RSi؆$dZddlZddlZddlmZddlmZdgZGddZdZGd d Z ej 5ej d ddl Z ddl Z ddlZdddn #1swxYwYed d gz ZejZejZGdd ZGdd e eZn #e$rYnwxYw ddlZddlZddlZddlZddlZddlZeddgz ZGddZGdde eZdS#e$rYdSwxYw)aAn "authorizer" is a class handling authentications and permissions of the FTP server. It is used by pyftpdlib.handlers.FTPHandler class for: - verifying user password - getting user home directory - checking user permissions when a filesystem read/write event occurs - changing user when accessing the filesystem DummyAuthorizer is the main class which handles virtual users. UnixAuthorizer and WindowsAuthorizer are platform specific and interact with UNIX and Windows password database. N)AuthenticationFailed)AuthorizerErrorDummyAuthorizerceZdZdZdZdZdZ ddZdZd Z dd Z d Z d Z dZ dZdZddZdZdZdZdZdZdS)raBasic "dummy" authorizer class, suitable for subclassing to create your own custom authorizers. An "authorizer" is a class handling authentications and permissions of the FTP server. It is used inside FTPHandler class for verifying user's password, getting users home directory, checking user permissions when a file read/write event occurs and changing user before accessing the filesystem. DummyAuthorizer is the base authorizer, providing a platform independent interface for managing "virtual" FTP users. System dependent authorizers can by written by subclassing this base class and overriding appropriate methods as necessary. elradfmwMTci|_dSN user_table)selfs I/home/jrussi/.local/lib/python3.11/site-packages/pyftpdlib/authorizers.py__init__zDummyAuthorizer.__init__9s Login successful.Goodbye.c||rtd|dtj|std|tj|}|||t|||it|t|d}||j|<dS)aTAdd a user to the virtual users table. AuthorizerError exceptions raised on error conditions such as invalid permissions, missing home directory or duplicate usernames. Optional perm argument is a string referencing the user's permissions explained below: Read permissions: - "e" = change directory (CWD command) - "l" = list files (LIST, NLST, STAT, MLSD, MLST, SIZE, MDTM commands) - "r" = retrieve file from the server (RETR command) Write permissions: - "a" = append data to an existing file (APPE command) - "d" = delete file or directory (DELE, RMD commands) - "f" = rename file or directory (RNFR, RNTO commands) - "m" = create directory (MKD command) - "w" = store a file to the server (STOR, STOU commands) - "M" = change file mode (SITE CHMOD command) - "T" = update file last modified time (MFMT command) Optional msg_login and msg_quit arguments can be specified to provide customized response strings when user log-in and quit. user z already existsno such directory: )pwdhomepermoperms msg_loginmsg_quitN) has_user ValueErrorospathisdirrealpath_check_permissionsstrr )rusernamepasswordhomedirrrrdics radd_userzDummyAuthorizer.add_user<sD == " " B@X@@@AA Aw}}W%% @>7>>?? ?'""7++ $///x==YH   %(!!!rc 0tj|dd|fi|dS)a=Add an anonymous user to the virtual users table. AuthorizerError exception raised on error conditions such as invalid permissions, missing home directory, or duplicate anonymous users. The keyword arguments in kwargs are the