First commit.

4f31c267 · nimrod · 4f31c267 · 4f31c267 · 4f31c267 · 4f31c267
Commit 4f31c267 authored 9 years ago by nimrod
--- a/.gitignore
+++ b/.gitignore
+~*
+*~
+*.swp
+*.swo
+*.pyc
--- a/dcp-permissions/DEBIAN/control
+++ b/dcp-permissions/DEBIAN/control
+Package: dcp-permissions
+Version: 0.1.0
+Section: utils
+Priority: optional
+Architecture: all
+Depends: python3, python3-pyinotify, lsb-base, initscripts, sysv-rc, sysvinit-utils
+Enhances: dcpman
+Installed-Size:
+Maintainer: Nimrod Adar <nimrod@shore.co.il>
+Description: Monitor and correct new DCPs permissions
--- a/dcp-permissions/DEBIAN/postinst
+++ b/dcp-permissions/DEBIAN/postinst
+#!/bin/sh
+update-rc.d dcp-permissions defaults
+service dcp-permissions start
\ No newline at end of file
--- a/dcp-permissions/DEBIAN/postrm
+++ b/dcp-permissions/DEBIAN/postrm
+#!/bin/sh
+update-rc.d dcp-permissions remove
\ No newline at end of file
--- a/dcp-permissions/DEBIAN/prerm
+++ b/dcp-permissions/DEBIAN/prerm
+#!/bin/sh
+service dcp-permissions stop
\ No newline at end of file
--- a/dcp-permissions/etc/init.d/dcp-permissions
+++ b/dcp-permissions/etc/init.d/dcp-permissions
+#! /bin/sh
+### BEGIN INIT INFO
+# Provides:          dcp-permissions
+# Required-Start:    $local_fs
+# Required-Stop:     $local_fs
+# Default-Start:     2 3 4 5
+# Default-Stop:      0 1 6
+# Short-Description: Monitor and correct new DCPs permissions
+# Description:       Monitor and correct new DCPs permissions
+### END INIT INFO
+
+# Author: Nimrod Adar <nimrod@shore.co.il>
+
+# Do NOT "set -e"
+
+# PATH should only include /usr/* if it runs after the mountnfs.sh script
+PATH=/sbin:/usr/sbin:/bin:/usr/bin
+DESC="Monitor and correct new DCPs permissions"
+NAME=dcp-permissions
+DAEMON=/usr/bin/$NAME
+DAEMON_ARGS=""
+PIDFILE=/var/run/$NAME.pid
+SCRIPTNAME=/etc/init.d/$NAME
+
+# Exit if the package is not installed
+[ -x "$DAEMON" ] || exit 0
+
+# Read configuration variable file if it is present
+[ -r /etc/default/$NAME ] && . /etc/default/$NAME
+
+# Load the VERBOSE setting and other rcS variables
+. /lib/init/vars.sh
+
+# Define LSB log_* functions.
+# Depend on lsb-base (>= 3.2-14) to ensure that this file is present
+# and status_of_proc is working.
+. /lib/lsb/init-functions
+
+#
+# Function that starts the daemon/service
+#
+do_start()
+{
+        # Return
+        #   0 if daemon has been started
+        #   1 if daemon was already running
+        #   2 if daemon could not be started
+        start-stop-daemon --background --make-pidfile --start --quiet --pidfile $PIDFILE --exec $DAEMON --test > /dev/null \
+                || return 1
+        start-stop-daemon --background --make-pidfile --start --quiet --pidfile $PIDFILE --exec $DAEMON -- \
+                $DAEMON_ARGS \
+                || return 2
+        # Add code here, if necessary, that waits for the process to be ready
+        # to handle requests from services started subsequently which depend
+        # on this one.  As a last resort, sleep for some time.
+}
+
+#
+# Function that stops the daemon/service
+#
+do_stop()
+{
+        # Return
+        #   0 if daemon has been stopped
+        #   1 if daemon was already stopped
+        #   2 if daemon could not be stopped
+        #   other if a failure occurred
+        start-stop-daemon --stop --quiet --retry=TERM/30/KILL/5 --pidfile $PIDFILE
+        RETVAL="$?"
+        [ "$RETVAL" = 2 ] && return 2
+        # Wait for children to finish too if this is a daemon that forks
+        # and if the daemon is only ever run from this initscript.
+        # If the above conditions are not satisfied then add some other code
+        # that waits for the process to drop all resources that could be
+        # needed by services started subsequently.  A last resort is to
+        # sleep for some time.
