matteo
/
malcontent
1
0
Fork 0
Code Issues Pull Requests 2 Packages Projects Releases Wiki Activity
malcontent/malcontent-client/malcontent-client.py

545 lines
23 KiB
Python
Raw Permalink Normal View History

eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
#!/usr/bin/env python3
# -*- coding: utf-8 -*-
# Copyright © 2018 Endless Mobile, Inc.
#
# This library is free software; you can redistribute it and/or
# modify it under the terms of the GNU Lesser General Public
# License as published by the Free Software Foundation; either
# version 2.1 of the License, or (at your option) any later version.
#
# This library is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
# Lesser General Public License for more details.
#
# You should have received a copy of the GNU Lesser General Public License
# along with this library; if not, write to the Free Software Foundation, Inc.,
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
import argparse
malcontent-client: Add a `get-session-limits` command Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-06 18:07:19 +01:00
import datetime
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
import os
import pwd
import sys
import gi
Rename project from eos-parental-controls to malcontent Rename the library from libeos-parental-controls to libmalcontent, and the client from eos-parental-controls-client to malcontent-client. This was done using the following mechanical edits, and no other changes: ``` git search-replace -f EPC///MCT git search-replace -f Epc///Mct git search-replace -f epc///mct git search-replace -f eos_parental_controls///malcontent git search-replace -f eos-parental-controls///malcontent git search-replace -f EosParentalControls///Malcontent git search-replace -f 'eos\\-parental\\-controls///malcontent' git search-replace -f 'Since: 0.1.0///Since: 0.2.0' ``` Note that the accounts-service extension interface has *not* been renamed, as that would revert people’s parental controls settings in existing deployments. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-02-26 18:43:56 +01:00
gi.require_version('Malcontent', '0') # noqa
libmalcontent: Factor getting/setting app filter into a manager Create a new MctManager object which is used as the anchor for getting or setting MctAppFilters. This changes the API naming around quite a bit, but doesn’t really change its behaviour or functionality — see the tests for examples of how little things change. This is one step on the way to emitting a signal (from MctManager) when a user’s parental controls change. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://gitlab.freedesktop.org/pwithnall/malcontent/issues/1
2019-04-24 13:44:50 +02:00
from gi.repository import Malcontent, GLib, Gio
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
# Exit codes, which are a documented part of the API.
EXIT_SUCCESS = 0
EXIT_INVALID_OPTION = 1
EXIT_PERMISSION_DENIED = 2
EXIT_PATH_NOT_ALLOWED = 3
malcontent-client: Improve specificity of exit statuses Add a couple of missing exit statuses (and document them) and convert Malcontent errors to exit statuses more specifically. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:20:57 +01:00
EXIT_DISABLED = 4
EXIT_FAILED = 5
def __manager_error_to_exit_code(error):
if error.matches(Malcontent.manager_error_quark(),
Malcontent.ManagerError.INVALID_USER):
return EXIT_INVALID_OPTION
elif error.matches(Malcontent.manager_error_quark(),
Malcontent.ManagerError.PERMISSION_DENIED):
return EXIT_PERMISSION_DENIED
elif error.matches(Malcontent.manager_error_quark(),
Malcontent.ManagerError.INVALID_DATA):
return EXIT_INVALID_OPTION
elif error.matches(Malcontent.manager_error_quark(),
Malcontent.ManagerError.DISABLED):
return EXIT_DISABLED
return EXIT_FAILED
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
def __get_app_filter(user_id, interactive):
"""Get the app filter for `user_id` off the bus.
If `interactive` is `True`, interactive polkit authorisation dialogues will
be allowed. An exception will be raised on failure."""
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
if interactive:
libmalcontent: Rename flags types If we have a flag type for getting and for setting every type of value which can be stored on an `MctManager`, that will lead to a load of flag types which all look identical. Refactor the types so we only have one shared flags type for getters, and one for setters. Add compatibility defines so that this doesn’t break API. It’s not an ABI break because the flag member values don’t change. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-11 16:29:12 +01:00
flags = Malcontent.ManagerGetValueFlags.INTERACTIVE
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
else:
libmalcontent: Rename flags types If we have a flag type for getting and for setting every type of value which can be stored on an `MctManager`, that will lead to a load of flag types which all look identical. Refactor the types so we only have one shared flags type for getters, and one for setters. Add compatibility defines so that this doesn’t break API. It’s not an ABI break because the flag member values don’t change. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-11 16:29:12 +01:00
flags = Malcontent.ManagerGetValueFlags.NONE
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
libmalcontent: Factor getting/setting app filter into a manager Create a new MctManager object which is used as the anchor for getting or setting MctAppFilters. This changes the API naming around quite a bit, but doesn’t really change its behaviour or functionality — see the tests for examples of how little things change. This is one step on the way to emitting a signal (from MctManager) when a user’s parental controls change. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://gitlab.freedesktop.org/pwithnall/malcontent/issues/1
2019-04-24 13:44:50 +02:00
connection = Gio.bus_get_sync(Gio.BusType.SYSTEM)
manager = Malcontent.Manager.new(connection)
return manager.get_app_filter(
user_id=user_id,
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
flags=flags, cancellable=None)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
def __get_app_filter_or_error(user_id, interactive):
"""Wrapper around __get_app_filter() which prints an error and raises
SystemExit, rather than an internal exception."""
