Example 96 with Action
use of com.hp.oo.sdk.content.annotations.Action in project cs-actions by CloudSlang.
the class AuthenticateUserAction method execute.
/**
* This operation authenticates a user in Active Directory.
*
* @param host The IP or host name of the domain controller. The port number can be mentioned as well,
* along with the host (hostNameOrIP:PortNumber).
* Examples: test.example.com, test.example.com:636, <IPv4Address>, <IPv6Address>,
* [<IPv6Address>]:<PortNumber> etc.
* Value format: The format of an IPv4 address is: [0-225].[0-225].[0-225].[0-225]. The format of an
* IPv6 address is ####:####:####:####:####:####:####:####/### (with a prefix), where each #### is
* a hexadecimal value between 0 to FFFF and the prefix /### is a decimal value between 0 to 128.
* The prefix length is optional.
* @param rootDistinguishedName The distinguished name of the root element whose subtree you want to search in.
* Example: CN=Users,DC=domain,DC=com.
* @param username The user's windows username. The only valid format is domain/username.
* @param password The user's password.
* @param protocol The protocol to use when connecting to the Active Directory server.
* Valid values: HTTP and HTTPS.
* @param proxyHost The proxy server used to access the web site.
* @param proxyPort The proxy server port.
* Default value: 8080.
* @param proxyUsername The username used when connecting to the proxy.
* @param proxyPassword The proxy server password associated with the "proxyUsername" input value.
* @param tlsVersion The version of TLS to use. The value of this input will be ignored if "protocol"
* is set to "HTTP". This capability is provided “as is”, please see product documentation
* for further information.
* Valid values: TLSv1, TLSv1.1, TLSv1.2.
* Default value: TLSv1.2.
* @param allowedCiphers A list of ciphers to use. The value of this input will be ignored if 'tlsVersion' does
* not contain 'TLSv1.2'. This capability is provided “as is”, please see product documentation
* for further security considerations. In order to connect successfully to the target host,
* it should accept at least one of the following ciphers. If this is not the case, it is
* the user's responsibility to configure the host accordingly or to update the list of
* allowed ciphers.
* Default value: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
* TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
* TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_AES_256_CBC_SHA256,
* TLS_RSA_WITH_AES_128_CBC_SHA256.
* @param trustAllRoots Specifies whether to enable weak security over SSL. A SSL certificate is trusted
* even if no trusted certification authority issued it.
* Valid values: true, false.
* Default value: false.
* @param x509HostnameVerifier Specifies the way the server hostname must match a domain name in the subject's Common
* Name (CN) or subjectAltName field of the X.509 certificate. Set this to "allow_all" to
* skip any checking, but you become vulnerable to attacks.
* For the value "browser_compatible" the hostname verifier works the same way as Curl
* and Firefox. The hostname must match either the first CN, or any of the subject-alts.
* A wildcard can occur in the CN, and in any of the subject-alts. The only difference
* between "browser_compatible" and "strict" is that a wildcard (such as "*.foo.com")
* with "browser_compatible" matches all subdomains, including "a.b.foo.com". From the
* security perspective, to provide protection against possible Man-In-The-Middle attacks,
* we strongly recommend to use "strict" option.
* Default value: strict.
* Valid values: strict, browser_compatible, allow_all.
* @param trustKeystore The location of the TrustStore file.
* Example: %JAVA_HOME%/jre/lib/security/cacerts
* @param trustPassword The password associated with the TrustStore file.
* @param timeout Time in seconds to wait for the command to complete.
* Default value: 60.
* @return a map containing the output of the operation. Keys present in the map are:
* returnResult - A message which specifies if the user was authenticated against Active Directory in case of success or an error
* message in case of failure.
* returnCode - The return code of the operation. 0 if the operation succeded, -1 if the operation fails.
* exception - The exception message if the operation fails.
