server.URLldap_urlhelptypemetavardestz--jsonzOutput results in JSON format. output_format store_constjson)rractionconstNcx|j|||} tj|Dcic]}|j|j }}|dk(r|j|y|jD] }|jj|d"ycc}w#t $r}t |d}~wwxYw)Nr ) ldb_connectrquerycnas_dictr r print_jsonkeysoutfwrite) selfrrrrldbpolicypolicieses A/usr/lib/python3/dist-packages/samba/netcmd/domain/auth/policy.pyrunzcmd_domain_auth_policy_list.run1sxH= "&:&@&@&EG" 6>>#33GHG F " OOH %"--/ / 6(" . /G "q/ ! "s(B "BB B B9) B44B9NNNN __name__ __module__ __qualname____doc__synopsisoptions SambaOptionsCredentialsOptionstakes_optiongroupsrstr takes_optionsr2r1rr sg5)H)).. tW#KZ 9x>#M IM;?/rArceZdZdZdZej ejdZe ddde dd e d d d d e gZ ddZ y)cmd_domain_auth_policy_viewz,View an authentication policy on the domain.rrrrrrrr--namez1Name of authentication policy to view (required).namestorerrr rNc |s td|j|||} tj||}|td|d|j |j y#t$r}t|d}~wwxYw)NArgument --name is required.r&Authentication policy not found.)rr$rgetr r(r')r,rrrrEr-r.r0s r1r2zcmd_domain_auth_policy_view.runWs=> >xH= ")--cd;F >!7v[IJ J () "q/ ! "sA** B3 A>>Br3r4r@rAr1rCrCEs^6)H)).. tW#KZ 9xG7 6M*rArCceZdZdZdZej ejdZe ddde dd e d d d d e e dddd e e dddde dddde dddde dddde d d!e jd"d#d$d e jd%&e d'd(d)ed eee*g+e d,d-d.dd/0e d1d2d3ed eee*g+e d4d5d6dd/0e d7d8d9ed eee*g+g Z d|s td|r |r td|r | r td|j|||} tj||}|td|dt||t | j | | || |}| | |_n| |_ |j||r|j||jjd|d y#t$r}t|d}~wwxYw#t$r}t|d}~wwxYw) NrI2--protect and --unprotect cannot be used together..--audit and --enforce cannot be used together.rJrKz already exists.)r&rSrertrlr{rxr~zCreated authentication policy: r#) rr$rrMr r upperenforcedsaverVr*r+r,rrrrErSrVr[r^rarerlrtrxr{r~r-r.r0s r1r2z!cmd_domain_auth_policy_create.runs> => > yST T WOP PxH= ")--cd;F  !7v=MNO O&#/0B0H0H0JK!5/$;!5"7    %FO"'iFO " KK s# 9$rBCI "q/ ! "@ "q/ ! "s0C'#$D' D0 C;;D D DDNNNNNNNNNNNNNNNr5r6r7r8r9r:r;r<r=rr>r choices_str get_choicesintr rr r?r2r@rAr1rOrOks8)H)).. tW#KZ 9xI7 6E!' = {Kl 4 }M  6 y7L 2 {4l 4 %*+G+;+G+G+I*J"M(x3'335!  # $H'c' %5;KLM O '9*<   'K*W %5;KLM O *9-l   (L+#g %5;KLM OW/MbFJBFEI<@@D 5DrArOceZdZdZdZej ejdZe ddde dd e d d d d e e dddd e e dddde dddde dddde dddde d d!e jd"d#d$d e j%e d&d'd(ed eee)g*e d+d,d-dd./e d0d1d2ed eee)g*e d3d4d5dd./e d6d7d8ed eee)g*g Z d;d:Zy9)<cmd_domain_auth_policy_modifyz-Modify authentication policies on the domain.rrrrrrrrrDrPrErFrGrQrRrSrTrUrVrWrXrYrZr[r\r]r^r_r`rarbrcrdrerf)rrrr rhrjrkrlrmrprrrsrtFrurvrwrxryrzr{r|r}r~Nc|s td|r |r td|r | r td|j|||} tj||}|td|d| rd|_n |rd|_|||_| t| j|_ | | |_ | | |_ |||_ |j||r|j|n|r|j||j j#d |d y#t$r}t|d}~wwxYw#t$r}t|d}~wwxYw) NrIrrrJrKrLTFzUpdated authentication policy: r#)rr$rrMr rrSr rrerlrxr~rrVr[r*r+rs r1r2z!cmd_domain_auth_policy_modify.runsz => > yST T WOP PxH= ")--cd;F >!7v[IJ J "FO #FO  "!,F   ) !3!9!9!;<  %  ('8F $ +*>F ' ! ,+@F ( " KK s#  % 9$rBCg "q/ ! "^ "q/ ! "s0D>8D2 D/ D**D/2 E ; EE rrr@rAr1rrs7)H)).. tW#KZ 9xI7 6E!' = {Kl 4 }M  6 y7L 2 {4l 4 %*+G+;+G+G+I*J"M(x3'335 7 $H'c' %5;KLM O '9*<   'K*W %5;KLM O *9-l   (L+#g %5;KLM OU.M`FJBFEI<@@D DDrArceZdZdZdZej ejdZe ddde dd e d d d d e e ddddgZ ddZ y)cmd_domain_auth_policy_deletez-Delete authentication policies on the domain.rrrrrrrrrDrPrErFrGz--forcez-Force delete protected authentication policy.forcerWrXNc|s td|j|||} tj||}|td|d |r|j ||j ||jjd|dy#t$r}t|d}~wwxYw#t$r }|st|dt|d}~wwxYw)NrIrJrKrLz9 Try --force to delete protected authentication policies.zDeleted authentication policy: r#) rr$rrMr r[deleter*r+) r,rrrrErr-r.r0s r1r2z!cmd_domain_auth_policy_delete.runrs=> >xH= ")--cd;F >!7v[IJ J &  % MM#  9$rBC+ "q/ ! " &"cSTVV#1o%  &s/B $B+ B( B##B(+ C4CC)NNNNNr4r@rAr1rr_s{7)H)).. tW#KZ 9xI7 6yNL 2 MFJDrArcReZdZdZeeeeedZ y)cmd_domain_auth_policyz-Manage authentication policies on the domain.)listviewcreatemodifyrN) r5r6r7r8rrCrOrr subcommandsr@rAr1rrs,7,-+-/1/1/1 KrAr) samba.getoptgetoptr: samba.netcmdrrrrsamba.netcmd.domain.modelsr&samba.netcmd.domain.models.auth_policyrr r %samba.netcmd.domain.models.exceptionsr samba.netcmd.validatorsr rrCrOrrrr@rAr1rsz.DD;''<)"/'"/J#*'#*LpDGpDf~DG~DB2DG2Dj \ rA