![[tokkee]](http://tokkee.org/images/avatar.png){kind=avatar}
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: d272f16)
raw | patch | inline | side by side (parent: d272f16)
| author | opensides <opensides@594d385d-05f5-0310-b6e9-bd551577e9d8> | |
| Mon, 17 Oct 2005 14:57:21 +0000 (14:57 +0000) | ||
| committer | opensides <opensides@594d385d-05f5-0310-b6e9-bd551577e9d8> | |
| Mon, 17 Oct 2005 14:57:21 +0000 (14:57 +0000) |
with the explanation of how to install it
git-svn-id: https://oss.gonicus.de/repositories/gosa/trunk@1591 594d385d-05f5-0310-b6e9-bd551577e9d8
git-svn-id: https://oss.gonicus.de/repositories/gosa/trunk@1591 594d385d-05f5-0310-b6e9-bd551577e9d8
| contrib/opensides/README | patch | blob | history | |
| contrib/opensides/goNagios.pl | [new file with mode: 0755] | patch | blob |
| contrib/opensides/nagios.README | patch | blob | history |
index 8eef63fd18ebe60b662ecffff7e53b5ad429914a..09cf732580a7ec1819b13e51f2be992b2d234dd2 100644 (file)
--- a/contrib/opensides/README
+++ b/contrib/opensides/README
the correct attribute when using the smbldap-tools
from idealx.
+goNagios.pl - This script will help you to manage the authentification
+ users inside of the cgi.cfg, contacts.cfg, contactgroups.cfg
ldap :
slapd.conf - The slapd.conf confg for openldap 2.2
diff --git a/contrib/opensides/goNagios.pl b/contrib/opensides/goNagios.pl
--- /dev/null
@@ -0,0 +1,391 @@
+#!/usr/bin/perl -w
+
+
+# Copyright (C) 2005 Guillaume Delecourt <guillaume.delecourt@opensides.be>
+# Copyright (C) 2005 Vincent Senave <vincent.senave@opensides.be>
+#
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
+#
+#
+
+use Net::LDAP;
+use Getopt::Std;
+use Net::LDAP::Schema;
+use Net::LDAP::LDIF;
+use Data::Dumper;
+use MIME::Lite;
+use Sys::Syslog;
+use Switch;
+use strict;
+
+# Variables a config
+
+my $admindef="admin";
+
+my $cgi_file="cgi.cfg";
+my $contacts_file="contacts.cfg";
+my $contacts_groups_file="contactgroups.cfg";
+
+my $TS_FILE='/tmp/gosa_timestamp';
+my %Options;
+my $nb_user=0;
+my $nb_groupe=0;
+
+my ($i,$file,$ldap,@nagiosmail,
+ $line,$text,$mesg,$entry,$userlist1,$userlist2,$userlist3,$userlist4,
+ $userlist5,$userlist6,$userlist7,$msg,@groupname,@groupmembers,@contactlias,
+ @groupdescription,@servicenotificationoptions,@servicenotificationperiod,
+ @hostnotificationoptions,@hostnotificationperiod,$stdout,
+ $usercontact,$members,@contactname,@nagiosalias,$j,@entries
+);
+
+# Les parametres de connexion proviennent du fichier smbldap-bind.conf
+my $gosa_bind_conf="/etc/gosa_bind.conf";
+my $gosa_ldap_conf="/etc/gosaldap.conf";
+my %config_bind = &read_conf($gosa_bind_conf);
+my %config = &read_conf($gosa_ldap_conf);
+
+my $peopleou=$config{peopleou};
+my $groupeou=$config{groupeou};
+my $base=$config{base};
+my $scope=$config{scope};# par defaut
+my $server=$config{server};
+
+my $admin=$config_bind{masterDN};
+my $password=$config_bind{masterPw};
+
+
+ $stdout.="\n\nSearch new Nagios attribute in user list\n";
+ $stdout.="-"x55;$stdout.="\n";
+ #my $ts = getTS;
+
+# $ldap = &anonBind;
+# $mesg = $ldap->search(
+# base => $LDAP_BASE,
+# filter => "(&(modifyTimestamp>=$ts)(!(objectClass=gosaUserTemplate)))"