*/
@Action(name = "Authenticate User", description = AUTHENTICATE_USER_DESC, outputs = { @Output(value = OutputNames.RETURN_RESULT, description = RETURN_RESULT_DESC), @Output(value = OutputNames.RETURN_CODE, description = RETURN_CODE_DESC), @Output(value = OutputNames.EXCEPTION, description = EXCEPTION_DESC) }, responses = { @Response(text = ResponseNames.SUCCESS, field = OutputNames.RETURN_CODE, value = ReturnCodes.SUCCESS, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.RESOLVED, description = SUCCESS_DESC), @Response(text = ResponseNames.FAILURE, field = OutputNames.RETURN_CODE, value = ReturnCodes.FAILURE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.ERROR, description = FAILURE_DESC) })
public Map<String, String> execute(@Param(value = InputNames.HOST, required = true, description = HOST_DESC) String host, @Param(value = InputNames.PROTOCOL, description = PROTOCOL_DESC) String protocol, @Param(value = InputNames.USERNAME, required = true, description = USERNAME_DESC) String username, @Param(value = InputNames.PASSWORD, encrypted = true, required = true, description = PASSWORD_DESC) String password, @Param(value = InputNames.ROOT_DISTINGUISHED_NAME, required = true, description = ROOT_DISTINGUISHED_NAME_DESC) String rootDistinguishedName, @Param(value = InputNames.PROXY_HOST, description = PROXY_HOST_DESC) String proxyHost, @Param(value = InputNames.PROXY_PORT, description = PROXY_PORT_DESC) String proxyPort, @Param(value = InputNames.PROXY_USERNAME, description = PROXY_USERNAME_DESC) String proxyUsername, @Param(value = InputNames.PROXY_PASSWORD, description = PROXY_PASSWORD_DESC) String proxyPassword, @Param(value = InputNames.TLS_VERSION, description = TLS_VERSION_DESC) String tlsVersion, @Param(value = InputNames.ALLOWED_CIPHERS, description = ALLOWED_CIPHERS_DESC) String allowedCiphers, @Param(value = InputNames.X_509_HOSTNAME_VERIFIER, description = X_509_DESC) String x509HostnameVerifier, @Param(value = InputNames.TRUST_ALL_ROOTS, description = TRUST_ALL_ROOTS_DESC) String trustAllRoots, @Param(value = InputNames.TRUST_KEYSTORE, description = TRUST_KEYSTORE_DESC) String trustKeystore, @Param(value = InputNames.TRUST_PASSWORD, encrypted = true, description = TRUST_PASSWORD_DESC) String trustPassword, @Param(value = InputNames.TIMEOUT, description = TIMEOUT_DESC) String timeout) {
protocol = defaultIfEmpty(protocol, HTTPS);
proxyPort = defaultIfEmpty(proxyPort, DEFAULT_PROXY_PORT);
tlsVersion = defaultIfEmpty(tlsVersion, TLSv1_2);
allowedCiphers = defaultIfEmpty(allowedCiphers, ALLOWED_CIPHERS_LIST);
x509HostnameVerifier = defaultIfEmpty(x509HostnameVerifier, STRICT);
trustAllRoots = defaultIfEmpty(trustAllRoots, BOOLEAN_FALSE);
trustPassword = defaultIfEmpty(trustPassword, DEFAULT_PASSWORD_FOR_STORE);
timeout = defaultIfEmpty(timeout, TIMEOUT_VALUE);
AuthenticateUserInput.Builder inputBuilder = new AuthenticateUserInput.Builder().host(host).rootDistinguishedName(rootDistinguishedName).username(username).password(password).protocol(protocol).proxyHost(proxyHost).proxyPort(proxyPort).proxyUsername(proxyUsername).proxyPassword(proxyPassword).tlsVersion(tlsVersion).allowedCiphers(allowedCiphers).x509HostnameVerifier(x509HostnameVerifier).trustAllRoots(trustAllRoots).trustKeystore(trustKeystore).trustPassword(trustPassword).timeout(timeout);
try {
return new AuthenticateUserService().execute(inputBuilder.build());
} catch (Exception e) {
return ResultUtils.fromException(e);
}
}
Also used :
AuthenticateUserService(io.cloudslang.content.active_directory.services.users.AuthenticateUserService)
AuthenticateUserInput(io.cloudslang.content.active_directory.entities.AuthenticateUserInput)
Action(com.hp.oo.sdk.content.annotations.Action)
Example 97 with Action
use of com.hp.oo.sdk.content.annotations.Action in project cs-actions by CloudSlang.
the class DisableUserAction method execute.
/**
* This operation disables an user from Active Directory.
*
* @param host The IP or host name of the domain controller. The port number can be mentioned as well, along
* with the host (hostNameOrIP:PortNumber).
* Examples: test.example.com, test.example.com:636, <IPv4Address>, <IPv6Address>,
* [<IPv6Address>]:<PortNumber> etc.
* Value format: The format of an IPv4 address is: [0-225].[0-225].[0-225].[0-225]. The format of an
* IPv6 address is ####:####:####:####:####:####:####:####/### (with a prefix), where each #### is
* a hexadecimal value between 0 to FFFF and the prefix /### is a decimal value between 0 to 128.
* The prefix length is optional.
* @param distinguishedName The Organizational Unit DN or Common Name DN to add the user to.
* Example: OU=OUTest1,DC=battleground,DC=ad
* @param userCommonName The common name, generally the full name of user.
* Example: Bob Smith
* @param username The user to connect to Active Directory as.
* @param password The password of the user to connect to Active Directory.
* @param protocol The protocol to use when connecting to the Active Directory server.
* Valid values: HTTP and HTTPS.
* @param proxyHost The proxy server used to access the web site.
* @param proxyPort The proxy server port.
* Default value: 8080.
* @param proxyUsername The username used when connecting to the proxy.
* @param proxyPassword The proxy server password associated with the "proxyUsername" input value.
* @param tlsVersion The version of TLS to use. The value of this input will be ignored if "protocol"
* is set to "HTTP". This capability is provided “as is”, please see product documentation
* for further information.
* Valid values: TLSv1, TLSv1.1, TLSv1.2.
* Default value: TLSv1.2.
* @param allowedCiphers A list of ciphers to use. The value of this input will be ignored if 'tlsVersion' does
* not contain 'TLSv1.2'. This capability is provided “as is”, please see product documentation
* for further security considerations. In order to connect successfully to the target host,
* it should accept at least one of the following ciphers. If this is not the case, it is
* the user's responsibility to configure the host accordingly or to update the list of
* allowed ciphers.
