Re-create subversion repository from live working directory.

svn path=/trunk/; revision=1

Author: Ross Golder

AUTHORS

@@ -0,0 +1 @@
+Ross Golder <[email protected]>

ChangeLog

@@ -0,0 +1,103 @@
+2006-10-10  Ross Golder  <[email protected]>
+	
+	* lib/authtoken.php: Added.
+	* lib/mysql.php: Minor variable renaming.
+	* lib/page.php: Remove unnecessary warning/error suppression.
+	* lib/config.php: Also check for '/var/www/mango/config.xml'.
+	* lib/foundationmember.php: No need for 'emaillink' stuff.
+	* www/*.xsl, www/default.css: Cosmetic updates.
+	* www/list_users.php: Unified/simplified filter keyword search.
+	* www/update_user.php: Broke into tabs and added form to assist in
+	  sending of templated e-mails.
+	* templates/authtoken_mail.xsl: Added.
+	* templates/welcome_mail.xsl: Added.
+
+2005-12-11  Ross Golder  <[email protected]>
+	
+	* www/page.xsl, www/*user*.php: Added access for members of the
+	  'accounts' group.
+
+2005-09-29  Ross Golder  <[email protected]>
+	
+	* lib/user.php: Setting SSH key(s) and group(s) wasn't working
+	  when adding a new user.
+
+2005-09-28  Ross Golder  <[email protected]>
+	
+	* lib/user.php: Added 'which_homedir' function.
+	* lib/user.php: Added 'which_shell' function.
+
+2005-08-30  Ross Golder  <[email protected]>
+	
+	* www/update_user.xsl, www/new_user.xsl: Re-arrange order of auth
+	  key upload/textarea. Added link to update from 'user added' message.
+	* www/update_user.php, www/new_user.xsl: De-duplicate keys and ignore
+	  empty keys.
+	* www/new_user.php, lib/users.php: Fixed uploading SSH keys when
+	  adding new users.
+	* lib/users.php: Add/remove 'pubkeyAuthenticationUser' class as necessary.
+	* lib/users.php: Add/remove homedirectory and shell as necessary (on
+	  joining/leaving ftpadmin group).
+	* lib/users.php: Lowered high watermark for fetching next UID to 10000 to
+	  stop it creating users with insanely high UIDs.
+
+2005-08-28  Ross Golder  <[email protected]>
+	
+	* www/list_users.php: Fix bad re-use of $node variable.
+	* www/default.css: Add 'tr.inactive' class selector.
+	* lib/foundationmember.php: Added 'first_added' field.
+	* lib/datefield.php: New utility class.
+	* lib/paged_results.php: Fixed bad re-use of $node variable.
+	* lib/mysql.php: New date-escaping functions.
+	* bin/convert_members.csv.py: The script I used to convert the
+	  CSV data Vincent supplied with the original membership.
+	* sql/foundationmembers.sql: Added to complement Vuntz's data and
+	  scripts for foundation membership management.
+	* sql/ftpmirrors.sql: Added for reference.
+	* config.xml: No need for this under version control - there's a template
+	  version there anyway.
+	* lib/config.php: Add 'session_path' config variable (for CGI use).
+	* www/index.php, www/login.php: Use 'common.php' like the rest.
+
+2005-08-24  Ross Golder  <[email protected]>
+
+	* www/*.php: Add shebangs as page scripts are to be CGI-executable.
+
+2005-08-17  Ross Golder  <[email protected]>
+
+	* www/page.xsl, www/login.xsl: Added links to foundation membership
+	  scripts for sysadmin and 'vuntz' groupies :)
+
+2005-08-17  Vincent Untz  <[email protected]>
+
+	* lib/foundationmember.php, www/*foundationmember*.[php|xsl]: New
+	  stuff for managing the foundation members database.
+
+2005-08-01  Ross Golder  <[email protected]>
+
+	* www/new_user.*: Add ability to upload SSH key (copied from
+	  update page).
+	* lib/user.php: Fixed a bug where lastname was added as description.
+	* secure/login.*: Moved to 'www/'. We're gonna host it all on https.
+	* secure/: Redundant, removed.
+	* www/index.xsl, www/page.xsl: Replaced 'secureurl' links with 'baseurl'
+	  links.
+	* www/login.xsl, lib/config.php, lib/page.php: Removed traces of
+	  'secureurl'.
+	* www/page.xsl: Fix broken 'mirrors' link at top of each page.
+	* www/list_ftpmirrors.*: Made filter apply to useful fields.
+	* www/lists.xml: New file for storing static lists.
+	* www/new_ftpmirror.xsl, www/update_ftpmirror.xsl: Made location
+	  field a listbox, usins lists.xml.
+	  
+2005-07-29  Ross Golder  <[email protected]>
+
+	* secure/common.xsl: Replaced testing URL with live one.
+	* www/update_user.xsl: Truncate displayed SSH keys for comfort.
+
+2005-07-28  Ross Golder  <[email protected]>
+
+	* Created initial ChangeLog.
+	* Added 'redirect' argument to login/page to save a click or two.
+
+

