0337d704 |
1 | #!/usr/bin/env python |
2 | #*************************************************************************** |
3 | #* Copyright (C) 2004 polytechnique.org * |
4 | #* http://opensource.polytechnique.org/ * |
5 | #* * |
6 | #* This program is free software; you can redistribute it and/or modify * |
7 | #* it under the terms of the GNU General Public License as published by * |
8 | #* the Free Software Foundation; either version 2 of the License, or * |
9 | #* (at your option) any later version. * |
10 | #* * |
11 | #* This program is distributed in the hope that it will be useful, * |
12 | #* but WITHOUT ANY WARRANTY; without even the implied warranty of * |
13 | #* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * |
14 | #* GNU General Public License for more details. * |
15 | #* * |
16 | #* You should have received a copy of the GNU General Public License * |
17 | #* along with this program; if not, write to the Free Software * |
18 | #* Foundation, Inc., * |
19 | #* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * |
20 | #*************************************************************************** |
21 | |
22 | import base64, MySQLdb, os, getopt, sys, sha, signal, re, shutil, ConfigParser |
23 | import MySQLdb.converters |
24 | import SocketServer |
25 | |
26 | sys.path.append('/usr/lib/mailman/bin') |
27 | |
28 | from pwd import getpwnam |
29 | from grp import getgrnam |
30 | |
31 | from SimpleXMLRPCServer import SimpleXMLRPCServer |
32 | from SimpleXMLRPCServer import SimpleXMLRPCRequestHandler |
33 | |
34 | import paths |
35 | from Mailman import MailList |
36 | from Mailman import Utils |
37 | from Mailman import Message |
38 | from Mailman import Errors |
39 | from Mailman import mm_cfg |
40 | from Mailman import i18n |
41 | from Mailman.UserDesc import UserDesc |
42 | from Mailman.ListAdmin import readMessage |
43 | from email.Iterators import typed_subpart_iterator |
44 | from threading import Lock |
45 | |
46 | class AuthFailed(Exception): pass |
47 | |
48 | ################################################################################ |
49 | # |
50 | # CONFIG |
51 | # |
52 | #------------------------------------------------ |
53 | |
54 | config = ConfigParser.ConfigParser() |
78dd3eb2 |
55 | config.read(os.path.dirname(__file__)+'/../configs/platal.ini') |
0337d704 |
56 | config.read(os.path.dirname(__file__)+'/../configs/platal.conf') |
57 | |
ae6c293b |
58 | def get_config(sec, val, default=None): |
0337d704 |
59 | try: |
60 | return config.get(sec, val)[1:-1] |
61 | except ConfigParser.NoOptionError, e: |
62 | if default is None: |
63 | print e |
64 | sys.exit(1) |
65 | else: |
66 | return default |
67 | |
0337d704 |
68 | MYSQL_USER = get_config('Core', 'dbuser') |
69 | MYSQL_PASS = get_config('Core', 'dbpwd') |
70 | |
71 | PLATAL_DOMAIN = get_config('Mail', 'domain') |
72 | PLATAL_DOMAIN2 = get_config('Mail', 'domain2', '') |
73 | |
0337d704 |
74 | VHOST_SEP = get_config('Lists', 'vhost_sep', '_') |
75 | ON_CREATE_CMD = get_config('Lists', 'on_create', '') |
76 | |
77 | ################################################################################ |
78 | # |
79 | # CLASSES |
80 | # |
81 | #------------------------------------------------ |
82 | # Manage Basic authentication |
83 | # |
84 | |
85 | class BasicAuthXMLRPCRequestHandler(SimpleXMLRPCRequestHandler): |
86 | |
87 | """XMLRPC Request Handler |
88 | This request handler is used to provide BASIC HTTP user authentication. |
89 | It first overloads the do_POST() function, authenticates the user, then |
90 | calls the super.do_POST(). |
91 | |
92 | Moreover, we override _dispatch, so that we call functions with as first |
93 | argument a UserDesc taken from the database, containing name, email and perms |
94 | """ |
95 | |
ae6c293b |
96 | def _dispatch(self, method, params): |
0337d704 |
97 | # TODO: subclass in SimpleXMLRPCDispatcher and not here. |
98 | new_params = list(params) |
ae6c293b |
99 | new_params.insert(0, self.data[2]) |
100 | new_params.insert(0, self.data[1]) |
101 | new_params.insert(0, self.data[0]) |
102 | return self.server._dispatch(method, new_params) |
0337d704 |
103 | |
104 | def do_POST(self): |
105 | try: |
106 | _, auth = self.headers["authorization"].split() |
107 | uid, md5 = base64.decodestring(auth).strip().split(':') |
108 | vhost = self.path.split('/')[1].lower() |
ae6c293b |
109 | self.data = self.getUser(uid, md5, vhost) |
0337d704 |
110 | if self.data is None: |
111 | raise AuthFailed |
112 | # Call super.do_POST() to do the actual work |