* Default value: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
* TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
* TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_AES_256_CBC_SHA256,
* TLS_RSA_WITH_AES_128_CBC_SHA256.
* @param trustAllRoots Specifies whether to enable weak security over SSL. A SSL certificate is trusted
* even if no trusted certification authority issued it.
* Valid values: true, false.
* Default value: false.
* @param x509HostnameVerifier Specifies the way the server hostname must match a domain name in the subject's Common
* Name (CN) or subjectAltName field of the X.509 certificate. Set this to "allow_all" to
* skip any checking, but you become vulnerable to attacks.
* For the value "browser_compatible" the hostname verifier works the same way as Curl
* and Firefox. The hostname must match either the first CN, or any of the subject-alts.
* A wildcard can occur in the CN, and in any of the subject-alts. The only difference
* between "browser_compatible" and "strict" is that a wildcard (such as "*.foo.com")
* with "browser_compatible" matches all subdomains, including "a.b.foo.com". From the
* security perspective, to provide protection against possible Man-In-The-Middle attacks,
* we strongly recommend to use "strict" option.
* Default value: strict.
* Valid values: strict, browser_compatible, allow_all.
* @param trustKeystore The location of the TrustStore file.
* Example: %JAVA_HOME%/jre/lib/security/cacerts
* @param trustPassword The password associated with the TrustStore file.
* @param timeout Time in seconds to wait for the command to complete.
* Default value: 60.
* @return - a map containing the output of the operation. Keys present in the map are:
* returnResult - A message with the common name of the user in case of success or the error in case of failure.
* returnCode - the return code of the operation. 0 if the operation succeeded, -1 if the operation fails.
* exception - the exception message if the operation fails.
* userDistinguishedName - The distinguished name of the disabled user.
*/
@Action(name = "Disable User", description = DISABLE_USER_DESC, outputs = { @Output(value = OutputNames.RETURN_RESULT, description = RETURN_RESULT_DESC), @Output(value = OutputNames.RESULT_USER_DN, description = USER_DN_DESC), @Output(value = OutputNames.RETURN_CODE, description = RETURN_CODE_DESC), @Output(value = OutputNames.EXCEPTION, description = EXCEPTION_DESC) }, responses = { @Response(text = ResponseNames.SUCCESS, field = OutputNames.RETURN_CODE, value = ReturnCodes.SUCCESS, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.RESOLVED, description = SUCCESS_DESC), @Response(text = ResponseNames.FAILURE, field = OutputNames.RETURN_CODE, value = ReturnCodes.FAILURE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.ERROR, description = FAILURE_DESC) })
public Map<String, String> execute(@Param(value = InputNames.HOST, required = true, description = HOST_DESC) String host, @Param(value = InputNames.PROTOCOL, description = PROTOCOL_DESC) String protocol, @Param(value = InputNames.USERNAME, required = true, description = USERNAME_DESC) String username, @Param(value = InputNames.PASSWORD, encrypted = true, required = true, description = PASSWORD_DESC) String password, @Param(value = InputNames.DISTINGUISHED_NAME, required = true, description = DISTINGUISHED_NAME_DESC) String distinguishedName, @Param(value = InputNames.USER_COMMON_NAME, required = true, description = USER_CN_DESC) String userCommonName, @Param(value = InputNames.PROXY_HOST, description = PROXY_HOST_DESC) String proxyHost, @Param(value = InputNames.PROXY_PORT, description = PROXY_PORT_DESC) String proxyPort, @Param(value = InputNames.PROXY_USERNAME, description = PROXY_USERNAME_DESC) String proxyUsername, @Param(value = InputNames.PROXY_PASSWORD, description = PROXY_PASSWORD_DESC) String proxyPassword, @Param(value = InputNames.TLS_VERSION, description = TLS_VERSION_DESC) String tlsVersion, @Param(value = InputNames.ALLOWED_CIPHERS, description = ALLOWED_CIPHERS_DESC) String allowedCiphers, @Param(value = InputNames.X_509_HOSTNAME_VERIFIER, description = X_509_DESC) String x509HostnameVerifier, @Param(value = InputNames.TRUST_ALL_ROOTS, description = TRUST_ALL_ROOTS_DESC) String trustAllRoots, @Param(value = InputNames.TRUST_KEYSTORE, description = TRUST_KEYSTORE_DESC) String trustKeystore, @Param(value = InputNames.TRUST_PASSWORD, encrypted = true, description = TRUST_PASSWORD_DESC) String trustPassword, @Param(value = InputNames.TIMEOUT, description = TIMEOUT_DESC) String timeout) {
protocol = defaultIfEmpty(protocol, HTTPS);
proxyPort = defaultIfEmpty(proxyPort, DEFAULT_PROXY_PORT);
tlsVersion = defaultIfEmpty(tlsVersion, TLSv1_2);
allowedCiphers = defaultIfEmpty(allowedCiphers, ALLOWED_CIPHERS_LIST);
x509HostnameVerifier = defaultIfEmpty(x509HostnameVerifier, STRICT);
trustAllRoots = defaultIfEmpty(trustAllRoots, BOOLEAN_FALSE);
trustPassword = defaultIfEmpty(trustPassword, DEFAULT_PASSWORD_FOR_STORE);
timeout = defaultIfEmpty(timeout, TIMEOUT_VALUE);
UserCommonInput.Builder inputBuilder = new UserCommonInput.Builder().host(host).distinguishedName(distinguishedName).userCommonName(userCommonName).username(username).password(password).protocol(protocol).proxyHost(proxyHost).proxyPort(proxyPort).proxyUsername(proxyUsername).proxyPassword(proxyPassword).tlsVersion(tlsVersion).allowedCiphers(allowedCiphers).x509HostnameVerifier(x509HostnameVerifier).trustAllRoots(trustAllRoots).trustKeystore(trustKeystore).trustPassword(trustPassword).timeout(timeout);
try {
return new DisableUserService().execute(inputBuilder.build());
} catch (Exception e) {
return ResultUtils.fromException(e);
}
}
Also used :
UserCommonInput(io.cloudslang.content.active_directory.entities.UserCommonInput)
DisableUserService(io.cloudslang.content.active_directory.services.users.DisableUserService)
Action(com.hp.oo.sdk.content.annotations.Action)
Example 98 with Action
use of com.hp.oo.sdk.content.annotations.Action in project cs-actions by CloudSlang.