try:
return __get_app_filter(user_id, interactive)
except GLib.Error as e:
print('Error getting app filter for user {}: {}'.format(
user_id, e.message), file=sys.stderr)
malcontent-client: Improve specificity of exit statuses Add a couple of missing exit statuses (and document them) and convert Malcontent errors to exit statuses more specifically. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:20:57 +01:00
raise SystemExit(__manager_error_to_exit_code(e))
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
malcontent-client: Add a `get-session-limits` command Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-06 18:07:19 +01:00
def __get_session_limits(user_id, interactive):
"""Get the session limits for `user_id` off the bus.
If `interactive` is `True`, interactive polkit authorisation dialogues will
be allowed. An exception will be raised on failure."""
if interactive:
flags = Malcontent.ManagerGetValueFlags.INTERACTIVE
else:
flags = Malcontent.ManagerGetValueFlags.NONE
connection = Gio.bus_get_sync(Gio.BusType.SYSTEM)
manager = Malcontent.Manager.new(connection)
return manager.get_session_limits(
user_id=user_id,
flags=flags, cancellable=None)
def __get_session_limits_or_error(user_id, interactive):
"""Wrapper around __get_session_limits() which prints an error and raises
SystemExit, rather than an internal exception."""
try:
return __get_session_limits(user_id, interactive)
except GLib.Error as e:
print('Error getting session limits for user {}: {}'.format(
user_id, e.message), file=sys.stderr)
raise SystemExit(__manager_error_to_exit_code(e))
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
def __set_app_filter(user_id, app_filter, interactive):
"""Set the app filter for `user_id` off the bus.
If `interactive` is `True`, interactive polkit authorisation dialogues will
be allowed. An exception will be raised on failure."""
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
if interactive:
libmalcontent: Rename flags types If we have a flag type for getting and for setting every type of value which can be stored on an `MctManager`, that will lead to a load of flag types which all look identical. Refactor the types so we only have one shared flags type for getters, and one for setters. Add compatibility defines so that this doesn’t break API. It’s not an ABI break because the flag member values don’t change. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-11 16:29:12 +01:00
flags = Malcontent.ManagerSetValueFlags.INTERACTIVE
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
else:
libmalcontent: Rename flags types If we have a flag type for getting and for setting every type of value which can be stored on an `MctManager`, that will lead to a load of flag types which all look identical. Refactor the types so we only have one shared flags type for getters, and one for setters. Add compatibility defines so that this doesn’t break API. It’s not an ABI break because the flag member values don’t change. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-11 16:29:12 +01:00
flags = Malcontent.ManagerSetValueFlags.NONE
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
libmalcontent: Factor getting/setting app filter into a manager Create a new MctManager object which is used as the anchor for getting or setting MctAppFilters. This changes the API naming around quite a bit, but doesn’t really change its behaviour or functionality — see the tests for examples of how little things change. This is one step on the way to emitting a signal (from MctManager) when a user’s parental controls change. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://gitlab.freedesktop.org/pwithnall/malcontent/issues/1
2019-04-24 13:44:50 +02:00
connection = Gio.bus_get_sync(Gio.BusType.SYSTEM)
manager = Malcontent.Manager.new(connection)
manager.set_app_filter(
user_id=user_id, app_filter=app_filter,
lib: Change allow_interactive_authorization bool to flags This is an API break for the mct_{get,set}_app_filter() APIs, but makes them a bit clearer to use, and a little more future proof. This includes updates to all the tests and documentation. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-03-19 17:55:11 +01:00
flags=flags, cancellable=None)
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
def __set_app_filter_or_error(user_id, app_filter, interactive):
"""Wrapper around __set_app_filter() which prints an error and raises
SystemExit, rather than an internal exception."""
try:
__set_app_filter(user_id, app_filter, interactive)
except GLib.Error as e:
print('Error setting app filter for user {}: {}'.format(
user_id, e.message), file=sys.stderr)
malcontent-client: Improve specificity of exit statuses Add a couple of missing exit statuses (and document them) and convert Malcontent errors to exit statuses more specifically. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:20:57 +01:00
raise SystemExit(__manager_error_to_exit_code(e))
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
def __lookup_user_id(user_id_or_username):
"""Convert a command-line specified username or ID into a
(user ID, username) tuple, looking up the component which isnt specified.
If `user_id_or_username` is empty, use the current user ID.
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
Raise KeyError if lookup fails."""