113 | SimpleXMLRPCRequestHandler.do_POST(self) |
114 | except: |
115 | self.send_response(401) |
116 | self.end_headers() |
117 | |
118 | def getUser(self, uid, md5, vhost): |
ae6c293b |
119 | res = mysql_fetchone ("""SELECT CONCAT(u.prenom, ' ', u.nom), a.alias, u.perms |
0337d704 |
120 | FROM auth_user_md5 AS u |
121 | INNER JOIN aliases AS a ON ( a.id=u.user_id AND a.type='a_vie' ) |
ae6c293b |
122 | WHERE u.user_id = '%s' AND u.password = '%s' AND u.perms IN ('admin', 'user') |
0337d704 |
123 | LIMIT 1""" %( uid, md5 ) ) |
124 | if res: |
ae6c293b |
125 | name, forlife, perms = res |
0337d704 |
126 | if vhost != PLATAL_DOMAIN: |
127 | res = mysql_fetchone ("""SELECT uid |
128 | FROM groupex.membres AS m |
129 | INNER JOIN groupex.asso AS a ON (m.asso_id = a.id) |
130 | WHERE perms='admin' AND uid='%s' AND mail_domain='%s'""" %( uid , vhost ) ) |
131 | if res: perms= 'admin' |
132 | userdesc = UserDesc(forlife+'@'+PLATAL_DOMAIN, name, None, 0) |
ae6c293b |
133 | return (userdesc, perms, vhost) |
0337d704 |
134 | else: |
135 | return None |
ae6c293b |
136 | |
0337d704 |
137 | ################################################################################ |
138 | # |
139 | # XML RPC STUFF |
140 | # |
141 | #------------------------------------------------------------------------------- |
142 | # helpers |
143 | # |
144 | |
145 | def connectDB(): |
146 | db = MySQLdb.connect( |
147 | db='x4dat', |
148 | user=MYSQL_USER, |
149 | passwd=MYSQL_PASS, |
6bd94db9 |
150 | unix_socket='/var/run/mysqld/mysqld.sock') |
0337d704 |
151 | db.ping() |
152 | return db.cursor() |
153 | |
154 | def mysql_fetchone(query): |
155 | ret = None |
156 | try: |
157 | lock.acquire() |
158 | mysql.execute(query) |
159 | if int(mysql.rowcount) > 0: |
160 | ret = mysql.fetchone() |
161 | finally: |
162 | lock.release() |
163 | return ret |
164 | |
ae6c293b |
165 | def is_admin_on(userdesc, perms, mlist): |
0337d704 |
166 | return ( perms == 'admin' ) or ( userdesc.address in mlist.owner ) |
167 | |
168 | |
ae6c293b |
169 | def quote(s, is_header=False): |
0337d704 |
170 | if is_header: |
ae6c293b |
171 | h = Utils.oneline(s, 'iso-8859-1') |
0337d704 |
172 | else: |
173 | h = s |
ea626742 |
174 | h = str('').join(re.split('[\x00-\x08\x0B-\x1f]+', h)) |
c8529706 |
175 | return Utils.uquote(h.replace('&', '&').replace('>', '>').replace('<', '<')) |
0337d704 |
176 | |
177 | def to_forlife(email): |
178 | try: |
ae6c293b |
179 | mbox, fqdn = email.split('@') |
0337d704 |
180 | except: |
181 | mbox = email |
182 | fqdn = PLATAL_DOMAIN |
183 | if ( fqdn == PLATAL_DOMAIN ) or ( fqdn == PLATAL_DOMAIN2 ): |
ae6c293b |
184 | res = mysql_fetchone("""SELECT CONCAT(f.alias, '@%s'), CONCAT(u.prenom, ' ', u.nom) |
0337d704 |
185 | FROM auth_user_md5 AS u |
186 | INNER JOIN aliases AS f ON (f.id=u.user_id AND f.type='a_vie') |
187 | INNER JOIN aliases AS a ON (a.id=u.user_id AND a.alias='%s' AND a.type!='homonyme') |
ae6c293b |
188 | WHERE u.perms IN ('admin', 'user') |
0337d704 |
189 | LIMIT 1""" %( PLATAL_DOMAIN, mbox ) ) |
190 | if res: |
191 | return res |
192 | else: |
ae6c293b |
193 | return (None, None) |
cf5e8ef1 |
194 | return (email.lower(), mbox) |
0337d704 |
195 | |
196 | ## |
197 | # see /usr/lib/mailman/bin/rmlist |
198 | ## |
199 | def remove_it(listname, filename): |
200 | if os.path.islink(filename) or os.path.isfile(filename): |
201 | os.unlink(filename) |
202 | elif os.path.isdir(filename): |
203 | shutil.rmtree(filename) |
ae6c293b |
204 | |
0337d704 |
205 | #------------------------------------------------------------------------------- |
206 | # helpers on lists |
207 | # |
208 | |
ae6c293b |
209 | def get_list_info(userdesc, perms, mlist, front_page=0): |
0337d704 |
210 | members = mlist.getRegularMemberKeys() |
211 | is_member = userdesc.address in members |
ae6c293b |
212 | is_owner = userdesc.address in mlist.owner |
0337d704 |
213 | if mlist.advertised or is_member or is_owner or (not front_page and perms == 'admin'): |
214 | is_pending = False |
215 | if not is_member and (mlist.subscribe_policy > 1): |
216 | try: |
217 | mlist.Lock() |
218 | for id in mlist.GetSubscriptionIds(): |
219 | if userdesc.address == mlist.GetRecord(id)[1]: |
220 | is_pending = 1 |
221 | break |
222 | mlist.Unlock() |
223 | except: |
224 | mlist.Unlock() |
225 | return 0 |
226 | |
227 | host = mlist.internal_name().split(VHOST_SEP)[0].lower() |
228 | details = { |
229 | 'list' : mlist.real_name, |
230 | 'addr' : mlist.real_name.lower() + '@' + host, |
231 | 'host' : host, |