+# );
+
+ # Put timestamp to file
+ #putTS;
+
+ # Work if changes is present
+ #if($mesg->count > 0)
+ #{
+ #$stdout.="Processing records modified after $ts\n\n";
+ $ldap = Net::LDAP->new($server);
+ $mesg = $ldap->bind($admin,password=>$password) or syslog('error',$mesg->err) && print $mesg->code && die $mesg->error;
+
+
+
+ #Partie pour l'objectClass NAgios Contact
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosContact))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $i=0;
+ foreach $entry (@entries) {
+ $stdout.="\nContact $i : \nName\t\t\t";$contactname[$i]=$entry->get_value('uid');$stdout.=$contactname[$i];
+ $stdout.="\n\n\tmail:\t\t\t\t";$nagiosmail[$i]=$entry->get_value('NagiosMail');$stdout.=$nagiosmail[$i];
+ $stdout.="\n\talias:\t\t\t\t";$nagiosalias[$i]=$entry->get_value('NagiosAlias');$stdout.=$nagiosalias[$i];
+ $stdout.="\n\tHostNotificationPeriod:\t\t";$hostnotificationperiod[$i]=$entry->get_value('HostNotificationPeriod');$stdout.=$hostnotificationperiod[$i];
+ $stdout.="\n\tServiceNotificationPeriod:\t";$servicenotificationperiod[$i]=$entry->get_value('ServiceNotificationPeriod');$stdout.=$servicenotificationperiod[$i];
+ $stdout.="\n\tHostNotificationOptions:\t";$hostnotificationoptions[$i]=$entry->get_value('HostNotificationOptions');$stdout.=$hostnotificationoptions[$i];
+ $stdout.="\n\tServiceNotificationOptions:\t";$servicenotificationoptions[$i]=$entry->get_value('ServiceNotificationOptions');$stdout.=$servicenotificationoptions[$i];
+ $stdout.="\n"." "x15;$stdout.="-"x20;$stdout.=" "x 15;
+ $usercontact.=$entry->get_value('uid')." ,";
+ $i++;
+ }
+ $nb_user=$i;
+
+
+ #Partie pour l'objectClass NAgios Group
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosContactGroup))", base=>$groupeou,scope=>$scope);
+ @entries = $mesg->entries;
+ $i=0;
+ foreach $entry (@entries) {
+ $stdout.="\nGroupe $i : \nName\t\t";$groupname[$i]=$entry->get_value('cn');$stdout.=$groupname[$i];
+ $stdout.="\n\n\talias:\t\t";$groupdescription[$i]=$entry->get_value('description');$stdout.=$groupdescription[$i];
+ $stdout.="\n\tmembers:\t";
+ $j=0;
+ foreach $members($entry->get_value('memberUid'))
+ {
+ $stdout.=$members." ";
+ $groupmembers[$i][$j]=$members;
+ $j++;
+ }
+ $stdout.="\n"." "x15;$stdout.="-"x20;$stdout.=" "x 15;
+ $i++;
+ }
+ $nb_groupe=$i;
+
+ $userlist1.=$admindef;
+
+ #Partie pour l'objectClass NagiosAuth
+ $stdout.="\n\n\n\n\nAuthorization for the different Information in Nagios\n"."-" x 53;$stdout.="\n";
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedSystemInformation~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nSystem infos :\t\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist1.=$entry->get_value('uid')." ,";
+ }
+ $userlist1.=$admindef;
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedConfigurationInformation~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nConfiguration infos :\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist2.=$entry->get_value('uid')." , ";
+ }
+ $userlist2.=$admindef;