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
if user_id_or_username == '':
user_id = os.getuid()
return (user_id, pwd.getpwuid(user_id).pw_name)
elif user_id_or_username.isdigit():
user_id = int(user_id_or_username)
return (user_id, pwd.getpwuid(user_id).pw_name)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
else:
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
username = user_id_or_username
return (pwd.getpwnam(username).pw_uid, username)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
def __lookup_user_id_or_error(user_id_or_username):
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
"""Wrapper around __lookup_user_id() which prints an error and raises
SystemExit, rather than an internal exception."""
try:
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
return __lookup_user_id(user_id_or_username)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
except KeyError:
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
print('Error getting ID for username {}'.format(user_id_or_username),
file=sys.stderr)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
raise SystemExit(EXIT_INVALID_OPTION)
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
oars_value_mapping = {
Rename project from eos-parental-controls to malcontent Rename the library from libeos-parental-controls to libmalcontent, and the client from eos-parental-controls-client to malcontent-client. This was done using the following mechanical edits, and no other changes: ``` git search-replace -f EPC///MCT git search-replace -f Epc///Mct git search-replace -f epc///mct git search-replace -f eos_parental_controls///malcontent git search-replace -f eos-parental-controls///malcontent git search-replace -f EosParentalControls///Malcontent git search-replace -f 'eos\\-parental\\-controls///malcontent' git search-replace -f 'Since: 0.1.0///Since: 0.2.0' ``` Note that the accounts-service extension interface has *not* been renamed, as that would revert people’s parental controls settings in existing deployments. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-02-26 18:43:56 +01:00
Malcontent.AppFilterOarsValue.UNKNOWN: "unknown",
Malcontent.AppFilterOarsValue.NONE: "none",
Malcontent.AppFilterOarsValue.MILD: "mild",
Malcontent.AppFilterOarsValue.MODERATE: "moderate",
Malcontent.AppFilterOarsValue.INTENSE: "intense",
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
}
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
def __oars_value_to_string(value):
Rename project from eos-parental-controls to malcontent Rename the library from libeos-parental-controls to libmalcontent, and the client from eos-parental-controls-client to malcontent-client. This was done using the following mechanical edits, and no other changes: ``` git search-replace -f EPC///MCT git search-replace -f Epc///Mct git search-replace -f epc///mct git search-replace -f eos_parental_controls///malcontent git search-replace -f eos-parental-controls///malcontent git search-replace -f EosParentalControls///Malcontent git search-replace -f 'eos\\-parental\\-controls///malcontent' git search-replace -f 'Since: 0.1.0///Since: 0.2.0' ``` Note that the accounts-service extension interface has *not* been renamed, as that would revert people’s parental controls settings in existing deployments. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-02-26 18:43:56 +01:00
"""Convert an Malcontent.AppFilterOarsValue to a human-readable
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
string."""
try:
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
return oars_value_mapping[value]
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
except KeyError:
return "invalid (OARS value {})".format(value)
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
def __oars_value_from_string(value_str):
"""Convert a human-readable string to an
Rename project from eos-parental-controls to malcontent Rename the library from libeos-parental-controls to libmalcontent, and the client from eos-parental-controls-client to malcontent-client. This was done using the following mechanical edits, and no other changes: ``` git search-replace -f EPC///MCT git search-replace -f Epc///Mct git search-replace -f epc///mct git search-replace -f eos_parental_controls///malcontent git search-replace -f eos-parental-controls///malcontent git search-replace -f EosParentalControls///Malcontent git search-replace -f 'eos\\-parental\\-controls///malcontent' git search-replace -f 'Since: 0.1.0///Since: 0.2.0' ``` Note that the accounts-service extension interface has *not* been renamed, as that would revert people’s parental controls settings in existing deployments. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-02-26 18:43:56 +01:00
Malcontent.AppFilterOarsValue."""
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
for k, v in oars_value_mapping.items():
if v == value_str:
return k
raise KeyError('Unknown OARS value {}'.format(value_str))
malcontent-client: Rename ‘get’ command to ‘get-app-filter’ There’ll be other types of getting happening soon. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-04 16:52:03 +01:00
def command_get_app_filter(user, quiet=False, interactive=True):
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
"""Get the app filter for the given user."""