232 | 'desc' : quote(mlist.description), |
233 | 'info' : quote(mlist.info), |
234 | 'diff' : (mlist.default_member_moderation>0) + (mlist.generic_nonmember_action>0), |
235 | 'ins' : mlist.subscribe_policy > 1, |
ae6c293b |
236 | 'priv' : 1-mlist.advertised, |
0337d704 |
237 | 'sub' : 2*is_member + is_pending, |
238 | 'own' : is_owner, |
239 | 'nbsub': len(members) |
240 | } |
ae6c293b |
241 | return (details, members) |
0337d704 |
242 | return 0 |
243 | |
ae6c293b |
244 | def get_options(userdesc, perms, vhost, listname, opts): |
0337d704 |
245 | try: |
ae6c293b |
246 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
247 | except: |
248 | return 0 |
249 | try: |
250 | if not is_admin_on(userdesc, perms, mlist): |
251 | return 0 |
252 | options = { } |
ae6c293b |
253 | for (k, v) in mlist.__dict__.iteritems(): |
0337d704 |
254 | if k in opts: |
255 | if type(v) is str: |
256 | options[k] = quote(v) |
257 | else: options[k] = v |
ae6c293b |
258 | details = get_list_info(userdesc, perms, mlist)[0] |
259 | return (details, options) |
0337d704 |
260 | except: |
261 | return 0 |
262 | |
ae6c293b |
263 | def set_options(userdesc, perms, vhost, listname, opts, vals): |
0337d704 |
264 | try: |
ae6c293b |
265 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
266 | except: |
267 | return 0 |
268 | try: |
269 | if not is_admin_on(userdesc, perms, mlist): |
270 | return 0 |
271 | mlist.Lock() |
ae6c293b |
272 | for (k, v) in vals.iteritems(): |
0337d704 |
273 | if k not in opts: |
274 | continue |
275 | if k == 'default_member_moderation': |
276 | for member in mlist.getMembers(): |
277 | mlist.setMemberOption(member, mm_cfg.Moderate, int(v)) |
278 | t = type(mlist.__dict__[k]) |
279 | if t is bool: mlist.__dict__[k] = bool(v) |
280 | elif t is int: mlist.__dict__[k] = int(v) |
ae6c293b |
281 | elif t is str: mlist.__dict__[k] = Utils.uncanonstr(v, 'fr') |
0337d704 |
282 | else: mlist.__dict__[k] = v |
283 | mlist.Save() |
284 | mlist.Unlock() |
285 | return 1 |
286 | except: |
287 | mlist.Unlock() |
288 | return 0 |
289 | |
290 | #------------------------------------------------------------------------------- |
291 | # users procedures for [ index.php ] |
292 | # |
293 | |
ae6c293b |
294 | def get_lists(userdesc, perms, vhost, email=None): |
0337d704 |
295 | if email is None: |
296 | udesc = userdesc |
297 | else: |
cf5e8ef1 |
298 | udesc = UserDesc(email.lower(), email.lower(), None, 0) |
0337d704 |
299 | prefix = vhost.lower()+VHOST_SEP |
300 | names = Utils.list_names() |
301 | names.sort() |
302 | result = [] |
303 | for name in names: |
304 | if not name.startswith(prefix): |
305 | continue |
306 | try: |
ae6c293b |
307 | mlist = MailList.MailList(name, lock=0) |
0337d704 |
308 | except: |
309 | continue |
310 | try: |
ae6c293b |
311 | details = get_list_info(udesc, perms, mlist, (email is None and vhost == PLATAL_DOMAIN))[0] |
0337d704 |
312 | result.append(details) |
313 | except: |
314 | continue |
315 | return result |
316 | |
ae6c293b |
317 | def subscribe(userdesc, perms, vhost, listname): |
0337d704 |
318 | try: |
ae6c293b |
319 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
320 | except: |
321 | return 0 |
322 | try: |
323 | mlist.Lock() |
ae6c293b |
324 | if ( mlist.subscribe_policy in (0, 1) ) or userdesc.address in mlist.owner: |
0337d704 |
325 | mlist.ApprovedAddMember(userdesc) |
326 | result = 2 |
327 | else: |
328 | result = 1 |
329 | try: |
330 | mlist.AddMember(userdesc) |
331 | except Errors.MMNeedApproval: |
332 | pass |
333 | mlist.Save() |
334 | except: |
335 | result = 0 |
336 | mlist.Unlock() |
337 | return result |
338 | |
ae6c293b |
339 | def unsubscribe(userdesc, perms, vhost, listname): |
0337d704 |
340 | try: |
ae6c293b |
341 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
342 | except: |
343 | return 0 |
344 | try: |
345 | mlist.Lock() |
346 | mlist.ApprovedDeleteMember(userdesc.address) |
347 | mlist.Save() |
348 | mlist.Unlock() |
349 | return 1 |
350 | except: |
351 | mlist.Unlock() |
352 | return 0 |
353 | |
354 | #------------------------------------------------------------------------------- |
355 | # users procedures for [ index.php ] |
356 | # |
357 | |
79a9ca23 |
358 | def get_name(member): |
359 | try: |
360 | return quote(mlist.getMemberName(member)) |
361 | except: |
79a9ca23 |
362 | return '' |
363 | |
ae6c293b |
364 | def get_members(userdesc, perms, vhost, listname): |
0337d704 |
365 | try: |
ae6c293b |
366 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
367 | except: |
368 | return 0 |