same expected by add_user method: "perm", "msg_login" and "msg_quit". The optional "perm" keyword argument is a string defaulting to "elr" referencing "read-only" anonymous user's permissions. Using write permission values ("adfmwM") results in a RuntimeWarning. anonymousN)rr))rr'kwargss r add_anonymouszDummyAuthorizer.add_anonymousns)  {BJJ6JJJJJrc|j|=dS)z+Remove a user from the virtual users table.Nr rr%s r remove_userzDummyAuthorizer.remove_users OH % % %rFc|||tj|st d|tjtj|}tj||}||krt d|||st d||f|j |d|<dS)z+Override permissions for a given directory.rz)can't override home directory permissionsz path escapes user home directoryrN) r#rr r!rnormcaser" get_home_dir _issubpathr )rr% directoryr recursivers r override_permzDummyAuthorizer.override_perms $///w}}Y'' B@9@@AA AG$$RW%5%5i%@%@AA w 1 1( ; ;<<   HII Iy$// A?@@ @9=y!(+I666rcd}||s|dkrd}t||dkr&|j|d|krt|dSdS)zRaises AuthenticationFailed if supplied username and password don't match the stored credentials, else return None. Authentication failed.r+Anonymous access not allowed.rN)rrr )rr%r&handlermsgs rvalidate_authenticationz'DummyAuthorizer.validate_authenticationsy '}}X&& ,;&&5&s++ + { " "x(/8;;*3/// # ";;rc(|j|dS)zReturn the user's home directory. Since this is called during authentication (PASS), AuthenticationFailed can be freely raised by subclasses in case the provided username no longer exists. rr r0s rr4zDummyAuthorizer.get_home_dirs x(00rcdS)zImpersonate another user (noop). It is always called before accessing the filesystem. By default it does nothing. The subclass overriding this method is expected to provide a mechanism to change the current user. Nrr%r&s rimpersonate_userz DummyAuthorizer.impersonate_userrcdS)a Terminate impersonation (noop). It is always called after having accessed the filesystem. By default it does nothing. The subclass overriding this method is expected to provide a mechanism to switch back to the original user. NrAr0s rterminate_impersonationz'DummyAuthorizer.terminate_impersonationrDrc||jvS)z7Whether the username exists in the virtual users table.r r0s rrzDummyAuthorizer.has_users4?**rNc|||j|dvStj|}|j|dD]}|j|d|\}}|||rV|r||vcS||ksBtj||kr%tj|s||vcS||j|dvS)zWhether the user has permission over path (an absolute pathname of a file or a directory). Expected perm argument is one of the following letters: "elradfmwMT". Nrr)r rr r3r5dirnamer!)rr%rr diropermr7s rhas_permzDummyAuthorizer.has_perms <4?84V<< <w%%?8,X6 ) )C#x8B3G E9tS)) ))5=(((3;;GOOD))S00t9L9L05=(((tx0888rc(|j|dS)z Return current user permissions.rr r0s r get_permszDummyAuthorizer.get_permssx(00rc(|j|dS)z Return the user's login message.rr r0s r get_msg_loginzDummyAuthorizer.get_msg_loginsx(55rcL |j|dS#t$rYdSwxYw)z#Return the user's quitting message.rr)r KeyErrorr0s r get_msg_quitzDummyAuthorizer.get_msg_quits; ?8,Z8 8   :: s  ##cd}|D]T}||j|jzvrtd||dkr)||jvr |stjdt dd}UdS)Nrzno such permission r+z-write permissions assigned to anonymous user.) stacklevelr) read_perms write_permsrwarningswarnRuntimeWarning)rr%rwarnedps rr#z"DummyAuthorizer._check_permissionss  A$*:::: !Return True