summaryrefslogtreecommitdiff
path: root/fig-web/src/Fig/Web/LDAP.hs
diff options
context:
space:
mode:
authorLLLL Colonq <llll@colonq>2024-11-14 21:20:28 -0500
committerLLLL Colonq <llll@colonq>2024-11-14 21:20:28 -0500
commita3991ddb8f61955c5c48ac99b6eed14d5e9f986a (patch)
treeb58d9a4beeeca61547d1ae3696d64fc2e2561ab4 /fig-web/src/Fig/Web/LDAP.hs
parentd6bcaac870a03ed7ee0e6e1d6981e15f16778e2b (diff)
Account creation in LDAP using Twitch
Diffstat (limited to 'fig-web/src/Fig/Web/LDAP.hs')
-rw-r--r--fig-web/src/Fig/Web/LDAP.hs39
1 files changed, 39 insertions, 0 deletions
diff --git a/fig-web/src/Fig/Web/LDAP.hs b/fig-web/src/Fig/Web/LDAP.hs
new file mode 100644
index 0000000..e9861a9
--- /dev/null
+++ b/fig-web/src/Fig/Web/LDAP.hs
@@ -0,0 +1,39 @@
+module Fig.Web.LDAP where
+
+import Fig.Prelude
+
+import System.Exit (ExitCode(..))
+import qualified System.Process as Proc
+
+import qualified Data.UUID as UUID
+import qualified Data.UUID.V4 as UUID
+import qualified Data.Text as Text
+
+import Fig.Web.Utils
+
+-- | Reset the password in LDAP for the specified user (creating the user if necessary)
+resetUserPassword :: MonadIO m => Config -> Text -> Text -> m (Maybe Text)
+resetUserPassword cfg user uid = do
+ let login = Text.toLower user
+ password <- UUID.toText <$> liftIO UUID.nextRandom
+ exitCode <- liftIO $ Proc.withCreateProcess
+ (Proc.proc cfg.lldapCli $ unpack <$>
+ [ "-H", cfg.lldapHost
+ , "-D", cfg.lldapUser
+ , "-w", cfg.lldapPassword
+ , "user", "add", login, login <> "@users.colonq.computer"
+ , "-p", password
+ , "-f", uid
+ ])
+ \_ _ _ h -> Proc.waitForProcess h
+ liftIO $ Proc.withCreateProcess
+ (Proc.proc cfg.lldapCli $ unpack <$>
+ [ "-H", cfg.lldapHost
+ , "-D", cfg.lldapUser
+ , "-w", cfg.lldapPassword
+ , "user", "group", "add", login, "fig_users"
+ ])
+ \_ _ _ h -> void $ Proc.waitForProcess h
+ case exitCode of
+ ExitSuccess -> pure $ Just password
+ ExitFailure _ -> pure Nothing
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-09 07:16:11 +0000