369 | try: |
ae6c293b |
370 | details, members = get_list_info(userdesc, perms, mlist) |
0337d704 |
371 | members.sort() |
79a9ca23 |
372 | members = map(lambda member: (get_name(member), member), members) |
ae6c293b |
373 | return (details, members, mlist.owner) |
0337d704 |
374 | except: |
375 | return 0 |
376 | |
377 | #------------------------------------------------------------------------------- |
378 | # users procedures for [ trombi.php ] |
379 | # |
380 | |
ae6c293b |
381 | def get_members_limit(userdesc, perms, vhost, listname, page, nb_per_page): |
0337d704 |
382 | try: |
ae6c293b |
383 | members = get_members(userdesc, perms, vhost, listname.lower())[1] |
0337d704 |
384 | except: |
385 | return 0 |
386 | i = int(page) * int(nb_per_page) |
387 | return (len(members), members[i:i+int(nb_per_page)]) |
388 | |
ae6c293b |
389 | def get_owners(userdesc, perms, vhost, listname): |
0337d704 |
390 | try: |
ae6c293b |
391 | details, members, owners = get_members(userdesc, perms, vhost, listname.lower()) |
0337d704 |
392 | except: |
393 | return 0 |
ae6c293b |
394 | return (details, owners) |
0337d704 |
395 | |
396 | #------------------------------------------------------------------------------- |
397 | # owners procedures [ admin.php ] |
398 | # |
399 | |
c4d57bd8 |
400 | def replace_email(userdesc, perms, vhost, listname, from_email, to_email): |
401 | try: |
402 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
403 | except: |
404 | return 0 |
405 | try: |
406 | if not is_admin_on(userdesc, perms, mlist): |
407 | return 0 |
408 | |
409 | mlist.Lock() |
cf5e8ef1 |
410 | mlist.ApprovedChangeMemberAddress(from_email.lower(), to_email.lower(), 0) |
c4d57bd8 |
411 | mlist.Save() |
412 | mlist.Unlock() |
413 | return 1 |
414 | except: |
415 | return 0 |
416 | |
ae6c293b |
417 | def mass_subscribe(userdesc, perms, vhost, listname, users): |
0337d704 |
418 | try: |
ae6c293b |
419 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
420 | except: |
421 | return 0 |
422 | try: |
423 | if not is_admin_on(userdesc, perms, mlist): |
424 | return 0 |
ae6c293b |
425 | |
0337d704 |
426 | members = mlist.getRegularMemberKeys() |
427 | added = [] |
428 | mlist.Lock() |
429 | for user in users: |
430 | email, name = to_forlife(user) |
431 | if ( email is None ) or ( email in members ): |
432 | continue |
433 | userd = UserDesc(email, name, None, 0) |
434 | mlist.ApprovedAddMember(userd) |
435 | added.append( (quote(userd.fullname), userd.address) ) |
436 | mlist.Save() |
437 | except: |
438 | pass |
439 | mlist.Unlock() |
440 | return added |
441 | |
ae6c293b |
442 | def mass_unsubscribe(userdesc, perms, vhost, listname, users): |
0337d704 |
443 | try: |
ae6c293b |
444 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
445 | except: |
446 | return 0 |
447 | try: |
448 | if not is_admin_on(userdesc, perms, mlist): |
449 | return 0 |
ae6c293b |
450 | |
0337d704 |
451 | mlist.Lock() |
452 | map(lambda user: mlist.ApprovedDeleteMember(user), users) |
453 | mlist.Save() |
454 | except: |
455 | pass |
456 | mlist.Unlock() |
457 | return users |
458 | |
ae6c293b |
459 | def add_owner(userdesc, perms, vhost, listname, user): |
0337d704 |
460 | try: |
ae6c293b |
461 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
462 | except: |
463 | return 0 |
464 | try: |
465 | if not is_admin_on(userdesc, perms, mlist): |
466 | return 0 |
467 | email = to_forlife(user)[0] |
468 | if email is None: |
469 | return 0 |
470 | if email not in mlist.owner: |
471 | mlist.Lock() |
472 | mlist.owner.append(email) |
473 | mlist.Save() |
474 | except: |
475 | pass |
476 | mlist.Unlock() |
477 | return True |
478 | |
ae6c293b |
479 | def del_owner(userdesc, perms, vhost, listname, user): |
0337d704 |
480 | try: |
ae6c293b |
481 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
482 | except: |
483 | return 0 |
484 | try: |
485 | if not is_admin_on(userdesc, perms, mlist): |
486 | return 0 |
487 | if len(mlist.owner) < 2: |
488 | return 0 |
489 | mlist.Lock() |
490 | mlist.owner.remove(user) |
491 | mlist.Save() |
492 | except: |
493 | pass |
494 | mlist.Unlock() |
495 | return True |
496 | |
497 | #------------------------------------------------------------------------------- |
498 | # owners procedures [ admin.php ] |
499 | # |
500 | |
ae6c293b |
501 | def get_pending_ops(userdesc, perms, vhost, listname): |
0337d704 |
502 | try: |
ae6c293b |
503 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
504 | except: |
505 | return 0 |
506 | try: |
507 | if not is_admin_on(userdesc, perms, mlist): |