if a is a sub-path of b or if the paths are equal.N)rstriprsepsplitlen)rabp1p2s rr5zDummyAuthorizer._issubpathsa XXbf   # #BF + + XXbf   # #BF + +)CGG)}""r)rrr)Fr )__name__ __module__ __qualname____doc__rWrXrr)r.r1r8r>r4rCrFrrLrNrPrSr#r5rArrrr&s<  JK%0(0(0(0(dKKK$&&& I I I I 0 0 0111      +++9999.111666"#####rcfd}|S)zA decorator to replace anonymous user string passed to authorizer methods as first argument with the actual user used to handle anonymous sessions. c<|dkr |jp|}||g|Ri|SNr+)anonymous_user)rr%argsr-callables rwrapperz"replace_anonymous..wrappers= { " "*6hHxh8888888rrA)rprqs` rreplace_anonymousrrs# 99999 NrcdeZdZdZdZdZdZdZdZdZ ddZ d Z d Z d Z dd Zd ZdZdS)_Basez_Methods common to both Unix and Windows authorizers. Not supposed to be used directly. r:r;z#User %s doesn't have a valid shell.z User %s is not allowed to login.c|jr|jrtd|}|jp|jD]-}|dkrtd||vrtd|.|j||jstd|j||j}tj |std|jdSdS)z$Check for errors in the constructor.z?rejected_users and allowed_users options are mutually exclusiver+zinvalid username "anonymous"z unknown user N no such user zno valid home set for user ) rejected_users allowed_usersr_get_system_usersrnrr4rr r!)rusersuserrs rrz_Base.__init__s7   4#5 !)  &&((&=$*= > >D{""%&DEEE5  %&!"<("<"<== = t-8 8 8&1(; ''  N  "ry{{ JB O N     ?BDD " -h 7 ? ? ? ?rc<||dp|jS)Nr)_get_keyrr0s rrPz_Base.get_msg_login^s}}X{33Et~Erc<||dp|jS)Nr)rrr0s rrSz_Base.get_msg_quitas}}Xz22CdmCrcT||d}|r|S|dkrdS|jS)Nrr+r)r global_perm)rr%overridden_permss rrNz_Base.get_permsds===6::  $# # { " "5rc0|||vSr rNrr%rr s rrLz_Base.has_permlst~~h////rcj|j|r|jj||SdSr )r}rr )rr%keys rrz_Base._get_keyos>  ! * *8 4 4 D)4X>sC C D Drc`|jr ||jvrdSt|jo||jvS)zkReturn True if the user has been black listed via allowed_users or rejected_users options. T)rxboolrwr0s r_is_rejected_userz_Base._is_rejected_userss?   ($2D"D"D4D'KH8K,KLLLrNNNNNr )rgrhrirjmsg_no_such_usermsg_wrong_passwordmsg_anon_not_allowedmsg_invalid_shellmsg_rejected_userrrrPrSrNrLrrrArrrtrts01:=:6 +E+E+E+EZFFFDDD   0000DDDMMMMMrrtignoreBaseUnixAuthorizerUnixAuthorizerceZdZdZddZdZedZdZedZ edZ e d Z d Z d Zd Zdd ZdS)rzAn authorizer compatible with Unix user account and password database. This class should not be used directly unless for subclassing. Use higher-level UnixAuthorizer class instead. Nc tjdkstjst d||_|jF t j|jjdS#t$r}t d||d}~wwxYwdS)Nrz"super user privileges are requiredrv) rgeteuidspwdgetspallrrnrgetpwnampw_dirrR)rrnerrs rrzBaseUnixAuthorizer.__init__sz||q    %&JKKK"0D ".L!455<<<<)888/.s A)) B 3BB c,|dkr|jt|jdS tj|j}t j||}||krt|jdS#t$r}t|j |d}~wwxYw)zAuthenticates against shadow password db; raises AuthenticationFailed in case of failed authentication. r+N) rnrrrgetspnamsp_pwdcryptrrRr)rr%r&r<pw1pw2rs rr>z*BaseUnixAuthorizer.validate_authentications;&&&..t/HIII/.L-118C+h44Cczz243JKKK"z OOO.t/DEE3NOs.A// B9BBc tj|}tj|jtj|jdS#t$r}t|j |d}~wwxYw)z[Change process effective user/group ids to reflect logged in user. N) rrrsetegidpw_gidseteuidpw_uidrRrr)rr%r& pwdstructrs rrCz#BaseUnixAuthorizer.impersonate_users|  -L22  9+,,, 9+,,,,,  F F F%d&;<<#E FsA A.A))A.cjtjttjtdS)z(Revert process effective user/group IDs.N)rr PROCESS_GIDr PROCESS_UIDr0s rrFz*BaseUnixAuthorizer.terminate_impersonations( J{ # # # J{ # # # # #rc.