the class ResetUserPasswordAction method execute.
/**
* This operation creates a new user in Active Directory.
*
* @param host The IP or host name of the domain controller. The port number can be mentioned as well, along
* with the host (hostNameOrIP:PortNumber).
* Examples: test.example.com, test.example.com:636, <IPv4Address>, <IPv6Address>,
* [<IPv6Address>]:<PortNumber> etc.
* Value format: The format of an IPv4 address is: [0-225].[0-225].[0-225].[0-225]. The format of an
* IPv6 address is ####:####:####:####:####:####:####:####/### (with a prefix), where each #### is
* a hexadecimal value between 0 to FFFF and the prefix /### is a decimal value between 0 to 128.
* The prefix length is optional.
* @param userDistinguishedName Distinguished name of the user whose password you want to change.
* Example: CN=User, OU=OUTest1, DC=battleground, DC=ad).
* @param userPassword The new password. It must meet the following requirements:
* - is at least six characters long
* - contains characters from at least three of the following five categories: English uppercase
* characters ('A' - 'Z'), English lowercase characters ('a' - 'z'), base 10 digits ('0' - '9'),
* non-alphanumeric (For example: '!', '$', '#', or '%'), unicode characters
* - does not contain three or more characters from the user's account name
* @param username The user to connect to Active Directory as.
* @param password The password of the user to connect to Active Directory.
* @param protocol The protocol to use when connecting to the Active Directory server.
* Valid values: HTTP and HTTPS.
* @param proxyHost The proxy server used to access the web site.
* @param proxyPort The proxy server port.
* Default value: 8080.
* @param proxyUsername The username used when connecting to the proxy.
* @param proxyPassword The proxy server password associated with the "proxyUsername" input value.
* @param tlsVersion The version of TLS to use. The value of this input will be ignored if "protocol"
* is set to "HTTP". This capability is provided “as is”, please see product documentation
* for further information.
* Valid values: TLSv1, TLSv1.1, TLSv1.2.
* Default value: TLSv1.2.
* @param allowedCiphers A list of ciphers to use. The value of this input will be ignored if 'tlsVersion' does
* not contain 'TLSv1.2'. This capability is provided “as is”, please see product documentation
* for further security considerations. In order to connect successfully to the target host,
* it should accept at least one of the following ciphers. If this is not the case, it is
* the user's responsibility to configure the host accordingly or to update the list of
* allowed ciphers.
* Default value: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
* TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
* TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_AES_256_CBC_SHA256,
* TLS_RSA_WITH_AES_128_CBC_SHA256.
* @param trustAllRoots Specifies whether to enable weak security over SSL. A SSL certificate is trusted
* even if no trusted certification authority issued it.
* Valid values: true, false.
* Default value: false.
* @param x509HostnameVerifier Specifies the way the server hostname must match a domain name in the subject's Common
* Name (CN) or subjectAltName field of the X.509 certificate. Set this to "allow_all" to
* skip any checking, but you become vulnerable to attacks.
* For the value "browser_compatible" the hostname verifier works the same way as Curl
* and Firefox. The hostname must match either the first CN, or any of the subject-alts.
* A wildcard can occur in the CN, and in any of the subject-alts. The only difference
* between "browser_compatible" and "strict" is that a wildcard (such as "*.foo.com")
* with "browser_compatible" matches all subdomains, including "a.b.foo.com". From the
* security perspective, to provide protection against possible Man-In-The-Middle attacks,
* we strongly recommend to use "strict" option.
* Default value: strict.
* Valid values: strict, browser_compatible, allow_all.
* @param trustKeystore The location of the TrustStore file.
* Example: %JAVA_HOME%/jre/lib/security/cacerts
* @param trustPassword The password associated with the TrustStore file.
* @param timeout Time in seconds to wait for the command to complete.
* Default value: 60.
* @return a map containing the output of the operation. Keys present in the map are:
* returnResult - The message 'Password Changed' in case of success or the error in case of failure.
* returnCode - The return code of the operation. 0 if the operation succeeded, -1 if the operation fails.
* exception - The exception message if the operation fails.