508 | return 0 |
ae6c293b |
509 | |
0337d704 |
510 | mlist.Lock() |
ae6c293b |
511 | |
0337d704 |
512 | subs = [] |
513 | seen = [] |
514 | dosave = False |
515 | for id in mlist.GetSubscriptionIds(): |
516 | time, addr, fullname, passwd, digest, lang = mlist.GetRecord(id) |
517 | if addr in seen: |
518 | mlist.HandleRequest(id, mm_cfg.DISCARD) |
519 | dosave = True |
520 | continue |
521 | seen.append(addr) |
522 | try: |
523 | login = re.match("^[^.]*\.[^.]*\.\d\d\d\d$", addr.split('@')[0]).group() |
524 | subs.append({'id': id, 'name': quote(fullname), 'addr': addr, 'login': login }) |
525 | except: |
526 | subs.append({'id': id, 'name': quote(fullname), 'addr': addr }) |
527 | |
528 | helds = [] |
529 | for id in mlist.GetHeldMessageIds(): |
530 | ptime, sender, subject, reason, filename, msgdata = mlist.GetRecord(id) |
531 | try: |
532 | size = os.path.getsize(os.path.join(mm_cfg.DATA_DIR, filename)) |
533 | except OSError, e: |
534 | if e.errno <> errno.ENOENT: raise |
535 | continue |
536 | helds.append({ |
537 | 'id' : id, |
538 | 'sender': quote(sender, True), |
539 | 'size' : size, |
540 | 'subj' : quote(subject, True), |
541 | 'stamp' : ptime |
542 | }) |
543 | if dosave: mlist.Save() |
544 | mlist.Unlock() |
545 | except: |
546 | mlist.Unlock() |
547 | return 0 |
ae6c293b |
548 | return (subs, helds) |
0337d704 |
549 | |
550 | |
ae6c293b |
551 | def handle_request(userdesc, perms, vhost, listname, id, value, comment): |
0337d704 |
552 | try: |
ae6c293b |
553 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
554 | except: |
555 | return 0 |
556 | try: |
557 | if not is_admin_on(userdesc, perms, mlist): |
558 | return 0 |
559 | mlist.Lock() |
ae6c293b |
560 | mlist.HandleRequest(int(id), int(value), comment) |
0337d704 |
561 | mlist.Save() |
562 | mlist.Unlock() |
563 | return 1 |
564 | except: |
565 | mlist.Unlock() |
566 | return 0 |
567 | |
568 | |
ae6c293b |
569 | def get_pending_mail(userdesc, perms, vhost, listname, id, raw=0): |
0337d704 |
570 | try: |
ae6c293b |
571 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
572 | except: |
573 | return 0 |
574 | try: |
575 | if not is_admin_on(userdesc, perms, mlist): |
576 | return 0 |
577 | mlist.Lock() |
578 | ptime, sender, subject, reason, filename, msgdata = mlist.GetRecord(int(id)) |
579 | fpath = os.path.join(mm_cfg.DATA_DIR, filename) |
580 | size = os.path.getsize(fpath) |
581 | msg = readMessage(fpath) |
582 | mlist.Unlock() |
ae6c293b |
583 | |
0337d704 |
584 | if raw: |
ea626742 |
585 | return quote(str(msg)) |
ae0508cb |
586 | results_plain = [] |
587 | results_html = [] |
ae6c293b |
588 | for part in typed_subpart_iterator(msg, 'text', 'plain'): |
0337d704 |
589 | c = part.get_payload() |
ae0508cb |
590 | if c is not None: results_plain.append (c) |
591 | results_plain = map(lambda x: quote(x), results_plain) |
592 | for part in typed_subpart_iterator(msg, 'text', 'html'): |
593 | c = part.get_payload() |
594 | if c is not None: results_html.append (c) |
595 | results_html = map(lambda x: quote(x), results_html) |
0337d704 |
596 | return {'id' : id, |
597 | 'sender': quote(sender, True), |
598 | 'size' : size, |
599 | 'subj' : quote(subject, True), |
600 | 'stamp' : ptime, |
ae0508cb |
601 | 'parts_plain' : results_plain, |
602 | 'parts_html': results_html } |
0337d704 |
603 | except: |
604 | mlist.Unlock() |
605 | return 0 |
606 | |
607 | #------------------------------------------------------------------------------- |
608 | # owner options [ options.php ] |
609 | # |
610 | |
611 | owner_opts = ['accept_these_nonmembers', 'admin_notify_mchanges', 'description', \ |
612 | 'default_member_moderation', 'generic_nonmember_action', 'info', \ |
613 | 'subject_prefix', 'goodbye_msg', 'send_goodbye_msg', 'subscribe_policy', \ |
614 | 'welcome_msg'] |
615 | |
ae6c293b |
616 | def get_owner_options(userdesc, perms, vhost, listname): |
617 | return get_options(userdesc, perms, vhost, listname.lower(), owner_opts) |
0337d704 |
618 | |
ae6c293b |
619 | def set_owner_options(userdesc, perms, vhost, listname, values): |
620 | return set_options(userdesc, perms, vhost, listname.lower(), owner_opts, values) |
0337d704 |
621 | |
ae6c293b |
622 | def add_to_wl(userdesc, perms, vhost, listname, addr): |
0337d704 |
623 | try: |
ae6c293b |
624 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
625 | except: |
626 | return 0 |
627 | try: |
628 | if not is_admin_on(userdesc, perms, mlist): |
629 | return 0 |
630 | mlist.Lock() |
631 | mlist.accept_these_nonmembers.append(addr) |