||vS)zReturn True if user exists on the Unix system. If the user has been black listed via allowed_users or rejected_users options always return False. ryr0s rrzBaseUnixAuthorizer.has_users t55777 7rc tj|jS#t$r}t |j|d}~wwxYw)zReturn user home directory.N)rrrrRrr)rr%rs rr4zBaseUnixAuthorizer.get_home_dirsQ F|H--44 F F F%d&;<<#E Fs ?:?c<dtjDS)z,Return all users defined on the UNIX system.cg|] }|j SrA)pw_name.0entrys r z8BaseUnixAuthorizer._get_system_users..s>>>eEM>>>r)rgetpwallrArrryz$BaseUnixAuthorizer._get_system_userss?>s|~~>>> >rcdSNrrAr0s rrPz BaseUnixAuthorizer.get_msg_login&&rcdSNrrAr0s rrSzBaseUnixAuthorizer.get_msg_quit:rcdSN elradfmwMTrAr0s rrNzBaseUnixAuthorizer.get_perms>(333 3rr )rgrhrirjrr>rrrCrFrr4 staticmethodryrPrSrNrLrArrrrs      L L L"  - -   - $ $ $  8 8   8  F F   F  ? ?  ? ' ' '       4 4 4 4 4 4rceZdZdZ d dZ ddZd Zed Zed Z e d Z dS)raA wrapper on top of BaseUnixAuthorizer providing options to specify what users should be allowed to login, per-user options, etc. Example usages: >>> from pyftpdlib.authorizers import UnixAuthorizer >>> # accept all except root >>> auth = UnixAuthorizer(rejected_users=["root"]) >>> >>> # accept some users only >>> auth = UnixAuthorizer(allowed_users=["matt", "jay"]) >>> >>> # accept everybody and don't care if they have not a valid shell >>> auth = UnixAuthorizer(require_valid_shell=False) >>> >>> # set specific options for a user >>> auth.override_user("matt", password="foo", perm="elr") rNTrrct|||g}|g}||_||_||_||_||_||_||_t|_ |j d|t||r2|jD],}| |std|d+dSdS)aParameters: - (string) global_perm: a series of letters referencing the users permissions; defaults to "elradfmwMT" which means full read and write access for everybody (except anonymous). - (list) allowed_users: a list of users which are accepted for authenticating against the FTP server; defaults to [] (no restrictions). - (list) rejected_users: a list of users which are not accepted for authenticating against the FTP server; defaults to [] (no restrictions). - (bool) require_valid_shell: Deny access for those users which do not have a valid shell binary listed in /etc/shells. If /etc/shells cannot be found this is a no-op. Anonymous user is not subject to this option, and is free to not have a valid shell defined. Defaults to True (a valid shell is required for login). - (string) anonymous_user: specify it if you intend to provide anonymous access. The value expected is a string representing the system user to use for managing anonymous sessions; defaults to None (anonymous access disabled). - (string) msg_login: the string sent when client logs in. - (string) msg_quit: the string sent when client quits. Nr,rz has not a valid shell)rrrrxrwrnrequire_valid_shellrrrr}r#rt_has_valid_shellr) rrrxrwrrnrrr%s rrzUnixAuthorizer.__init__s Z  ' 'n = = =$ " %!