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(user_id, username) = __lookup_user_id_or_error(user)
eos-parental-controls-client: Print app filter on ‘get’ Previously we just printed whether the filter was successfully retrieved, since there weren’t any non-parameterised getter functions on EpcAppFilter. Now we have some of them, we can print details of the app filter. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-13 12:46:24 +01:00
app_filter = __get_app_filter_or_error(user_id, interactive)
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
print('App filter for user {} retrieved:'.format(username))
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
eos-parental-controls-client: Print app filter on ‘get’ Previously we just printed whether the filter was successfully retrieved, since there weren’t any non-parameterised getter functions on EpcAppFilter. Now we have some of them, we can print details of the app filter. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-13 12:46:24 +01:00
sections = app_filter.get_oars_sections()
for section in sections:
value = app_filter.get_oars_value(section)
print(' {}: {}'.format(section, oars_value_mapping[value]))
if not sections:
print(' (No OARS values)')
accounts-service: Add allow-user-installation setting This controls whether the user can install to their user repository at all; if it’s true (the default), then installation of apps is still subject to the OARS filter. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-29 22:09:57 +01:00
if app_filter.is_user_installation_allowed():
print('App installation is allowed to user repository')
else:
print('App installation is disallowed to user repository')
accounts-service: Rename allow-app-installation to be system-specific This is in preparation for adding a second boolean for the flatpak user repository. Make the existing allow-app-installation boolean control permissions for the flatpak system repository. Having one boolean for each repository means we can allow users to install to their user repository by default (subject to OARS ratings), but not be allowed to install to the system repository. While changing the name and semantics of the boolean, flip its default value from True to False. Rather than letting any non-admin user install new apps by default (subject to OARS restrictions), re-limit it to admin users and users whose allow-system-installation key has been explicitly set to True by the admin. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-28 17:39:39 +01:00
if app_filter.is_system_installation_allowed():
print('App installation is allowed to system repository')
eos-parental-controls-client: Print app filter on ‘get’ Previously we just printed whether the filter was successfully retrieved, since there weren’t any non-parameterised getter functions on EpcAppFilter. Now we have some of them, we can print details of the app filter. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-13 12:46:24 +01:00
else:
accounts-service: Rename allow-app-installation to be system-specific This is in preparation for adding a second boolean for the flatpak user repository. Make the existing allow-app-installation boolean control permissions for the flatpak system repository. Having one boolean for each repository means we can allow users to install to their user repository by default (subject to OARS ratings), but not be allowed to install to the system repository. While changing the name and semantics of the boolean, flip its default value from True to False. Rather than letting any non-admin user install new apps by default (subject to OARS restrictions), re-limit it to admin users and users whose allow-system-installation key has been explicitly set to True by the admin. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-28 17:39:39 +01:00
print('App installation is disallowed to system repository')
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
malcontent-client: Add a `get-session-limits` command Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-06 18:07:19 +01:00
def command_get_session_limits(user, now=None, quiet=False, interactive=True):
"""Get the session limits for the given user."""
(user_id, username) = __lookup_user_id_or_error(user)
session_limits = __get_session_limits_or_error(user_id, interactive)
(user_allowed_now, time_remaining_secs, time_limit_enabled) = \
session_limits.check_time_remaining(now.timestamp() * GLib.USEC_PER_SEC)
if not time_limit_enabled:
print('Session limits are not enabled for user {}'.format(username))
elif user_allowed_now:
print('Session limits are enabled for user {}, and they have {} '
'seconds remaining'.format(username, time_remaining_secs))
else:
print('Session limits are enabled for user {}, and they have no time '
'remaining'.format(username))
malcontent-client: Add a ‘monitor’ mode to monitor app filter changes Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-04-24 14:42:43 +02:00
def command_monitor(user, quiet=False, interactive=True):
"""Monitor app filter changes for the given user."""
if user == '':
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(filter_user_id, filter_username) = (0, '')
malcontent-client: Add a ‘monitor’ mode to monitor app filter changes Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-04-24 14:42:43 +02:00
else:
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(filter_user_id, filter_username) = __lookup_user_id_or_error(user)
malcontent-client: Add a ‘monitor’ mode to monitor app filter changes Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-04-24 14:42:43 +02:00
apply_filter = (user != '')
def _on_app_filter_changed(manager, changed_user_id):
if not apply_filter or changed_user_id == filter_user_id:
print('App filter changed for user ID {}'.format(changed_user_id))
connection = Gio.bus_get_sync(Gio.BusType.SYSTEM)
manager = Malcontent.Manager.new(connection)
manager.connect('app-filter-changed', _on_app_filter_changed)
if apply_filter:
print('Monitoring app filter changes for '
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
'user {}'.format(filter_username))
malcontent-client: Add a ‘monitor’ mode to monitor app filter changes Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-04-24 14:42:43 +02:00
else:
print('Monitoring app filter changes for all users')
# Loop until Ctrl+C is pressed.
context = GLib.MainContext.default()
while True:
try:
context.iteration(may_block=True)
except KeyboardInterrupt:
break
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
# Simple check to check whether @arg is a valid flatpak ref - it uses the
# same logic as 'MctAppFilter' to determine it and should be kept in sync
# with its implementation
def is_valid_flatpak_ref(arg):
parts = arg.split('/')
return (len(parts) == 4 and \
(parts[0] == 'app' or parts[0] == 'runtime') and \
parts[1] != '' and parts[2] != '' and parts[3] != '')
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
# Simple check to check whether @arg is a valid content type - it uses the
# same logic as 'MctAppFilter' to determine it and should be kept in sync
# with its implementation
def is_valid_content_type(arg):
parts = arg.split('/')
return (len(parts) == 2 and \
parts[0] != '' and parts[1] != '')
malcontent-client: Rename ‘check’ command to ‘check-app-filter’ Since it operates only on the app filter. This updates the documentation too. No compatibility fallback is provided. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:00:52 +01:00
def command_check_app_filter(user, arg, quiet=False, interactive=True):
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
"""Check the given path, content type or flatpak ref is runnable by the
malcontent-client: Disambiguate usage of path The cmdline arguments may refer to both paths or flatpak refs so lets disambiguate here for clarity. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:44:51 +02:00
given user, according to their app filter."""