*/
@Action(name = "Reset User Password", description = RESET_USER_PASSWORD_DESC, outputs = { @Output(value = OutputNames.RETURN_RESULT, description = RETURN_RESULT_DESC), @Output(value = OutputNames.RETURN_CODE, description = RETURN_CODE_DESC), @Output(value = OutputNames.EXCEPTION, description = EXCEPTION_DESC) }, responses = { @Response(text = ResponseNames.SUCCESS, field = OutputNames.RETURN_CODE, value = ReturnCodes.SUCCESS, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.RESOLVED, description = SUCCESS_DESC), @Response(text = ResponseNames.FAILURE, field = OutputNames.RETURN_CODE, value = ReturnCodes.FAILURE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.ERROR, description = FAILURE_DESC) })
public Map<String, String> execute(@Param(value = InputNames.HOST, required = true, description = HOST_DESC) String host, @Param(value = InputNames.PROTOCOL, description = PROTOCOL_DESC) String protocol, @Param(value = InputNames.USERNAME, required = true, description = USERNAME_DESC) String username, @Param(value = InputNames.PASSWORD, encrypted = true, required = true, description = PASSWORD_DESC) String password, @Param(value = InputNames.USER_DISTINGUISHED_NAME, required = true, description = DISTINGUISHED_NAME_DESC) String userDistinguishedName, @Param(value = InputNames.USER_PASSWORD, required = true, encrypted = true, description = USER_PASSWORD_DESC) String userPassword, @Param(value = InputNames.PROXY_HOST, description = PROXY_HOST_DESC) String proxyHost, @Param(value = InputNames.PROXY_PORT, description = PROXY_PORT_DESC) String proxyPort, @Param(value = InputNames.PROXY_USERNAME, description = PROXY_USERNAME_DESC) String proxyUsername, @Param(value = InputNames.PROXY_PASSWORD, description = PROXY_PASSWORD_DESC) String proxyPassword, @Param(value = InputNames.TLS_VERSION, description = TLS_VERSION_DESC) String tlsVersion, @Param(value = InputNames.ALLOWED_CIPHERS, description = ALLOWED_CIPHERS_DESC) String allowedCiphers, @Param(value = InputNames.X_509_HOSTNAME_VERIFIER, description = X_509_DESC) String x509HostnameVerifier, @Param(value = InputNames.TRUST_ALL_ROOTS, description = TRUST_ALL_ROOTS_DESC) String trustAllRoots, @Param(value = InputNames.TRUST_KEYSTORE, description = TRUST_KEYSTORE_DESC) String trustKeystore, @Param(value = InputNames.TRUST_PASSWORD, encrypted = true, description = TRUST_PASSWORD_DESC) String trustPassword, @Param(value = InputNames.TIMEOUT, description = TIMEOUT_DESC) String timeout) {
protocol = defaultIfEmpty(protocol, HTTPS);
proxyPort = defaultIfEmpty(proxyPort, DEFAULT_PROXY_PORT);
tlsVersion = defaultIfEmpty(tlsVersion, TLSv1_2);
allowedCiphers = defaultIfEmpty(allowedCiphers, ALLOWED_CIPHERS_LIST);
x509HostnameVerifier = defaultIfEmpty(x509HostnameVerifier, STRICT);
trustAllRoots = defaultIfEmpty(trustAllRoots, BOOLEAN_FALSE);
trustPassword = defaultIfEmpty(trustPassword, DEFAULT_PASSWORD_FOR_STORE);
timeout = defaultIfEmpty(timeout, TIMEOUT_VALUE);
ResetUserPasswordInput.Builder inputBuilder = new ResetUserPasswordInput.Builder().host(host).userDistinguishedName(userDistinguishedName).userPassword(userPassword).username(username).password(password).protocol(protocol).proxyHost(proxyHost).proxyPort(proxyPort).proxyUsername(proxyUsername).proxyPassword(proxyPassword).tlsVersion(tlsVersion).allowedCiphers(allowedCiphers).x509HostnameVerifier(x509HostnameVerifier).trustAllRoots(trustAllRoots).trustKeystore(trustKeystore).trustPassword(trustPassword).timeout(timeout);
try {
return new ResetUserPasswordService().execute(inputBuilder.build());
} catch (Exception e) {
return ResultUtils.fromException(e);
}
}
Also used :
ResetUserPasswordService(io.cloudslang.content.active_directory.services.users.ResetUserPasswordService)
ResetUserPasswordInput(io.cloudslang.content.active_directory.entities.ResetUserPasswordInput)
Action(com.hp.oo.sdk.content.annotations.Action)
Example 99 with Action
use of com.hp.oo.sdk.content.annotations.Action in project cs-actions by CloudSlang.
the class UpdateUserDetailsAction method execute.
/**
* This operation adds attributes to a new user in Active Directory. It can also be used to edit the provided inputs of
* a new user or to add custom attributes to an existing one, by providing a list of attributes and values, separated by
* new line in the format: attribute:value.
*
* @param host The IP or host name of the domain controller. The port number can be mentioned as well, along
* with the host (hostNameOrIP:PortNumber).
* Examples: test.example.com, test.example.com:636, <IPv4Address>, <IPv6Address>,
* [<IPv6Address>]:<PortNumber> etc.