632 | mlist.Save() |
633 | mlist.Unlock() |
634 | return 1 |
635 | except: |
636 | mlist.Unlock() |
637 | return 0 |
638 | |
ae6c293b |
639 | def del_from_wl(userdesc, perms, vhost, listname, addr): |
0337d704 |
640 | try: |
ae6c293b |
641 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
642 | except: |
643 | return 0 |
644 | try: |
645 | if not is_admin_on(userdesc, perms, mlist): |
646 | return 0 |
647 | mlist.Lock() |
648 | mlist.accept_these_nonmembers.remove(addr) |
649 | mlist.Save() |
650 | mlist.Unlock() |
651 | return 1 |
652 | except: |
653 | mlist.Unlock() |
654 | return 0 |
655 | |
ae6c293b |
656 | def get_bogo_level(userdesc, perms, vhost, listname): |
0337d704 |
657 | try: |
ae6c293b |
658 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
659 | except: |
660 | return 0 |
661 | try: |
662 | if not is_admin_on(userdesc, perms, mlist): |
663 | return 0 |
664 | if mlist.header_filter_rules == []: |
665 | return 0 |
4988c5a9 |
666 | try: |
667 | action = mlist.header_filter_rules[1][1] |
0337d704 |
668 | return 2 |
4988c5a9 |
669 | except: |
670 | action = mlist.header_filter_rules[0][1] |
671 | if action == mm_cfg.HOLD: |
672 | return 1 |
673 | if action == mm_cfg.DISCARD: |
674 | return 3 |
0337d704 |
675 | except: |
676 | return 0 |
677 | |
ae6c293b |
678 | def set_bogo_level(userdesc, perms, vhost, listname, level): |
0337d704 |
679 | try: |
ae6c293b |
680 | mlist = MailList.MailList(vhost+VHOST_SEP+listname.lower(), lock=0) |
0337d704 |
681 | except: |
682 | return 0 |
683 | try: |
684 | if not is_admin_on(userdesc, perms, mlist): |
685 | return 0 |
686 | hfr = [] |
687 | if int(level) is 1: |
688 | hfr.append(('X-Spam-Flag: Yes, tests=bogofilter', mm_cfg.HOLD, False)) |
689 | elif int(level) is 2: |
4988c5a9 |
690 | hfr.append(('X-Spam-Flag: Yes, tests=bogofilter, spamicity=(0\.999999|1\.000000)', mm_cfg.DISCARD, False)) |
691 | hfr.append(('X-Spam-Flag: Yes, tests=bogofilter', mm_cfg.HOLD, False)) |
692 | elif int(level) is 3: |
0337d704 |
693 | hfr.append(('X-Spam-Flag: Yes, tests=bogofilter', mm_cfg.DISCARD, False)) |
694 | if mlist.header_filter_rules != hfr: |
695 | mlist.Lock() |
696 | mlist.header_filter_rules = hfr |
697 | mlist.Save() |
698 | mlist.Unlock() |
699 | return 1 |
700 | except: |
701 | mlist.Unlock() |
702 | return 0 |
703 | |
704 | #------------------------------------------------------------------------------- |
705 | # admin procedures [ soptions.php ] |
706 | # |
707 | |
708 | admin_opts = [ 'advertised', 'archive', \ |
709 | 'max_message_size', 'msg_footer', 'msg_header'] |
710 | |
ae6c293b |
711 | def get_admin_options(userdesc, perms, vhost, listname): |
0337d704 |
712 | if perms != 'admin': |
713 | return 0 |
ae6c293b |
714 | return get_options(userdesc, perms, vhost, listname.lower(), admin_opts) |
0337d704 |
715 | |
ae6c293b |
716 | def set_admin_options(userdesc, perms, vhost, listname, values): |
0337d704 |
717 | if perms != 'admin': |
718 | return 0 |
ae6c293b |
719 | return set_options(userdesc, perms, vhost, listname.lower(), admin_opts, values) |
0337d704 |
720 | |
721 | #------------------------------------------------------------------------------- |
722 | # admin procedures [ check.php ] |
723 | # |
724 | |
725 | check_opts = { |
726 | 'acceptable_aliases' : '', |
727 | 'admin_immed_notify' : True, |
728 | 'administrivia' : True, |
729 | 'anonymous_list' : False, |
730 | 'autorespond_admin' : False, |
731 | 'autorespond_postings' : False, |
732 | 'autorespond_requests' : False, |
733 | 'available_languages' : ['fr'], |
734 | 'ban_list' : [], |
735 | 'bounce_matching_headers' : '', |
736 | 'bounce_processing' : False, |
737 | 'convert_html_to_plaintext' : False, |
738 | 'digestable' : False, |
739 | 'digest_is_default' : False, |
740 | 'discard_these_nonmembers' : [], |
741 | 'emergency' : False, |
742 | 'encode_ascii_prefixes' : 2, |
743 | 'filter_content' : False, |
744 | 'first_strip_reply_to' : False, |
745 | 'forward_auto_discards' : True, |
746 | 'hold_these_nonmembers' : [], |
747 | 'host_name' : 'listes.polytechnique.org', |
748 | 'include_list_post_header' : False, |
749 | 'include_rfc2369_headers' : False, |
750 | 'max_num_recipients' : 0, |
751 | 'new_member_options' : 256, |
752 | 'nondigestable' : True, |
753 | 'obscure_addresses' : True, |
754 | 'preferred_language' : 'fr', |
755 | 'reject_these_nonmembers' : [], |
756 | 'reply_goes_to_list' : 0, |
757 | 'reply_to_address' : '', |
758 | 'require_explicit_destination' : False, |
759 | 'send_reminders' : 0, |
