3 # -d: dry-run: make no changes
4 # -r: replace: overwrite existing passwords (otherwise only "*" passwords will
6 # -b: blowfish replace: overwrite existing passwords only if they are
10 use vars qw(%part_svc);
11 use Term::Query qw(query);
12 use Net::SCP qw(iscp);
13 use FS::UID qw(adminsuidsetup datasrc);
14 use FS::Record qw(qsearch qsearchs);
18 use vars qw($opt_d $opt_r $opt_b);
21 my $user = shift or die &usage;
24 push @FS::svc_acct::shells, qw(/bin/sync /sbin/shutdown /bin/halt /sbin/halt); #others?
26 my($spooldir)="/usr/local/etc/freeside/export.". datasrc;
28 #$FS::svc_acct::nossh_hack = 1;
29 $FS::svc_Common::noexport_hack = 1;
33 %part_svc=map { $_->svcpart, $_ } qsearch('part_svc',{'svcdb'=>'svc_acct'});
35 die "No services with svcdb svc_acct!\n" unless %part_svc;
37 print "\n\n", &menu_svc, "\n", <<END;
38 Enter part number or part numbers to import.
40 my($shell_svcpart)=&getvalue;
41 my @shell_svcpart = split(/[,\s]+/, $shell_svcpart);
44 Enter the location and name of your _user_ shadow file, for example
45 "mail.isp.com:/etc/shadow" or "bsd.isp.com:/etc/master.passwd"
47 my($loc_shadow)=&getvalue(":");
48 iscp("root\@$loc_shadow", "$spooldir/shadow.import");
51 ( join "\n", map "$_: ".$part_svc{$_}->svc, sort keys %part_svc ). "\n";
54 $^W=0; # Term::Query isn't -w-safe
55 my $return = query "Enter part number:", 'irk', [ keys %part_svc ];
61 $^W=0; # Term::Query isn't -w-safe
62 my $return = query $prompt, '';
71 open(SHADOW,"<$spooldir/shadow.import");
77 my($username,$password)=split(/:/);
79 # my @svc_acct = grep { $_->cust_svc->svcpart == $shell_svcpart }
80 # qsearch('svc_acct', { 'username' => $username } );
82 my $svcpart = $_->cust_svc->svcpart;
83 grep { $_ == $svcpart } @shell_svcpart;
84 } qsearch('svc_acct', { 'username' => $username } );
86 next unless @svc_acct;
88 if ( scalar(@svc_acct) > 1 ) {
89 die "more than one $username found!\n";
93 my $svc_acct = shift @svc_acct;
95 next unless $svc_acct->_password eq '*'
97 || ( $opt_b && $svc_acct->_password =~ /^\$2a?\$/ );
99 next if $svc_acct->username eq 'root';
101 next if $password eq 'NP' || $password eq '*LK*';
103 next if $svc_acct->_password eq $password;
104 next if $svc_acct->_password =~ /^\*SUSPENDED\*/;
106 my $new_svc_acct = new FS::svc_acct( { $svc_acct->hash } );
107 $new_svc_acct->_password($password);
108 #warn "$username: ". $svc_acct->_password. " -> $password\n";
109 warn "changing password for $username\n";
111 my $error = $new_svc_acct->replace($svc_acct);
112 die "$username: $error" if $error;
119 warn "$updated of $line passwords changed\n";
122 die "Usage:\n\n shadow.reimport [ -d ] [ -r ] user\n";