* Value format: The format of an IPv4 address is: [0-225].[0-225].[0-225].[0-225]. The format of an
* IPv6 address is ####:####:####:####:####:####:####:####/### (with a prefix), where each #### is
* a hexadecimal value between 0 to FFFF and the prefix /### is a decimal value between 0 to 128.
* The prefix length is optional.
* @param distinguishedName The Organizational Unit DN or Common Name DN to add the user to.
* Example: OU=OUTest1,DC=battleground,DC=ad
* @param userCommonName The CN, generally the full name of the user that will be updated.
* Example: Bob Smith
* @param username The user to connect to Active Directory as.
* @param password The password of the user to connect to Active Directory.
* @param firstName User's first name to change.
* @param lastName User's last name to change.
* @param displayName User's display name to change.
* @param street User's street.
* @param city User's city.
* @param stateOrProvince User's state or province option.
* @param zipOrPostalCode User's first zip or postal code
* @param countryOrRegion User's country or region. The format for this input should be countryName,countryAbbreviation,countryCode.
* CountryName sets the value for the "co" property, countryAbbreviation sets the "c" property using the
* two-letter country code, countryCode sets the "countryCode" property using the numeric value of the
* country.
* @param attributesList The list of the attributes to set to the user. This should be provided in the following format:
* attribute:value, separated by new line. Make sure that the attributes are valid Active Directory
* attributes.
* Example: streetAddress:My Address
* postalCode:123456
* @param protocol The protocol to use when connecting to the Active Directory server.
* Valid values: HTTP and HTTPS.
* @param proxyHost The proxy server used to access the web site.
* @param proxyPort The proxy server port.
* Default value: 8080.
* @param proxyUsername The username used when connecting to the proxy.
* @param proxyPassword The proxy server password associated with the "proxyUsername" input value.
* @param tlsVersion The version of TLS to use. The value of this input will be ignored if "protocol"
* is set to "HTTP". This capability is provided “as is”, please see product documentation
* for further information.
* Valid values: TLSv1, TLSv1.1, TLSv1.2.
* Default value: TLSv1.2.
* @param allowedCiphers A list of ciphers to use. The value of this input will be ignored if 'tlsVersion' does
* not contain 'TLSv1.2'. This capability is provided “as is”, please see product documentation
* for further security considerations. In order to connect successfully to the target host,
* it should accept at least one of the following ciphers. If this is not the case, it is
* the user's responsibility to configure the host accordingly or to update the list of
* allowed ciphers.
* Default value: TLS_DHE_RSA_WITH_AES_256_GCM_SHA384,
* TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256,
* TLS_DHE_RSA_WITH_AES_256_CBC_SHA256, TLS_DHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
* TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
* TLS_RSA_WITH_AES_256_GCM_SHA384, TLS_RSA_WITH_AES_256_CBC_SHA256,
* TLS_RSA_WITH_AES_128_CBC_SHA256.
* @param trustAllRoots Specifies whether to enable weak security over SSL. A SSL certificate is trusted
* even if no trusted certification authority issued it.
* Valid values: true, false.
* Default value: false.
* @param x509HostnameVerifier Specifies the way the server hostname must match a domain name in the subject's Common
* Name (CN) or subjectAltName field of the X.509 certificate. Set this to "allow_all" to
* skip any checking, but you become vulnerable to attacks.
* For the value "browser_compatible" the hostname verifier works the same way as Curl
* and Firefox. The hostname must match either the first CN, or any of the subject-alts.
* A wildcard can occur in the CN, and in any of the subject-alts. The only difference
* between "browser_compatible" and "strict" is that a wildcard (such as "*.foo.com")
* with "browser_compatible" matches all subdomains, including "a.b.foo.com". From the
* security perspective, to provide protection against possible Man-In-The-Middle attacks,
* we strongly recommend to use "strict" option.
* Default value: strict.
* Valid values: strict, browser_compatible, allow_all.
* @param trustKeystore The location of the TrustStore file.
* Example: %JAVA_HOME%/jre/lib/security/cacerts
* @param trustPassword The password associated with the TrustStore file.
* @param timeout Time in seconds to wait for the command to complete.
* Default value: 60.
* @return - a map containing the output of the operation. Keys present in the map are:
* returnResult - This will contain the response entity in case of success or the error message in case of failure.
* returnCode - The return code of the operation. 0 if the operation succeeded, -1 if the operation fails.
* exception - The exception message if the operation fails.