#*D !.D "0D "0D ':D $&DN$DM%4%6%6D "  " 5 5b+ F F F NN4 "  $ 2H00::-DHDDD  rc |jr2|dkr,||st|j|zt|||||||dS)fOverrides the options specified in the class constructor for a specific user. r+N)rrrrrtrrs rrzUnixAuthorizer.override_userDsx' MH ,C,C,,X66M)$*@8*KLLL   h'4H     rc|dkr|jt|jdS||rt|j|z||d}|r||krt|jnt|||||j r2|dkr.| |st|j |zdSdSdS)Nr+r) rnrrrrrrrr>rrrrr%r&r<overridden_passwords rr>z&UnixAuthorizer.validate_authenticationYs;&&&..t/HIII%%h// N*4+AH+LMMM"&--%"@"@ " &(22.t/FGGG3#::(Hg' H ,C,C,,X66..9  ,C,Crc\||rdS||vSNFrryr0s rrzUnixAuthorizer.has_usern4%%h// ut55777 7rcl||d}|r|St||SNr)rrr4)rr%overridden_homes rr4zUnixAuthorizer.get_home_dirts9"mmHf==O '&&%224BB Brct td}|5 tj|j}n#t$rYddddSwxYw|D]@}|dr|}||krddddSA ddddS#1swxYwYdS#t$rYdSwxYw)zReturn True if the user has a valid shell binary listed in /etc/shells. If /etc/shells can't be found return True. z /etc/shellsNF#T)openrrpw_shellrR startswithstripFileNotFoundError)r%fileshelllines rrzUnixAuthorizer._has_valid_shell{sr  !M** ! !% # X 6 6 ?#%%%$ ! ! ! ! ! ! ! !% $((??3//%$#zz||5==#' ! ! ! ! ! ! ! !)  ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! ! !%   tt sGB)B/B ABA8B BB #B ) B76B7)rNNTNrrr) rgrhrirjrrr>rrrr4rrrArrrrs  0% $)B B B B N    *   *  8 8   8  C C   C  ! !  ! ! !rBaseWindowsAuthorizerWindowsAuthorizerceZdZdZddZdZedZdZedZ edZ e d Z d Z d Zd Zdd ZdS)rzAn authorizer compatible with Windows user account and password database. This class should not be used directly unless for subclassing. Use higher-level WinowsAuthorizer class instead. Nc||_||_|j7||j|j|ddSdSr )rnanonymous_passwordrCrF)rrnrs rrzBaseWindowsAuthorizer.__init__sb"0D &8D #".%%')@,,T22222 /.rc|dkr|jt|jdS tj|d|t jt jdS#tj $r}t|j |d}~wwxYwrm) rnrr win32security LogonUserwin32conLOGON32_LOGON_INTERACTIVELOGON32_PROVIDER_DEFAULT pywintypeserrorr)rr%r&r<rs rr>z-BaseWindowsAuthorizer.validate_authentications;&&&..t/HIII M'65 # M M M*4+BCCL Ms,AA<"A77A<ctj|d|tjtj}tj||dS)1Impersonate the security context of another user.N)rrrrrImpersonateLoggedOnUserClose)rr%r&r<s rrCz&BaseWindowsAuthorizer.impersonate_usersO$-21 G  1' : : : MMOOOOOrc,tjdS)z,Terminate the impersonation of another user.N)r RevertToSelfr0s rrFz-BaseWindowsAuthorizer.terminate_impersonations  & ( ( ( ( (rc.||vSr rr0s rrzBaseWindowsAuthorizer.has_userst55777 7rc tjtjd|d}n'#tj$r}t ||d}~wwxYwd}|d|zz } t jt j|}n%#t$r}t d||d}~wwxYwt j |dd}tj |}|S)z|Return the user's profile directory, the closest thing to a user home directory we have on Windows. NrzSOFTWARE\Microsoft\Windows NTz\CurrentVersion\ProfileList\z&No profile directory defined for user ProfileImagePath) rConvertSidToStringSidLookupAccountNamerrrwinregOpenKeyHKEY_LOCAL_MACHINEOSError QueryValueExwin32apiExpandEnvironmentStrings)rr%sidrr rvaluers rr4z"BaseWindowsAuthorizer.get_home_dirs  4#9!3D(CCAF# 4 4 4%c**3 43D 9C? ?D nV%>EE   %GXGG '-?