-
Notifications
You must be signed in to change notification settings - Fork 13
/
Copy pathperms_monitor.py
105 lines (75 loc) · 2.85 KB
/
perms_monitor.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
#!/usr/bin/env python
"""
Deployment dir perms watcher/fixer.
This has to be run as root.
It monitors the deployment dirs created in $DATA_ROOT/<user>/upload and changes their ownership
to the user. This is to repair the web New Deployment button's creation.
"""
import time
import os
import argparse
import logging
import pwd
import grp
from watchdog.events import FileSystemEventHandler, DirCreatedEvent, FileModifiedEvent, DirModifiedEvent
from watchdog.observers import Observer
logging.basicConfig(level=logging.INFO,
format='[%(asctime)s | %(levelname)s] %(message)s')
logger = logging.getLogger(__name__)
class HandleDeploymentDir(FileSystemEventHandler):
def __init__(self, base):
self.base = base
def _fix_perms(self, path, rel_path, username, mode):
logger.info("New path: %s", rel_path)
# lookup username's uid/gid
uid = pwd.getpwnam(username).pw_uid
gid = grp.getgrnam('glider').gr_gid
logger.info("Changing %s to owner %s (%s)/group glider (%s)", rel_path, username, uid, gid)
os.chown(path, uid, gid)
os.chmod(path, mode)
def on_created(self, event):
if self.base not in event.src_path:
return
rel_path = os.path.relpath(event.src_path, self.base)
if isinstance(event, DirCreatedEvent):
# we only care about this path if it's under a user dir
# user/upload/deployment-name
path_parts = rel_path.split(os.sep)
if len(path_parts) != 3:
return
# Dir permissions
mode = 0o775
else:
# should resemble user/upload/deployment-name/wmo-file
path_parts = rel_path.split(os.sep)
if len(path_parts) != 4:
return
# only looking for wmoid.txt named files
if path_parts[-1] != "wmoid.txt":
return
# File permissions
mode = 0o664
# allow a slight delay so if the web app wants to create wmoid.txt it still can
time.sleep(5)
self._fix_perms(event.src_path, rel_path, path_parts[0], mode)
# Touch src directory so on_modified will get called
os.utime(event.src_path, None)
def main(handler):
observer = Observer()
observer.schedule(handler, path=handler.base, recursive=True)
observer.start()
logger.info("Watching user directories in %s", handler.base)
try:
while True:
time.sleep(1)
except KeyboardInterrupt:
observer.stop()
observer.join()
if __name__ == "__main__":
parser = argparse.ArgumentParser()
parser.add_argument('basedir',
default=os.environ.get('DATA_ROOT', '.'),
nargs='?')
args = parser.parse_args()
base = os.path.realpath(args.basedir)
main(HandleDeploymentDir(base))