HACKING

@@ -0,0 +1,3 @@
+Ideas for extending this include:
+ * Making it into a 'self-service' application, where authenticated GNOME hackers can update their own details (SSH keys, e-mail addresses etc). Strong encryption/authentication/security measures would be a requirement here though, I think.
+ * Anonymous voting. The membership committee has officially requested a system to do this, and Mango provides a good basis. Work has already started on a basic interface for tracking members. Notes on where to go from there can be found here: <http://live.gnome.org/AnonymousVoting>.

INSTALL

@@ -0,0 +1,21 @@
+Roughly:
+
+1) Set up the virtualhost
+
+Create a new entry in /etc/hosts:
+
+127.0.0.123  mango.gnome.local
+
+You can use whatever you want for the IP and hostname, as long as Apache will respond to it. Next, add a virtualhost file in your Apache sites dir (/etc/httpd/sites.d for RedHat, /etc/apache/sites-available for Debian/Ubuntu).
+
+<VirtualHost 127.0.0.123:80>
+ServerName mango.gnome.local
+DocumentRoot /where/you/checked/out/mango/www
+</VirtualHost>
+
+Restart Apache for changes to take effect.
+
+2) Copy 'config-example.xml' to 'config.xml' and configure to taste. 
+
+3) Connect to http://mango.gnome.local/ (or whatever you set it up to be) and off you go.
+

MAINTAINERS

@@ -0,0 +1 @@
+Ross Golder <[email protected]>

README

@@ -0,0 +1,9 @@
+Mango web front-end to the GNOME LDAP and MySQL databases
+-----
+
+This package contains a simple, but extensible admin front-end for managing the gnome.org LDAP and MySQL databases. It's been carved out of some larger PHP projects I've been working on. It does quite a bit already, but it doesn't wash the dishes for you just yet.
+
+Why 'mango'? As you may know, naming a piece of software is one of the hardest things in software development (for me anyway). I happened to be eating a mango while trying to think of a name. I figured I could explain it to people as 'My Administration Nahdtang for Gnome.Org', which is lame, and nobody will realise that Nahdtang is Thai for Window. Still, it doesn't really matter if it's name stands for anything or not, as long is it has a unique name so it won't get confused with other systems that do a similar thing. Anyway, 'mango' is kind of a cool word. Enough said.
+
+--
+Ross Golder <[email protected]>