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(user_id, username) = __lookup_user_id_or_error(user)
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
app_filter = __get_app_filter_or_error(user_id, interactive)
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
is_maybe_flatpak_id = arg.startswith('app/') and arg.count('/') < 3
is_maybe_flatpak_ref = is_valid_flatpak_ref(arg)
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
# Only check if arg is a valid content type if not already considered a
# valid flatpak id, otherwise we always get multiple types recognised
# when passing flatpak IDs as argument
is_maybe_content_type = not is_maybe_flatpak_id and is_valid_content_type(arg)
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
is_maybe_path = os.path.exists(arg)
Add AppInfo support to malcontent-client check-app-filter
2023-12-07 11:10:53 +01:00
is_maybe_desktop_file = arg.endswith('.desktop')
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
recognised_types = sum([is_maybe_flatpak_id, is_maybe_flatpak_ref,
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
is_maybe_content_type, is_maybe_path])
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
if recognised_types == 0:
print('Unknown argument {}'.format(arg), file=sys.stderr)
raise SystemExit(EXIT_INVALID_OPTION)
elif recognised_types > 1:
print('Ambiguous argument {} recognised as multiple types'.format(arg),
file=sys.stderr)
raise SystemExit(EXIT_INVALID_OPTION)
elif is_maybe_flatpak_id:
libeos-parental-controls: Support matching against flatpak app IDs These are the app-specific part of a flatpak ref, and are what’s available when you have a .desktop file, via the X-Flatpak key in the .desktop file. For example, for a flatpak ref ‘app/org.gnome.Builder/x86_64/master’, the app ID is ‘org.gnome.Builder’. It makes sense that we’d want to match against app IDs in some situations, since the user probably doesn’t care about the architecture or branch of the app they want to proscribe. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24016
2018-11-14 16:17:18 +01:00
# Flatpak app ID
malcontent-client: Disambiguate usage of path The cmdline arguments may refer to both paths or flatpak refs so lets disambiguate here for clarity. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:44:51 +02:00
arg = arg[4:]
is_allowed = app_filter.is_flatpak_app_allowed(arg)
libeos-parental-controls: Support matching against flatpak app IDs These are the app-specific part of a flatpak ref, and are what’s available when you have a .desktop file, via the X-Flatpak key in the .desktop file. For example, for a flatpak ref ‘app/org.gnome.Builder/x86_64/master’, the app ID is ‘org.gnome.Builder’. It makes sense that we’d want to match against app IDs in some situations, since the user probably doesn’t care about the architecture or branch of the app they want to proscribe. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24016
2018-11-14 16:17:18 +01:00
noun = 'Flatpak app ID'
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
elif is_maybe_flatpak_ref:
libeos-parental-controls: Add support for flatpak refs As well as handling paths on the file system, we should allow flatpak refs to be explicitly handled in the app filter. Both refs and paths can be stored safely in the same app filter GStrv because paths are always absolute and refs always start with ‘app/’ or ‘runtime/’. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24020
2018-10-12 06:59:04 +02:00
# Flatpak ref
malcontent-client: Disambiguate usage of path The cmdline arguments may refer to both paths or flatpak refs so lets disambiguate here for clarity. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:44:51 +02:00
is_allowed = app_filter.is_flatpak_ref_allowed(arg)
libeos-parental-controls: Add support for flatpak refs As well as handling paths on the file system, we should allow flatpak refs to be explicitly handled in the app filter. Both refs and paths can be stored safely in the same app filter GStrv because paths are always absolute and refs always start with ‘app/’ or ‘runtime/’. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24020
2018-10-12 06:59:04 +02:00
noun = 'Flatpak ref'
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
elif is_maybe_content_type:
# Content type
is_allowed = app_filter.is_content_type_allowed(arg)
noun = 'Content type'
Add AppInfo support to malcontent-client check-app-filter
2023-12-07 11:10:53 +01:00
elif is_maybe_path and is_maybe_desktop_file
path = os.path.abspath(arg)
app_info = Gio.DesktopAppInfo.new_from_filename(path)
is_allowed = app_filter.is_appinfo_allowed(app_info)
noun = 'Desktop file'
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
elif is_maybe_path:
path = os.path.abspath(arg)
is_allowed = app_filter.is_path_allowed(path)
libeos-parental-controls: Add support for flatpak refs As well as handling paths on the file system, we should allow flatpak refs to be explicitly handled in the app filter. Both refs and paths can be stored safely in the same app filter GStrv because paths are always absolute and refs always start with ‘app/’ or ‘runtime/’. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24020
2018-10-12 06:59:04 +02:00
noun = 'Path'
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
else:
raise AssertionError('code should not be reached')
libeos-parental-controls: Add support for flatpak refs As well as handling paths on the file system, we should allow flatpak refs to be explicitly handled in the app filter. Both refs and paths can be stored safely in the same app filter GStrv because paths are always absolute and refs always start with ‘app/’ or ‘runtime/’. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24020
2018-10-12 06:59:04 +02:00
if is_allowed:
malcontent-client: Implement --quiet for check subcommand When run with `--quiet`, the `check` subcommand will now print nothing. It continues to exit with an appropriate exit status. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-06-11 16:00:26 +02:00
if not quiet:
print('{} {} is allowed by app filter for user {}'.format(
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
noun, arg, username))
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
return
else:
malcontent-client: Implement --quiet for check subcommand When run with `--quiet`, the `check` subcommand will now print nothing. It continues to exit with an appropriate exit status. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-06-11 16:00:26 +02:00
if not quiet:
print('{} {} is not allowed by app filter for user {}'.format(
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
noun, arg, username))
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
raise SystemExit(EXIT_PATH_NOT_ALLOWED)
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
def command_oars_section(user, section, quiet=False, interactive=True):
"""Get the value of the given OARS section for the given user, according
to their OARS filter."""