*/
@Action(name = "Update User Details", description = UPDATE_USER_DETAILS_DESC, outputs = { @Output(value = OutputNames.RETURN_RESULT, description = RETURN_RESULT_DESC), @Output(value = OutputNames.RETURN_CODE, description = RETURN_CODE_DESC), @Output(value = OutputNames.EXCEPTION, description = EXCEPTION_DESC) }, responses = { @Response(text = ResponseNames.SUCCESS, field = OutputNames.RETURN_CODE, value = ReturnCodes.SUCCESS, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.RESOLVED, description = SUCCESS_DESC), @Response(text = ResponseNames.FAILURE, field = OutputNames.RETURN_CODE, value = ReturnCodes.FAILURE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.ERROR, description = FAILURE_DESC) })
public Map<String, String> execute(@Param(value = InputNames.HOST, required = true, description = HOST_DESC) String host, @Param(value = InputNames.PROTOCOL, description = PROTOCOL_DESC) String protocol, @Param(value = InputNames.USERNAME, required = true, description = USERNAME_DESC) String username, @Param(value = InputNames.PASSWORD, required = true, encrypted = true, description = PASSWORD_DESC) String password, @Param(value = InputNames.DISTINGUISHED_NAME, required = true, description = DISTINGUISHED_NAME_DESC) String distinguishedName, @Param(value = InputNames.USER_COMMON_NAME, required = true, description = USER_CN_DESC) String userCommonName, @Param(value = InputNames.FIRST_NAME, description = FIRST_NAME_DESC) String firstName, @Param(value = InputNames.LAST_NAME, description = LAST_NAME_DESC) String lastName, @Param(value = InputNames.DISPLAY_NAME, description = DISPLAY_NAME_DESC) String displayName, @Param(value = InputNames.STREET, description = STREET_DESC) String street, @Param(value = InputNames.CITY, description = CITY_DESC) String city, @Param(value = InputNames.STATE_OR_PROVINCE, description = STATE_OR_PROVINCE_DESC) String stateOrProvince, @Param(value = InputNames.ZIP_OR_POSTAL_CODE, description = ZIP_OR_POSTAL_CODE_DESC) String zipOrPostalCode, @Param(value = InputNames.COUNTRY_OR_REGION, description = COUNTRY_OR_REGION_DESC) String countryOrRegion, @Param(value = InputNames.ATTRIBUTES_LIST, description = ATTRIBUTES_LIST_DESC) String attributesList, @Param(value = InputNames.PROXY_HOST, description = PROXY_HOST_DESC) String proxyHost, @Param(value = InputNames.PROXY_PORT, description = PROXY_PORT_DESC) String proxyPort, @Param(value = InputNames.PROXY_USERNAME, description = PROXY_USERNAME_DESC) String proxyUsername, @Param(value = InputNames.PROXY_PASSWORD, description = PROXY_PASSWORD_DESC) String proxyPassword, @Param(value = InputNames.TLS_VERSION, description = TLS_VERSION_DESC) String tlsVersion, @Param(value = InputNames.ALLOWED_CIPHERS, description = ALLOWED_CIPHERS_DESC) String allowedCiphers, @Param(value = InputNames.X_509_HOSTNAME_VERIFIER, description = X_509_DESC) String x509HostnameVerifier, @Param(value = InputNames.TRUST_ALL_ROOTS, description = TRUST_ALL_ROOTS_DESC) String trustAllRoots, @Param(value = InputNames.TRUST_KEYSTORE, description = TRUST_KEYSTORE_DESC) String trustKeystore, @Param(value = InputNames.TRUST_PASSWORD, encrypted = true, description = TRUST_PASSWORD_DESC) String trustPassword, @Param(value = InputNames.TIMEOUT, description = TIMEOUT_DESC) String timeout) {
protocol = defaultIfEmpty(protocol, HTTPS);
proxyPort = defaultIfEmpty(proxyPort, DEFAULT_PROXY_PORT);
tlsVersion = defaultIfEmpty(tlsVersion, TLSv1_2);
allowedCiphers = defaultIfEmpty(allowedCiphers, ALLOWED_CIPHERS_LIST);
x509HostnameVerifier = defaultIfEmpty(x509HostnameVerifier, STRICT);
trustAllRoots = defaultIfEmpty(trustAllRoots, BOOLEAN_FALSE);
trustPassword = defaultIfEmpty(trustPassword, DEFAULT_PASSWORD_FOR_STORE);
timeout = defaultIfEmpty(timeout, TIMEOUT_VALUE);
UpdateUserDetailsInput.Builder inputBuilder = new UpdateUserDetailsInput.Builder().host(host).distinguishedName(distinguishedName).userCommonName(userCommonName).username(username).password(password).firstName(firstName).lastName(lastName).displayName(displayName).street(street).city(city).stateOrProvince(stateOrProvince).zipOrPostalCode(zipOrPostalCode).countryOrRegion(countryOrRegion).attributesList(attributesList).protocol(protocol).proxyHost(proxyHost).proxyPort(proxyPort).proxyUsername(proxyUsername).proxyPassword(proxyPassword).tlsVersion(tlsVersion).allowedCiphers(allowedCiphers).x509HostnameVerifier(x509HostnameVerifier).trustAllRoots(trustAllRoots).trustKeystore(trustKeystore).trustPassword(trustPassword).timeout(timeout);
try {
return new UpdateUserDetailsService().execute(inputBuilder.build());
} catch (Exception e) {
return ResultUtils.fromException(e);
}
}
Also used :
UpdateUserDetailsService(io.cloudslang.content.active_directory.services.users.UpdateUserDetailsService)
UpdateUserDetailsInput(io.cloudslang.content.active_directory.entities.UpdateUserDetailsInput)
Action(com.hp.oo.sdk.content.annotations.Action)
Example 100 with Action
use of com.hp.oo.sdk.content.annotations.Action in project cs-actions by CloudSlang.
the class DeleteStackAction method execute.