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedSystemCommands~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nSystem commands : \t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist3.=$entry->get_value('uid')." , ";
+ }
+ $userlist3.=$admindef;
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedAllServices~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nAll services :\t\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist4.=$entry->get_value('uid')." ,";
+ }
+ $userlist4.=$admindef;
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedAllHosts~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nAll hosts :\t\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist5.=$entry->get_value('uid').",";
+ }
+ $userlist5.=$admindef;
+
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedAllServiceCommands~=checked))", base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nAll services commands :\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist6.=$entry->get_value('uid').",";
+ }
+ $userlist6.=$admindef;
+
+ $mesg = $ldap->search(filter=>"(&(objectClass~=nagiosAuth)(AuthorizedAllHostCommands~=checked))",base=>$peopleou,scope=>$scope);
+ @entries = $mesg->entries;
+ $stdout.="\nAll host commands :\t";
+ foreach $entry (@entries) {
+ $stdout.= $entry->get_value('uid')."\t";
+ $userlist7.=$entry->get_value('uid').",";
+ }
+ $userlist7.=$admindef;
+
+
+ &modiffile_cgi($cgi_file);
+ &modiffile_contact($contacts_file);
+ &modiffile_group($contacts_groups_file);
+
+ $ldap->unbind;
+ $stdout.="\n";
+ switch($config{stdout})
+ {
+ case "mail" {&mail()}
+ case "log" {&writelog()}
+ case "normal" {print $stdout}
+ }
+ exit(0);
+
+sub modiffile_contact()
+{
+ $file=$_[0];
+ my $text="";
+ open(FH,"$file") || die "Probleme d'ouverture du fichier $file";
+ $stdout.="\n\n"; $stdout.=" "x10;$stdout.="-"x25;$stdout.=" "x10;
+ $stdout.="\n\n$nb_user utilisateur(s) ajouté(s) dans le fichier $file\n";
+ for($i=0;$i<$nb_user;$i++)
+ {
+ $text.="\n\ndefine contact{\n";
+ $text.="\n\tcontact_name \t\t\t".$contactname[$i];
+ $text.="\n\talias \t\t\t\t".$nagiosalias[$i];
+ $text.="\n\thost_notification_period \t".$hostnotificationperiod[$i];
+ $text.="\n\thost_notification_options \t".$hostnotificationoptions[$i];
+ $text.="\n\tservice_notification_period \t".$servicenotificationperiod[$i];
+ $text.="\n\tservice_notification_options \t".$servicenotificationoptions[$i];
+ $text.="\n\temail \t\t\t\t".$nagiosmail[$i];
+ $text.="\n}\n\n";
+ }
+ close(FH);
+ open(FH,"> $file") || die "Probleme d'ouverture du fichier $file";
+ print FH "$text";
+ close(FH);
+
+}
+
+sub modiffile_group()
+{
+ $file=$_[0];
+ $text="";
+ $j=0;
+ $i=0;
+ open(FH,"$file") || die "Probleme d'ouverture du fichier $file";
+ $stdout.="\n\n"; $stdout.=" "x10;$stdout.="-"x25;$stdout.=" "x10;
+ $stdout.="\n\n$nb_groupe groupe(s) ajouté(s) dans le fichier $file\n";
+ for($i=0;$i<$nb_groupe;$i++)
+ {
+ $text.="\n\ndefine contact{\n";
+ $text.="\n\tcontactgroup_name \t".$groupname[$i];
+ $text.="\n\talias \t\t\t".$groupdescription[$i];
+ $text.="\n\tmembers \t\t";
+ while(defined($groupmembers[$i][$j]))
+ {
+ $text.=$groupmembers[$i][$j]." ";
+ $j++;
+ }
+ $text.="\n}\n\n";
+ }
+
+ close(FH);
+ open(FH,"> $file") || die "Probleme d'ouverture du fichier $file";