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(user_id, username) = __lookup_user_id_or_error(user)
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
app_filter = __get_app_filter_or_error(user_id, interactive)
value = app_filter.get_oars_value(section)
print('OARS section {} for user {} has value {}'.format(
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
section, username, __oars_value_to_string(value)))
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
malcontent-client: Rename ‘set’ command to ‘set-app-filter’ Since it operates only on the app filter. This doesn’t update the documentation because none has been written for this command yet. No compatibility fallback is provided. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:29:05 +01:00
def command_set_app_filter(user, allow_user_installation=True,
allow_system_installation=False,
app_filter_args=None, quiet=False,
interactive=True):
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
"""Set the app filter for the given user."""
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
(user_id, username) = __lookup_user_id_or_error(user)
Rename project from eos-parental-controls to malcontent Rename the library from libeos-parental-controls to libmalcontent, and the client from eos-parental-controls-client to malcontent-client. This was done using the following mechanical edits, and no other changes: ``` git search-replace -f EPC///MCT git search-replace -f Epc///Mct git search-replace -f epc///mct git search-replace -f eos_parental_controls///malcontent git search-replace -f eos-parental-controls///malcontent git search-replace -f EosParentalControls///Malcontent git search-replace -f 'eos\\-parental\\-controls///malcontent' git search-replace -f 'Since: 0.1.0///Since: 0.2.0' ``` Note that the accounts-service extension interface has *not* been renamed, as that would revert people’s parental controls settings in existing deployments. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-02-26 18:43:56 +01:00
builder = Malcontent.AppFilterBuilder.new()
accounts-service: Add allow-user-installation setting This controls whether the user can install to their user repository at all; if it’s true (the default), then installation of apps is still subject to the OARS filter. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-29 22:09:57 +01:00
builder.set_allow_user_installation(allow_user_installation)
accounts-service: Rename allow-app-installation to be system-specific This is in preparation for adding a second boolean for the flatpak user repository. Make the existing allow-app-installation boolean control permissions for the flatpak system repository. Having one boolean for each repository means we can allow users to install to their user repository by default (subject to OARS ratings), but not be allowed to install to the system repository. While changing the name and semantics of the boolean, flip its default value from True to False. Rather than letting any non-admin user install new apps by default (subject to OARS restrictions), re-limit it to admin users and users whose allow-system-installation key has been explicitly set to True by the admin. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24457
2018-11-28 17:39:39 +01:00
builder.set_allow_system_installation(allow_system_installation)
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
for arg in app_filter_args:
if '=' in arg:
[section, value_str] = arg.split('=', 2)
try:
value = __oars_value_from_string(value_str)
except KeyError:
print('Unknown OARS value {}'.format(value_str),
file=sys.stderr)
raise SystemExit(EXIT_INVALID_OPTION)
builder.set_oars_value(section, value)
else:
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
is_maybe_flatpak_ref = is_valid_flatpak_ref(arg)
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
is_maybe_content_type = is_valid_content_type(arg)
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
is_maybe_path = os.path.exists(arg)
recognised_types = sum([is_maybe_flatpak_ref,
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
is_maybe_content_type, is_maybe_path])
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
if recognised_types == 0:
print('Unknown argument {}'.format(arg), file=sys.stderr)
raise SystemExit(EXIT_INVALID_OPTION)
elif recognised_types > 1:
print('Ambiguous argument {} recognised as multiple types'.format(arg),
file=sys.stderr)
raise SystemExit(EXIT_INVALID_OPTION)
elif is_maybe_flatpak_ref:
tree-wide: Replace usages of whitelist/blacklist Replace usages of the terms whitelist and blacklist with the more inclusive and more precise terms allowlist and blocklist, which are actually also more consistent with parts of the codebase, e.g. mct_app_filter_is_content_type_allowed(). The only API break here is in libmalcontent/app-filter.h but the relevant API is not used anywhere else in Endless OS beyond this repo, nor to my knowledge in any other distribution. Also, per the README, this project's API is not stable, so now is a good time to make this change.