@@CE4U;;DKs,-0AAA"B B$ BB$cLdtjdddDS)z/Return all users defined on the Windows system.cg|] }|d S)namerArs rrz;BaseWindowsAuthorizer._get_system_users..s)"'f rNr)win32net NetUserEnum)clss rryz'BaseWindowsAuthorizer._get_system_userss5 +3+?a+H+H+K rcdSrrAr0s rrPz#BaseWindowsAuthorizer.get_msg_loginrrcdSrrAr0s rrSz"BaseWindowsAuthorizer.get_msg_quitrrcdSrrAr0s rrNzBaseWindowsAuthorizer.get_permsrrc0|||vSr rrs rrLzBaseWindowsAuthorizer.has_permrr)NNr )rgrhrirjrr>rrrCrFrr4 classmethodryrPrSrNrLrArrrrs   3 3 3 3 M M M       ) ) )  8 8   8      ,      ' ' '       4 4 4 4 4 4rcreZdZdZ d dZ d dZdZd Zed Z ed Z dS)ragA wrapper on top of BaseWindowsAuthorizer providing options to specify what users should be allowed to login, per-user options, etc. Example usages: >>> from pyftpdlib.authorizers import WindowsAuthorizer >>> # accept all except Administrator >>> auth = WindowsAuthorizer(rejected_users=["Administrator"]) >>> >>> # accept some users only >>> auth = WindowsAuthorizer(allowed_users=["matt", "jay"]) >>> >>> # set specific options for a user >>> auth.override_user("matt", password="foo", perm="elr") rNrrc|g}|g}||_||_||_||_||_||_||_t|_|j d|t ||j7| |j|j| ddSdS)aParameters: - (string) global_perm: a series of letters referencing the users permissions; defaults to "elradfmwMT" which means full read and write access for everybody (except anonymous). - (list) allowed_users: a list of users which are accepted for authenticating against the FTP server; defaults to [] (no restrictions). - (list) rejected_users: a list of users which are not accepted for authenticating against the FTP server; defaults to [] (no restrictions). - (string) anonymous_user: specify it if you intend to provide anonymous access. The value expected is a string representing the system user to use for managing anonymous sessions. As for IIS, it is recommended to use Guest account. The common practice is to first enable the Guest user, which is disabled by default and then assign an empty password. Defaults to None (anonymous access disabled). - (string) anonymous_password: the password of the user who has been chosen to manage the anonymous sessions. Defaults to None (empty password). - (string) msg_login: the string sent when client logs in. - (string) msg_quit: the string sent when client quits. Nr,)rrxrwrnrrrrr}r#rtrrCrF)rrrxrwrnrrrs rrzWindowsAuthorizer.__init__sX$ " %!#*D !.D "0D "0D &8D #&DN$DM%4%6%6D "  " 5 5b+ F F F NN4 ".%%')@,,T22222 /.rc Ft|||||||dS)rN)rtrrs rrzWindowsAuthorizer.override_user\s5   h'4H     rc|dkr|jt|jdS|jr ||jvrt|j|z|jr ||jvrt|j|z||d}|r||krt|jdSt ||||dS)z]Authenticates against Windows user database; return True on success. r+Nr) rnrrrxrrwrrrr>rs rr>z)WindowsAuthorizer.validate_authenticationns;&&&..t/HIII! Nhd6H&H&H*4+AH+LMMM" Nx43F'F'F*4+AH+LMMM"&--%"@"@ " &(22.t/FGGG32&==(Hgrcn|dkr|jpd}|jpd}t|||dS)rr+r,N)rnrrrCrBs rrCz"WindowsAuthorizer.impersonate_usersE;&&.4"28b ! 2 248 L L L L Lrc\||rdS||vSrrr0s rrzWindowsAuthorizer.has_userrrcr||d}|r|}nt||}|Sr)rrr4)rr%rrs rr4zWindowsAuthorizer.get_home_dirs?"mmHf==O J&,99$IIKr)rNNNNrrr) rgrhrirjrrr>rCrrrr4rArrrrs  *%#)? 3? 3? 3? 3H    $   , M M M  8 8   8        r)rjrrY exceptionsrr__all__rrrrtcatch_warnings simplefilterrrrgetuidrgetgidrrr ImportErrorrrrrrrrrrArrrs   ,,,,,,'''''' R#R#R#R#R#R#R#R#j   &kMkMkMkMkMkMkMkMdP!  " "h'''    $&677G")++K")++KX4X4X4X4X4X4X4X4tg!g!g!g!g! 2g!g!g!g!G   D d@OOOOOOOOOMMM ')<==G`4`4`4`4`4`4`4`4DQQQQQE#8QQQQQS   DD sGB=A0$ B=0A44B=7A48B==CC DDD