+ print FH "$text";
+ close(FH);
+
+}
+
+sub modiffile_cgi()
+{
+ $file=$_[0];
+ $text="";
+ open(FH,"$file") || die "Probleme d'ouverture du fichier $file";
+ while(<FH>)
+ {
+ $line=$_;
+ #$stdout.="$line";
+ if($line =~ /^authorized_for_system_information=*/i){$text.="authorized_for_system_information=".$userlist1}
+ elsif($line =~ /^authorized_for_configuration_information=*/i){$text.="authorized_for_configuration_information=".$userlist2}
+ elsif($line =~ /^authorized_for_system_commands=*/i){$text.="authorized_for_system_commands=".$userlist3}
+ elsif($line =~ /^authorized_for_all_services=*/i){$text.="authorized_for_all_services=".$userlist4."\n"}
+ elsif($line =~ /^authorized_for_all_hosts=*/i){$text.="authorized_for_all_hosts=".$userlist5}
+ elsif($line =~ /^authorized_for_all_service_commands=*/i){$text.="authorized_for_all_host_commands=".$userlist6."\n"}
+ elsif($line =~ /^authorized_for_all_host_commands=*/i){$text.="authorized_for_all_service_commands=".$userlist7}
+ else {$text.=$line};
+ }
+ close(FH);
+ open(FH,"> $file") || die "Probleme d'ouverture du fichier $file";
+ print FH "$text";
+ close(FH);
+
+}
+
+sub read_conf()
+{
+ my %conf;
+ open (CONFIGFILE, "$_[0]") || die "Unable to open $_[0] for reading !\n";
+ while (<CONFIGFILE>) {
+ chomp($_);
+ ## throw away comments
+ next if ( /^\s*#/ || /^\s*$/ || /^\s*\;/);
+ ## check for a param = value
+ my ($parameter,$value)=read_parameter($_);
+ $value = &subst_configvar($value,\%conf);
+ $conf{$parameter}=$value;
+ }
+ close (CONFIGFILE);
+ return(%conf);
+}
+
+
+
+
+sub read_parameter
+{
+ my $line=shift;
+ ## check for a param = value
+ if ($_=~/=/) {
+ my ($param,$val);
+ if ($_=~/"/) {
+ #my ($param,$val) = ($_=~/(.*)\s*=\s*"(.*)"/);
+ ($param,$val) = /\s*(.*?)\s*=\s*"(.*)"/;
+ } elsif ($_=~/'/) {
+ ($param,$val) = /\s*(.*?)\s*=\s*'(.*)'/;
+ } else {
+ ($param,$val) = /\s*(.*?)\s*=\s*(.*)/;
+ }
+ return ($param,$val);
+ }
+}
+
+sub subst_configvar
+{
+ my $value = shift;
+ my $vars = shift;
+
+ $value =~ s/\$\{([^}]+)\}/$vars->{$1} ? $vars->{$1} : $1/eg;
+ return $value;
+}
+
+sub mail
+{
+
+if($config{email}eq ""){$config{email}="root"}
+
+$msg = MIME::Lite->new(
+ From => 'monperl@opensides.be',
+ To => $config{email},
+ Subject => "Plugin Nagios Gosa",
+ Data => $stdout
+ );
+
+
+$msg->send;
+}
+
+sub writelog
+{
+ open(F, "> $config{logfile}");
+ print F $stdout;
+ close(F);
+}
+
+# Read timestamp
+sub getTS
+{
+ open(F, "< $TS_FILE");
+ my $ts = <F>;
+ chop $ts;
+ $ts ||= "19700101000000Z";
+ return $ts;
+}
+
+# save timestamp
+sub putTS
+{
+ my $ts = `date -u '+%Y%m%d%H%M%SZ'`;
+ open(F, "> $TS_FILE");
+ $stdout.= F $ts;
+}
+
+#connexion anonyme
+sub anonBind
+{
+ my $ldap = Net::LDAP->new( $server);
+ my $mesg = $ldap->bind();
+ $mesg->code && die $mesg->error;
+ return $ldap;
+}
index 53783ca2ac070781d4857f610d3bfb95af89a335..19fb420d61e71caa7b3257ce2250b37e9c3c321d 100644 (file)
-For test the plugin ( beginning of the plugin :) )
-add this in gosa.conf
+To test the plugin add this in gosa.conf
<nagios>
<tab class="nagiosAccount" />
before <connectivity> eg.
-
Guillaume.
\ No newline at end of file