zhangyiss/the-littlest-jupyterhub
1
0
Fork 0
mirror of https://github.com/jupyterhub/the-littlest-jupyterhub.git synced 2025-12-18 21:54:05 +08:00
Code Issues Packages Projects Releases Wiki Activity

Allow adding users to specific groups

Browse Source
This commit is contained in:
GeorgianaElena
2019-06-20 21:54:51 +03:00
parent 55a5ac186e
commit da443ebd4b
4 changed files with 79 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

43
integration-tests/test_hub.py
View File

@@ -10,6 +10,7 @@ import pwd
import grp import grp
import sys import sys
import subprocess import subprocess
from os import system
from tljh.normalize import generate_system_username from tljh.normalize import generate_system_username
@@ -141,6 +142,48 @@ async def test_long_username():
raise raise
@pytest.mark.asyncio
async def test_user_group_adding():
"""
User logs in, and we check if they are added to the specified group.
"""
# This *must* be localhost, not an IP
# aiohttp throws away cookies if we are connecting to an IP!
hub_url = 'http://localhost'
username = secrets.token_hex(8)
groups = {"somegroup": [username]}
# Create the group we want to add the user to
system('groupadd somegroup')
assert 0 == await (await asyncio.create_subprocess_exec(*TLJH_CONFIG_PATH, 'set', 'auth.type', 'dummyauthenticator.DummyAuthenticator')).wait()
assert 0 == await (await asyncio.create_subprocess_exec(*TLJH_CONFIG_PATH, 'add-item', 'users.groups.somegroup', username)).wait()
assert 0 == await (await asyncio.create_subprocess_exec(*TLJH_CONFIG_PATH, 'reload')).wait()
try:
async with User(username, hub_url, partial(login_dummy, password='')) as u:
await u.login()
await u.ensure_server()
# Assert that the user exists
system_username = generate_system_username(f'jupyter-{username}')
assert pwd.getpwnam(system_username) is not None
# Assert that the user was added to the specified group
assert f'jupyter-{username}' in grp.getgrnam('somegroup').gr_mem
await u.stop_server()
# Delete the group
system('groupdel somegroup')
except:
# If we have any errors, print jupyterhub logs before exiting
subprocess.check_call([
'journalctl',
'-u', 'jupyterhub',
'--no-pager'
])
raise
@pytest.mark.asyncio @pytest.mark.asyncio
async def test_idle_server_culled(): async def test_idle_server_culled():
""" """

18
tests/test_configurer.py
View File

@@ -130,6 +130,24 @@ def test_auth_dummy():
assert c.DummyAuthenticator.password == 'test' assert c.DummyAuthenticator.password == 'test'
def test_user_groups():
"""
Test setting user groups
"""
c = apply_mock_config({
'users': {
'groups': {
"g1": ["u1", "u2"],
"g1": ["u3", "u4"]
},
}
})
assert c.UserCreatingSpawner.user_groups == {
"g1": ["u1", "u2"],
"g1": ["u3", "u4"]
}
def test_auth_firstuse(): def test_auth_firstuse():
""" """
Test setting FirstUse Authenticator options Test setting FirstUse Authenticator options

10
tljh/configurer.py
View File

@@ -27,6 +27,7 @@ default = {
'allowed': [], 'allowed': [],
'banned': [], 'banned': [],
'admin': [], 'admin': [],
'groups': {}
}, },
'limits': { 'limits': {
'memory': None, 'memory': None,
@@ -93,6 +94,7 @@ def apply_config(config_overrides, c):
update_auth(c, tljh_config) update_auth(c, tljh_config)
update_userlists(c, tljh_config) update_userlists(c, tljh_config)
update_usergroups(c, tljh_config)
update_limits(c, tljh_config) update_limits(c, tljh_config)
update_user_environment(c, tljh_config) update_user_environment(c, tljh_config)
update_user_account_config(c, tljh_config) update_user_account_config(c, tljh_config)
@@ -168,6 +170,14 @@ def update_userlists(c, config):
c.Authenticator.admin_users = set(users['admin']) c.Authenticator.admin_users = set(users['admin'])
def update_usergroups(c, config):
"""
Set user groups
"""
users = config['users']
c.UserCreatingSpawner.user_groups = users['groups']
def update_limits(c, config): def update_limits(c, config):
""" """
Set user server limits Set user server limits

8
tljh/jupyterhub_config.py
View File

@@ -13,12 +13,16 @@ from tljh.normalize import generate_system_username
from tljh.yaml import yaml from tljh.yaml import yaml
from jupyterhub_traefik_proxy import TraefikTomlProxy from jupyterhub_traefik_proxy import TraefikTomlProxy
from traitlets import Any
class UserCreatingSpawner(SystemdSpawner): class UserCreatingSpawner(SystemdSpawner):
""" """
SystemdSpawner with user creation on spawn. SystemdSpawner with user creation on spawn.
FIXME: Remove this somehow? FIXME: Remove this somehow?
""" """
user_groups = Any(config=True)
def start(self): def start(self):
""" """
Perform system user activities before starting server Perform system user activities before starting server
@@ -34,6 +38,10 @@ class UserCreatingSpawner(SystemdSpawner):
user.ensure_user_group(system_username, 'jupyterhub-admins') user.ensure_user_group(system_username, 'jupyterhub-admins')
else: else:
user.remove_user_group(system_username, 'jupyterhub-admins') user.remove_user_group(system_username, 'jupyterhub-admins')
if self.user_groups:
for group, users in self.user_groups.items():
if self.user.name in users:
user.ensure_user_group(system_username, group)
return super().start() return super().start()
c.JupyterHub.spawner_class = UserCreatingSpawner c.JupyterHub.spawner_class = UserCreatingSpawner