2020-06-10 00:30:39 +02:00
builder.blocklist_flatpak_ref(arg)
malcontent-client: Allow getting/setting filters by content type Note that this change breaks backward compatibility when handling content types if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-13 03:48:29 +02:00
elif is_maybe_content_type:
tree-wide: Replace usages of whitelist/blacklist Replace usages of the terms whitelist and blacklist with the more inclusive and more precise terms allowlist and blocklist, which are actually also more consistent with parts of the codebase, e.g. mct_app_filter_is_content_type_allowed(). The only API break here is in libmalcontent/app-filter.h but the relevant API is not used anywhere else in Endless OS beyond this repo, nor to my knowledge in any other distribution. Also, per the README, this project's API is not stable, so now is a good time to make this change.
2020-06-10 00:30:39 +02:00
builder.blocklist_content_type(arg)
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
elif is_maybe_path:
path = os.path.abspath(arg)
tree-wide: Replace usages of whitelist/blacklist Replace usages of the terms whitelist and blacklist with the more inclusive and more precise terms allowlist and blocklist, which are actually also more consistent with parts of the codebase, e.g. mct_app_filter_is_content_type_allowed(). The only API break here is in libmalcontent/app-filter.h but the relevant API is not used anywhere else in Endless OS beyond this repo, nor to my knowledge in any other distribution. Also, per the README, this project's API is not stable, so now is a good time to make this change.
2020-06-10 00:30:39 +02:00
builder.blocklist_path(path)
malcontent-client: Refactor logic to determine type of argument for check/set Note that this change breaks backward compatibility when handling flatpak refs/IDs if the passed argument also resolves to a valid path, in which case an exception will be raised. Signed-off-by: Andre Moreira Magalhaes <andre@endlessm.com>
2019-06-14 03:00:51 +02:00
else:
raise AssertionError('code should not be reached')
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
app_filter = builder.end()
__set_app_filter_or_error(user_id, app_filter, interactive)
malcontent-client: Implement --quiet for set subcommand While not entirely quiet on error, the `set` subcommand is now quieter. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-06-11 16:01:08 +02:00
if not quiet:
malcontent-client: Print usernames rather than user IDs in output This makes the output a little easier to interpret. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:28:11 +01:00
print('App filter for user {} set'.format(username))
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
def main():
# Parse command line arguments
parser = argparse.ArgumentParser(
description='Query and update parental controls.')
subparsers = parser.add_subparsers(metavar='command',
malcontent-client: Rename ‘get’ command to ‘get-app-filter’ There’ll be other types of getting happening soon. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-04 16:52:03 +01:00
help='command to run (default: '
'get-app-filter)')
malcontent-client: Fix error when running with no arguments The default value for the `user` argument wasn’t looked up, since parsing an empty command line doesn’t go through the `parser_get_app_filter` subparser. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 14:26:21 +01:00
parser.set_defaults(function=command_get_app_filter, user='')
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
parser.add_argument('-q', '--quiet', action='store_true',
help='output no informational messages')
parser.set_defaults(quiet=False)
# Common options for the subcommands which might need authorisation.
common_parser = argparse.ArgumentParser(add_help=False)
group = common_parser.add_mutually_exclusive_group()
group.add_argument('-n', '--no-interactive', dest='interactive',
action='store_false',
help='do not allow interactive polkit authorization '
'dialogues')
group.add_argument('--interactive', dest='interactive',
action='store_true',
help='opposite of --no-interactive')
common_parser.set_defaults(interactive=True)
malcontent-client: Rename ‘get’ command to ‘get-app-filter’ There’ll be other types of getting happening soon. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-04 16:52:03 +01:00
# get-app-filter command
parser_get_app_filter = \
subparsers.add_parser('get-app-filter',
parents=[common_parser],
help='get current app filter settings')
parser_get_app_filter.set_defaults(function=command_get_app_filter)
parser_get_app_filter.add_argument('user', default='', nargs='?',
help='user ID or username to get the '
'app filter for (default: current '
'user)')
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
malcontent-client: Add a `get-session-limits` command Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-12-06 18:07:19 +01:00
# get-session-limits command
parser_get_session_limits = \
subparsers.add_parser('get-session-limits',
parents=[common_parser],
help='get current session limit settings')
parser_get_session_limits.set_defaults(function=command_get_session_limits)
parser_get_session_limits.add_argument('user', default='', nargs='?',
help='user ID or username to get '
'the session limits for (default: '
'current user)')
parser_get_session_limits.add_argument(
'--now',
metavar='yyyy-mm-ddThh:mm:ssZ',
type=lambda d: datetime.datetime.strptime(d, '%Y-%m-%dT%H:%M:%S%z'),