REQUIREMENTS

@@ -0,0 +1,22 @@
+Mango System Requirements
+-------------------------
+
+The GNOME sysadmin team need a better way to manage the data in the organisation's LDAP database and some of the mySQL databases.
+
+In particular, the accounts manager needs to be able to:
+
+- Add new users to the LDAP server.
+- Locate existing users (by login, name or e-mail address)
+- Update user's SSH keys, or contact details.
+- Add/remove users to/from particular groups (e.g. gnomecvs, ftpadmin etc)
+- Send one of the standard e-mail templates, pre-populated, with a '[email protected]' reply-to address set ;-)
+
+Additionally, the mirrors list manager needs to be able to:
+
+- List all known active/inactive mirrors.
+- Add/update/remove mirrors in the mirrors database.
+- Regenerate a central 'mirrors.xml' file somewhere, and trigger an XSLT process to generate 'mirrors.html' (or something like that) to keep the live mirrors list page up-to-date.
+
+This system needs to be able to authenticate the above types of user and allow them to perform their duties. In the future, there may be other classes of user (e.g. foundation membership administration).
+
+For bonus points, there should be a set of publicly accessible forms to allow people to request a CVS account, request a change of SSH key or contact details etc, which will pre-check certain inputs and send a copy of the request by e-mail to both the requestor (for reference/to identify abuse) and to [email protected] (to process the request). In the future, these processes can be automated even further etc.

bin/convert_members_csv.py

@@ -0,0 +1,38 @@
+#!/usr/bin/python
+
+def escape(value):
+	newvalue = ''
+	for ch in value[0:(len(value))]:
+		if ch == '\'':
+			newvalue = newvalue + '\\'
+		newvalue = newvalue + ch
+
+	return newvalue
+
+csvin = open('members.csv', 'r')
+sqlout = open('members.sql', 'w')
+
+linenum = 0
+while(1):
+	line = csvin.readline()
+	if(len(line) < 1):
+		break
+	linenum = linenum + 1
+	tokens = line.split(';')
+	if(len(tokens) != 4):
+		raise Error('Wrong number of tokens on line ' + linenum)
+	firstname = escape(tokens[0])
+	lastname = escape(tokens[1])
+	email = tokens[2]
+	first_added_yy = tokens[3][0:2]
+	first_added_mm = tokens[3][3:5]	
+	first_added_dd = tokens[3][6:8]
+	if(int(first_added_yy) > 90):
+		first_added_yy = "19" + first_added_yy
+	else:
+		first_added_yy = "20" + first_added_yy
+	first_added = first_added_yy + "-" + first_added_mm + "-" + first_added_dd
+	print >> sqlout, "INSERT INTO foundationmembers (firstname, lastname, email, first_added) VALUES ('" + firstname + "', '" + lastname + "', '" + email + "', '" + first_added + "');"
+
+csvin.close()
+sqlout.close()

bin/update-site.sh

@@ -0,0 +1,11 @@
+#!/usr/bin/perl -w
+
+while (<>)  {
+    if (/^UPDATE\s*([a-zA-Z0-9_+-.]*)\s*$/) {
+	#chdir("/var/www/mango");
+	chdir($ENV{'HOME'});
+	system qq(svn update);
+    } elsif (/^UPDATE/) {
+        system qq(echo "Bad UPDATE line: $_");
+    }
+}

config.xml-gnome

@@ -0,0 +1,17 @@
+<?xml version="1.0"?>
+<config>
+  <mode>development</mode>
+  <base_url>http://mango.gnome.org</base_url>
+  <secure_url>https://mango.gnome.org</secure_url>
+  <mirrors_db_url>mysql://gnome:[email protected]:3306/gnome</mirrors_db_url>
+  <membership_db_url>mysql://gnome:[email protected]:3306/gnome</membership_db_url>
+  <smtp_url>smtp://localhost/</smtp_url>
+  <ldap_url>ldap://localhost/</ldap_url>
+  <ldap_binddn>cn=Manager,dc=gnome,dc=org</ldap_binddn>
+  <ldap_bindpw>nottelling</ldap_bindpw>
+  <ldap_basedn>dc=gnome,dc=org</ldap_basedn>
+  <ldap_users_basedn>ou=people,dc=gnome,dc=org</ldap_users_basedn>
+  <ldap_groups_basedn>ou=groups,dc=gnome,dc=org</ldap_groups_basedn>
+  <support_email>[email protected]</support_email>
+  <session_path>/var/lib/mango/sessions</session_path>
+</config>