760 | 'send_welcome_msg' : True, |
761 | 'topics_enabled' : False, |
762 | 'umbrella_list' : False, |
763 | 'unsubscribe_policy' : 0, |
764 | } |
765 | |
ae6c293b |
766 | def check_options(userdesc, perms, vhost, listname, correct=False): |
88f7a3f1 |
767 | listname = listname.lower() |
0337d704 |
768 | try: |
88f7a3f1 |
769 | mlist = MailList.MailList(vhost+VHOST_SEP+listname, lock=0) |
0337d704 |
770 | except: |
771 | return 0 |
772 | try: |
773 | if perms != 'admin': return 0 |
774 | if correct: |
775 | mlist.Lock() |
776 | options = { } |
ae6c293b |
777 | for (k, v) in check_opts.iteritems(): |
0337d704 |
778 | if mlist.__dict__[k] != v: |
ae6c293b |
779 | options[k] = v, mlist.__dict__[k] |
0337d704 |
780 | if correct: mlist.__dict__[k] = v |
781 | if mlist.real_name.lower() != listname: |
782 | options['real_name'] = listname, mlist.real_name |
783 | if correct: mlist.real_name = listname |
784 | if correct: |
785 | mlist.Save() |
786 | mlist.Unlock() |
ae6c293b |
787 | details = get_list_info(userdesc, perms, mlist)[0] |
788 | return (details, options) |
0337d704 |
789 | except: |
790 | if correct: mlist.Unlock() |
791 | return 0 |
792 | |
793 | #------------------------------------------------------------------------------- |
794 | # super-admin procedures |
795 | # |
796 | |
ae6c293b |
797 | def get_all_lists(userdesc, perms, vhost): |
0337d704 |
798 | prefix = vhost.lower()+VHOST_SEP |
799 | names = Utils.list_names() |
800 | names.sort() |
801 | result = [] |
802 | for name in names: |
803 | if not name.startswith(prefix): |
804 | continue |
ae6c293b |
805 | result.append(name.replace(prefix, '')) |
0337d704 |
806 | return result |
807 | |
ae6c293b |
808 | def create_list(userdesc, perms, vhost, listname, desc, advertise, modlevel, inslevel, owners, members): |
0337d704 |
809 | if perms != 'admin': |
810 | return 0 |
811 | name = vhost.lower()+VHOST_SEP+listname.lower(); |
812 | if Utils.list_exists(name): |
813 | return 0 |
ae6c293b |
814 | |
0337d704 |
815 | owner = [] |
816 | for o in owners: |
817 | email = to_forlife(o)[0] |
818 | if email is not None: |
819 | owner.append(email) |
820 | if len(owner) is 0: |
821 | return 0 |
822 | |
823 | mlist = MailList.MailList() |
824 | try: |
825 | oldmask = os.umask(002) |
826 | pw = sha.new('foobar').hexdigest() |
ae6c293b |
827 | |
0337d704 |
828 | try: |
829 | mlist.Create(name, owner[0], pw) |
830 | finally: |
831 | os.umask(oldmask) |
832 | |
833 | mlist.real_name = listname |
834 | mlist.host_name = 'listes.polytechnique.org' |
835 | mlist.description = desc |
836 | |
837 | mlist.advertised = int(advertise) is 0 |
838 | mlist.default_member_moderation = int(modlevel) is 2 |
839 | mlist.generic_nonmember_action = int(modlevel) > 0 |
840 | mlist.subscribe_policy = 2 * (int(inslevel) is 1) |
841 | mlist.admin_notify_mchanges = (mlist.subscribe_policy or mlist.generic_nonmember_action or mlist.default_member_moderation or not mlist.advertised) |
ae6c293b |
842 | |
0337d704 |
843 | mlist.owner = owner |
ae6c293b |
844 | |
0337d704 |
845 | mlist.subject_prefix = '['+listname+'] ' |
846 | mlist.max_message_size = 0 |
847 | |
31f2df6a |
848 | inverted_listname = '_'.join(listname.split('_', 1)[-1::-1]) |
0337d704 |
849 | mlist.msg_footer = "_______________________________________________\n" \ |
31f2df6a |
850 | + "Liste de diffusion %(real_name)s\n" \ |
851 | + "http://listes.polytechnique.org/members/" + inverted_listname |
ae6c293b |
852 | |
0337d704 |
853 | mlist.header_filter_rules = [] |
854 | mlist.header_filter_rules.append(('X-Spam-Flag: Yes, tests=bogofilter', mm_cfg.HOLD, False)) |
855 | |
856 | mlist.Save() |
857 | |
858 | mlist.Unlock() |
859 | |
98c79ede |
860 | if ON_CREATE_CMD != '': |
861 | try: os.system(ON_CREATE_CMD + ' ' + name) |
862 | except: pass |
863 | |
ae6c293b |
864 | check_options(userdesc, perms, vhost, listname.lower(), True) |
865 | mass_subscribe(userdesc, perms, vhost, listname.lower(), members) |
0337d704 |
866 | |
867 | # avoid the "-1 mail to moderate" bug |
868 | mlist = MailList.MailList(name) |
869 | mlist._UpdateRecords() |
870 | mlist.Save() |
871 | mlist.Unlock() |
0337d704 |
872 | except: |
873 | try: |
874 | mlist.Unlock() |
875 | except: |
876 | pass |
877 | return 0 |
878 | return 1 |
879 | |
ae6c293b |
880 | def delete_list(userdesc, perms, vhost, listname, del_archives=0): |
0337d704 |
881 | lname = vhost+VHOST_SEP+listname.lower() |
882 | try: |
ae6c293b |
883 | mlist = MailList.MailList(lname, lock=0) |
0337d704 |
884 | except: |
885 | return 0 |