default=datetime.datetime.now(),
help='date/time to use as the value for now (default: wall clock '
'time)')
malcontent-client: Add a ‘monitor’ mode to monitor app filter changes Signed-off-by: Philip Withnall <withnall@endlessm.com>
2019-04-24 14:42:43 +02:00
# monitor command
parser_monitor = subparsers.add_parser('monitor',
help='monitor parental controls '
'settings changes')
parser_monitor.set_defaults(function=command_monitor)
parser_monitor.add_argument('user', default='', nargs='?',
help='user ID or username to monitor the app '
'filter for (default: all users)')
malcontent-client: Rename ‘check’ command to ‘check-app-filter’ Since it operates only on the app filter. This updates the documentation too. No compatibility fallback is provided. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:00:52 +01:00
# check-app-filter command
parser_check_app_filter = \
subparsers.add_parser('check-app-filter', parents=[common_parser],
help='check whether a path, content type or '
'flatpak ref is allowed by app filter')
parser_check_app_filter.set_defaults(function=command_check_app_filter)
parser_check_app_filter.add_argument('user', default='', nargs='?',
help='user ID or username to get the '
'app filter for (default: '
'current user)')
parser_check_app_filter.add_argument('arg',
help='path to a program, content '
'type or flatpak ref to check')
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
eos-parental-controls-client: Add OARS filter support This basic support will return the value of a given OARS section to the caller. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23999
2018-10-09 12:25:39 +02:00
# oars-section command
parser_oars_section = subparsers.add_parser('oars-section',
parents=[common_parser],
help='get the value of a '
'given OARS section')
parser_oars_section.set_defaults(function=command_oars_section)
parser_oars_section.add_argument('user', default='', nargs='?',
help='user ID or username to get the '
'OARS filter for (default: current '
'user)')
parser_oars_section.add_argument('section', help='OARS section to get')
malcontent-client: Rename ‘set’ command to ‘set-app-filter’ Since it operates only on the app filter. This doesn’t update the documentation because none has been written for this command yet. No compatibility fallback is provided. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:29:05 +01:00
# set-app-filter command
parser_set_app_filter = \
subparsers.add_parser('set-app-filter', parents=[common_parser],
help='set current app filter settings')
parser_set_app_filter.set_defaults(function=command_set_app_filter)
parser_set_app_filter.add_argument('user', default='', nargs='?',
help='user ID or username to set the '
'app filter for (default: current '
'user)')
parser_set_app_filter.add_argument('--allow-user-installation',
dest='allow_user_installation',
action='store_true',
help='allow installation to the user '
'flatpak repo in general')
parser_set_app_filter.add_argument('--disallow-user-installation',
dest='allow_user_installation',
action='store_false',
help='unconditionally disallow '
'installation to the user flatpak '
'repo')
parser_set_app_filter.add_argument('--allow-system-installation',
dest='allow_system_installation',
action='store_true',
help='allow installation to the system '
'flatpak repo in general')
parser_set_app_filter.add_argument('--disallow-system-installation',
dest='allow_system_installation',
action='store_false',
help='unconditionally disallow '
'installation to the system '
'flatpak repo')
parser_set_app_filter.add_argument('app_filter_args', nargs='*',
help='paths, content types or flatpak '
tree-wide: Replace usages of whitelist/blacklist Replace usages of the terms whitelist and blacklist with the more inclusive and more precise terms allowlist and blocklist, which are actually also more consistent with parts of the codebase, e.g. mct_app_filter_is_content_type_allowed(). The only API break here is in libmalcontent/app-filter.h but the relevant API is not used anywhere else in Endless OS beyond this repo, nor to my knowledge in any other distribution. Also, per the README, this project's API is not stable, so now is a good time to make this change.
2020-06-10 00:30:39 +02:00
'refs to blocklist and OARS '
malcontent-client: Rename ‘set’ command to ‘set-app-filter’ Since it operates only on the app filter. This doesn’t update the documentation because none has been written for this command yet. No compatibility fallback is provided. Signed-off-by: Philip Withnall <withnall@endlessm.com>
2020-01-16 12:29:05 +01:00
'section=value pairs to store')
parser_set_app_filter.set_defaults(allow_user_installation=True,
allow_system_installation=False)
eos-parental-controls-client: Add a ‘set’ command This allows the app filter to be set, using the new library API for it. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T24025
2018-10-12 05:48:29 +02:00
eos-parental-controls-client: Add simple client program This allows querying of the parental controls for a given user (or the current user). Includes documentation but no tests yet. Signed-off-by: Philip Withnall <withnall@endlessm.com> https://phabricator.endlessm.com/T23859
2018-10-02 18:03:33 +02:00
# Parse the command line arguments and run the subcommand.
args = parser.parse_args()
args_dict = dict((k, v) for k, v in vars(args).items() if k != 'function')
args.function(**args_dict)
if __name__ == '__main__':
main()