\input{libspwd}

\seemodule{spwd}{An interface to the shadow password database, similar to this.}

\section{\module{spwd} ---

The shadow password database}

\declaremodule{builtin}{spwd}

\platform{Unix}

\modulesynopsis{The shadow password database (\function{getspnam()} and friends).}

This module provides access to the \UNIX{} shadow password database.

It is available on various Unix versions.

You must have enough privileges to access the shadow password database

(this usually means you have to be root).

Shadow password database entries are reported as a tuple-like object, whose

attributes correspond to the members of the \code{spwd} structure

(Attribute field below, see \code{<shadow.h>}):

\begin{tableiii}{r|l|l}{textrm}{Index}{Attribute}{Meaning}

\lineiii{0}{\code{sp_nam}}{Login name}

\lineiii{1}{\code{sp_pwd}}{Encrypted password}

\lineiii{2}{\code{sp_lstchg}}{Date of last change}

\lineiii{3}{\code{sp_min}}{Minimal number of days between changes}

\lineiii{4}{\code{sp_max}}{Maximum number of days between changes}

\lineiii{5}{\code{sp_warn}}{Number of days before password expires to warn user about it}

\lineiii{6}{\code{sp_inact}}{Number of days after password expires until account is blocked}

\lineiii{7}{\code{sp_expire}}{Number of days since 1970-01-01 until account is disabled}

\lineiii{8}{\code{sp_flag}}{Reserved}

\end{tableiii}

The sp_nam and sp_pwd items are strings, all others are integers.

\exception{KeyError} is raised if the entry asked for cannot be found.

It defines the following items:

\begin{funcdesc}{getspnam}{name}

Return the shadow password database entry for the given user name.

\end{funcdesc}

\begin{funcdesc}{getspall}{}

Return a list of all available shadow password database entries, in arbitrary order.

\end{funcdesc}

\begin{seealso}

\seemodule{pwd}{An interface to the normal password database, similar to this.}

\end{seealso}

- The spwd has been added, allowing access to the shadow password database.

#include "Python.h"

#include "structseq.h"

#include <sys/types.h>

#ifdef HAVE_SHADOW_H

#include <shadow.h>

PyDoc_STRVAR(spwd__doc__,

You have to be root to be able to use this module.");

#if defined(HAVE_GETSPNAM) || defined(HAVE_GETSPENT)

static PyStructSequence_Field struct_spwd_type_fields[] = {

{"sp_nam", "login name"},

{"sp_pwd", "encrypted password"},

{"sp_lstchg", "date of last change"},

{"sp_min", "min #days between changes"},

{"sp_max", "max #days between changes"},

{"sp_warn", "#days before pw expires to warn user about it"},

{"sp_inact", "#days after pw expires until account is blocked"},

{"sp_expire", "#days since 1970-01-01 until account is disabled"},

{"sp_flag", "reserved"},

{0}

};

PyDoc_STRVAR(struct_spwd__doc__,

or via the object attributes as named in the above tuple.");

static PyStructSequence_Desc struct_spwd_type_desc = {

"spwd.struct_spwd",

struct_spwd__doc__,

struct_spwd_type_fields,

9,

};

static PyTypeObject StructSpwdType;

static void

sets(PyObject *v, int i, char* val)

{

if (val)

PyStructSequence_SET_ITEM(v, i, PyString_FromString(val));

else {

PyStructSequence_SET_ITEM(v, i, Py_None);

Py_INCREF(Py_None);

}

}

static PyObject *mkspent(struct spwd *p)

{

int setIndex = 0;

PyObject *v = PyStructSequence_New(&StructSpwdType);

if (v == NULL)

return NULL;

#define SETI(i,val) PyStructSequence_SET_ITEM(v, i, PyInt_FromLong((long) val))

#define SETS(i,val) sets(v, i, val)

SETS(setIndex++, p->sp_namp);

SETS(setIndex++, p->sp_pwdp);

SETI(setIndex++, p->sp_lstchg);

SETI(setIndex++, p->sp_min);

SETI(setIndex++, p->sp_max);

SETI(setIndex++, p->sp_warn);

SETI(setIndex++, p->sp_inact);

SETI(setIndex++, p->sp_expire);

SETI(setIndex++, p->sp_flag);

#undef SETS

#undef SETI

if (PyErr_Occurred()) {

Py_XDECREF(v);

return NULL;

}

return v;

}

#endif /* HAVE_GETSPNAM || HAVE_GETSPENT */

#ifdef HAVE_GETSPNAM

PyDoc_STRVAR(spwd_getspnam__doc__,

See spwd.__doc__ for more on shadow password database entries.");

static PyObject* spwd_getspnam(PyObject *self, PyObject *args)

{

char *name;

struct spwd *p;

if (!PyArg_ParseTuple(args, "s:getspnam", &name))

return NULL;

if ((p = getspnam(name)) == NULL) {

PyErr_SetString(PyExc_KeyError, "getspnam(): name not found");

return NULL;

}

return mkspent(p);

}

PyDoc_STRVAR(spwd_getspall__doc__,

See spwd.__doc__ for more on shadow password database entries.");

#endif /* HAVE_GETSPNAM */

#ifdef HAVE_GETSPENT

static PyObject *

spwd_getspall(PyObject *self, PyObject *args)

{

PyObject *d;

struct spwd *p;

if ((d = PyList_New(0)) == NULL)

return NULL;

setspent();

while ((p = getspent()) != NULL) {

PyObject *v = mkspent(p);

if (v == NULL || PyList_Append(d, v) != 0) {

Py_XDECREF(v);

Py_DECREF(d);

endspent();

return NULL;

}

Py_DECREF(v);

}

endspent();

return d;

}

#endif /* HAVE_GETSPENT */

static PyMethodDef spwd_methods[] = {

#ifdef HAVE_GETSPNAM

{"getspnam", spwd_getspnam, METH_VARARGS, spwd_getspnam__doc__},

#ifdef HAVE_GETSPENT

{"getspall", spwd_getspall, METH_NOARGS, spwd_getspall__doc__},

{NULL, NULL} /* sentinel */

};

initspwd(void)

{

PyObject *m;

m=Py_InitModule3("spwd", spwd_methods, spwd__doc__);

PyStructSequence_InitType(&StructSpwdType, &struct_spwd_type_desc);

Py_INCREF((PyObject *) &StructSpwdType);

PyModule_AddObject(m, "struct_spwd", (PyObject *) &StructSpwdType);

}