+        start-stop-daemon --stop --quiet --oknodo --retry=0/30/KILL/5 --exec $DAEMON
+        [ "$?" = 2 ] && return 2
+        # Many daemons don't delete their pidfiles when they exit.
+        rm -f $PIDFILE
+        return "$RETVAL"
+}
+
+#
+# Function that sends a SIGHUP to the daemon/service
+#
+do_reload() {
+        #
+        # If the daemon can reload its configuration without
+        # restarting (for example, when it is sent a SIGHUP),
+        # then implement that here.
+        #
+        start-stop-daemon --stop --signal 1 --quiet --pidfile $PIDFILE --name $NAME
+        return 0
+}
+
+case "$1" in
+  start)
+        [ "$VERBOSE" != no ] && log_daemon_msg "Starting $DESC" "$NAME"
+        do_start
+        case "$?" in
+                0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
+                2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
+        esac
+        ;;
+  stop)
+        [ "$VERBOSE" != no ] && log_daemon_msg "Stopping $DESC" "$NAME"
+        do_stop
+        case "$?" in
+                0|1) [ "$VERBOSE" != no ] && log_end_msg 0 ;;
+                2) [ "$VERBOSE" != no ] && log_end_msg 1 ;;
+        esac
+        ;;
+  status)
+        status_of_proc "$DAEMON" "$NAME" && exit 0 || exit $?
+        ;;
+  #reload|force-reload)
+        #
+        # If do_reload() is not implemented then leave this commented out
+        # and leave 'force-reload' as an alias for 'restart'.
+        #
+        #log_daemon_msg "Reloading $DESC" "$NAME"
+        #do_reload
+        #log_end_msg $?
+        #;;
+  restart|force-reload)
+        #
+        # If the "reload" option is implemented then remove the
+        # 'force-reload' alias
+        #
+        log_daemon_msg "Restarting $DESC" "$NAME"
+        do_stop
+        case "$?" in
+          0|1)
+                do_start
+                case "$?" in
+                        0) log_end_msg 0 ;;
+                        1) log_end_msg 1 ;; # Old process is still running
+                        *) log_end_msg 1 ;; # Failed to start
+                esac
+                ;;
+          *)
+                # Failed to stop
+                log_end_msg 1
+                ;;
+        esac
+        ;;
+  *)
+        #echo "Usage: $SCRIPTNAME {start|stop|restart|reload|force-reload}" >&2
+        echo "Usage: $SCRIPTNAME {start|stop|status|restart|force-reload}" >&2
+        exit 3
+        ;;
+esac
+
+:
--- a/dcp-permissions/usr/bin/dcp-permissions
+++ b/dcp-permissions/usr/bin/dcp-permissions
+#!/usr/bin/env python3
+'''Monitor the ftp directory and correct the permissions of new files.'''
+
+directory = '/srv/ftp'
+
+import os
+import stat
+import pyinotify
+
+def correct_permissions(path):
+    filemode = stat.S_IRUSR | stat.S_IWUSR | stat.S_IRGRP | stat.S_IROTH
+    dirmode = filemode | stat.S_IXUSR | stat.S_IXGRP | stat.S_IXOTH
+    try:
+        if os.path.isdir(path):
+            return(os.chmod(path, dirmode))
+        else:
+            return(os.chmod(path, filemode))
+    except BaseException as e:
+        print(e)
+
+mask = pyinotify.IN_CREATE | pyinotify.IN_ATTRIB
+
+class EventHandler(pyinotify.ProcessEvent):
+    def process_IN_CREATE(self, event): return(correct_permissions(event.pathname))
+    def process_IN_ATTRIB(self, event): return(correct_permissions(event.pathname))
+
+if __name__ == '__main__':
+    wm = pyinotify.WatchManager()
+    handler = EventHandler()
+    notifier = pyinotify.Notifier(wm, handler)
+    wdd = wm.add_watch(directory, mask, rec=True, auto_add=True)
+    notifier.loop()
+    quit()
--- a/fabfile.py
+++ b/fabfile.py
+#!/usr/bin/env python
+from fabric.api import task, local
+
+@task
+def publish ():
+    build ()
+    local ('''reprepro includedeb wheezy dcp-permissions.deb''')
+    local ('''fab -f $REPREPRO_BASE_DIR/fabfile.py publish''')
+    clean ()
+
+@task
+def build ():
+    local ('''fakeroot dpkg --build dcp-permissions''')
+
+@task
+def clean ():
+    local ('''rm dcp-permissions.deb''')
+    local ('''rm fabfile.pyc''')