/**
* Creates AWS Cloud Formation Stack in sync mode using AWS Java SDK
*
* @param identity Access key associated with your Amazon AWS or IAM account.
* Example: "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY"
* @param credential Secret access key ID associated with your Amazon AWS or IAM account.
* @param proxyHost Optional - proxy server used to connect to Amazon API. If empty no proxy will be used.
* Default: ""
* @param proxyPort Optional - proxy server port. You must either specify values for both proxyHost and
* proxyPort inputs or leave them both empty.
* Default: ""
* @param proxyUsername Optional - proxy server user name.
* Default: ""
* @param proxyPassword Optional - proxy server password associated with the proxyUsername input value.
* Default: ""
* @param region AWS region name
* Example: "eu-central-1"
* @param stackName Stack name to delete
* Example: "MyStack"
* @return A map with strings as keys and strings as values that contains: outcome of the action, returnCode of the
* operation, or failure message and the exception if there is one
*/
@Action(name = "Delete AWS Cloud Formation Stack", outputs = { @Output(Outputs.RETURN_CODE), @Output(Outputs.RETURN_RESULT), @Output(Outputs.EXCEPTION) }, responses = { @Response(text = Outputs.SUCCESS, field = Outputs.RETURN_CODE, value = Outputs.SUCCESS_RETURN_CODE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.RESOLVED), @Response(text = Outputs.FAILURE, field = Outputs.RETURN_CODE, value = Outputs.FAILURE_RETURN_CODE, matchType = MatchType.COMPARE_EQUAL, responseType = ResponseType.ERROR) })
public Map<String, String> execute(@Param(value = IDENTITY, required = true) String identity, @Param(value = CREDENTIAL, required = true, encrypted = true) String credential, @Param(value = REGION, required = true) String region, @Param(value = PROXY_HOST) String proxyHost, @Param(value = PROXY_PORT) String proxyPort, @Param(value = PROXY_USERNAME) String proxyUsername, @Param(value = PROXY_PASSWORD) String proxyPassword, @Param(value = CONNECT_TIMEOUT) String connectTimeoutMs, @Param(value = EXECUTION_TIMEOUT) String execTimeoutMs, @Param(value = STACK_NAME, required = true) String stackName) {
proxyPort = defaultIfEmpty(proxyPort, DefaultValues.PROXY_PORT);
connectTimeoutMs = defaultIfEmpty(connectTimeoutMs, DefaultValues.CONNECT_TIMEOUT);
execTimeoutMs = defaultIfEmpty(execTimeoutMs, DefaultValues.EXEC_TIMEOUT);
try {
AmazonCloudFormation stackBuilder = CloudFormationClientBuilder.getCloudFormationClient(identity, credential, proxyHost, proxyPort, proxyUsername, proxyPassword, connectTimeoutMs, execTimeoutMs, region);
// Delete the stack
DeleteStackRequest deleteRequest = new DeleteStackRequest().withStackName(stackName);
DeleteStackResult result = stackBuilder.deleteStack(deleteRequest);
return OutputUtilities.getSuccessResultsMap(result.toString());
} catch (Exception e) {
return OutputUtilities.getFailureResultsMap(e);
}
}
Also used :
AmazonCloudFormation(com.amazonaws.services.cloudformation.AmazonCloudFormation)
DeleteStackResult(com.amazonaws.services.cloudformation.model.DeleteStackResult)
DeleteStackRequest(com.amazonaws.services.cloudformation.model.DeleteStackRequest)
Action(com.hp.oo.sdk.content.annotations.Action)
Aggregations
Action (com.hp.oo.sdk.content.annotations.Action)230
CommonInputs (io.cloudslang.content.amazon.entities.inputs.CommonInputs)48
QueryApiExecutor (io.cloudslang.content.amazon.execute.QueryApiExecutor)47
CustomInputs (io.cloudslang.content.amazon.entities.inputs.CustomInputs)32
HttpClientInputs (io.cloudslang.content.httpclient.entities.HttpClientInputs)29
HashMap (java.util.HashMap)22
VmInputs (io.cloudslang.content.vmware.entities.VmInputs)21
HttpInputs (io.cloudslang.content.vmware.entities.http.HttpInputs)21
CommonInputs (io.cloudslang.content.couchbase.entities.inputs.CommonInputs)15
CouchbaseService (io.cloudslang.content.couchbase.execute.CouchbaseService)15
InputsUtil.getHttpClientInputs (io.cloudslang.content.couchbase.utils.InputsUtil.getHttpClientInputs)15
NetworkInputs (io.cloudslang.content.amazon.entities.inputs.NetworkInputs)11
Map (java.util.Map)11
ObjectMapper (com.fasterxml.jackson.databind.ObjectMapper)10
CommonInputs (io.cloudslang.content.amazon.entities.constants.Inputs.CommonInputs)9
InstanceInputs (io.cloudslang.content.amazon.entities.inputs.InstanceInputs)9
JsonNode (com.fasterxml.jackson.databind.JsonNode)8
JsonParser (com.google.gson.JsonParser)8
SFTPService (io.cloudslang.content.rft.services.SFTPService)8
ClusterComputeResourceService (io.cloudslang.content.vmware.services.ClusterComputeResourceService)8