886 | try: |
887 | if not is_admin_on(userdesc, perms, mlist): |
888 | return 0 |
889 | # remove the list |
890 | REMOVABLES = [ os.path.join('lists', lname), ] |
891 | # remove stalled locks |
892 | for filename in os.listdir(mm_cfg.LOCK_DIR): |
893 | fn_lname = filename.split('.')[0] |
894 | if fn_lname == lname: |
895 | REMOVABLES.append(os.path.join(mm_cfg.LOCK_DIR, filename)) |
896 | # remove archives ? |
897 | if del_archives: |
898 | REMOVABLES.extend([ |
899 | os.path.join('archives', 'private', lname), |
900 | os.path.join('archives', 'private', lname+'.mbox'), |
901 | os.path.join('archives', 'public', lname), |
902 | os.path.join('archives', 'public', lname+'.mbox') |
903 | ]) |
904 | map(lambda dir: remove_it(lname, os.path.join(mm_cfg.VAR_PREFIX, dir)), REMOVABLES) |
905 | return 1 |
906 | except: |
907 | return 0 |
908 | |
ae6c293b |
909 | def kill(userdesc, perms, vhost, alias, del_from_promo): |
0337d704 |
910 | exclude = [] |
911 | if not del_from_promo: |
912 | exclude.append(PLATAL_DOMAIN+VHOST_SEP+'promo'+alias[-4:]) |
913 | for list in Utils.list_names(): |
914 | if list in exclude: continue |
915 | try: |
ae6c293b |
916 | mlist = MailList.MailList(list, lock=0) |
0337d704 |
917 | except: |
918 | continue |
919 | try: |
920 | mlist.Lock() |
ae6c293b |
921 | mlist.ApprovedDeleteMember(alias+'@'+PLATAL_DOMAIN, None, 0, 0) |
0337d704 |
922 | mlist.Save() |
923 | mlist.Unlock() |
924 | except: |
925 | mlist.Unlock() |
926 | return 1 |
927 | |
928 | |
929 | #------------------------------------------------------------------------------- |
930 | # server |
931 | # |
932 | class FastXMLRPCServer(SocketServer.ThreadingMixIn, SimpleXMLRPCServer): |
ae6c293b |
933 | allow_reuse_address = True |
0337d704 |
934 | |
935 | ################################################################################ |
936 | # |
ae6c293b |
937 | # INIT |
0337d704 |
938 | # |
939 | #------------------------------------------------------------------------------- |
940 | # use Mailman user and group (not root) |
941 | # fork in background if asked to |
942 | # |
943 | |
944 | uid = getpwnam(mm_cfg.MAILMAN_USER)[2] |
945 | gid = getgrnam(mm_cfg.MAILMAN_GROUP)[2] |
946 | |
947 | if not os.getuid(): |
ae6c293b |
948 | os.setregid(gid, gid) |
949 | os.setreuid(uid, uid) |
0337d704 |
950 | |
951 | signal.signal(signal.SIGHUP, signal.SIG_IGN) |
952 | |
953 | if ( os.getuid() is not uid ) or ( os.getgid() is not gid): |
954 | sys.exit(0) |
955 | |
956 | opts, args = getopt.getopt(sys.argv[1:], 'f') |
957 | for o, a in opts: |
958 | if o == '-f' and os.fork(): |
959 | sys.exit(0) |
960 | |
961 | i18n.set_language('fr') |
962 | mysql = connectDB() |
963 | lock = Lock() |
964 | |
965 | #------------------------------------------------------------------------------- |
966 | # server |
967 | # |
968 | server = FastXMLRPCServer(("localhost", 4949), BasicAuthXMLRPCRequestHandler) |
969 | |
970 | # index.php |
971 | server.register_function(get_lists) |
972 | server.register_function(subscribe) |
973 | server.register_function(unsubscribe) |
974 | # members.php |
975 | server.register_function(get_members) |
976 | # trombi.php |
977 | server.register_function(get_members_limit) |
978 | server.register_function(get_owners) |
979 | # admin.php |
c4d57bd8 |
980 | server.register_function(replace_email) |
0337d704 |
981 | server.register_function(mass_subscribe) |
982 | server.register_function(mass_unsubscribe) |
983 | server.register_function(add_owner) |
984 | server.register_function(del_owner) |
985 | # moderate.php |
986 | server.register_function(get_pending_ops) |
987 | server.register_function(handle_request) |
988 | server.register_function(get_pending_mail) |
989 | # options.php |
990 | server.register_function(get_owner_options) |
991 | server.register_function(set_owner_options) |
992 | server.register_function(add_to_wl) |
993 | server.register_function(del_from_wl) |
994 | server.register_function(get_bogo_level) |
995 | server.register_function(set_bogo_level) |
996 | # soptions.php |
997 | server.register_function(get_admin_options) |
998 | server.register_function(set_admin_options) |
999 | # check.php |
1000 | server.register_function(check_options) |
1001 | # create + del |
1002 | server.register_function(get_all_lists) |
1003 | server.register_function(create_list) |
1004 | server.register_function(delete_list) |
1005 | # utilisateurs.php |
1006 | server.register_function(kill) |
1007 | |
1008 | server.serve_forever() |
1009 | |
1010 | # vim:set et: |