X-Git-Url: http://git.pjr.cc/?p=ga4php.git;a=blobdiff_plain;f=gaas%2Fgaasd%2Fgaasclient.php;h=cb57c3809290688be6eb55f5750efdbdfad5e6d3;hp=361acb11af3e14b233d62d6c30e4fa111897252f;hb=HEAD;hpb=e90887f0fd673f152c95fb9965707d9f0aa07497

diff --git a/gaas/gaasd/gaasclient.php b/gaas/gaasd/gaasclient.php
index 361acb1..cb57c38 100644
--- a/gaas/gaasd/gaasclient.php
+++ b/gaas/gaasd/gaasclient.php
@@ -16,11 +16,17 @@ function usage()
 	echo "\tsetadlogin username password domain\n";
 	echo "\tsetclientgroup groupname - change the group membership requirements for client's with AD\n";
 	echo "\tsetadmingroup groupname - change the group membership requirements for admin's with AD\n";
+	echo "\tprovisiontoken username [HOTP|TOTP] [KEY] - provision the user \"username\"\n";
+	echo "\tassign username tokenid - assign a hardware token to a user\n";
+	echo "\taddtoken token_name token_key token_type - adds a hardware token to the DB\n";
+	echo "\tgethwtokens - gets a list of hardware tokens by token_name\n";
+	echo "\tgetusers [admin|client] [part-of-username] [yes] - get user list with admin or client group, part of a username and return only those with tokens (yes)\n";
+	echo "\tdeleteuser username - deletes the key for the specified user\n";
 	echo "\n";
 	exit(0);
 }
 
-if($argc < 1) {
+if($argc < 2) {
 	usage();
 }
 
@@ -64,6 +70,57 @@ switch($argv[1]) {
 			echo "Resetting AD admin group details failed\n";
 		}
 		break;
+	case "assign":
+		$username = $argv[2];
+		$tokenid = $argv[3];
+		$ret = $myga->MSG_ASSIGN_TOKEN($username, $tokenid);
+		break;
+	case "gethwtokens":
+		$ret = $myga->MSG_GET_HARDWARE();
+		foreach($ret as $tok) {
+			echo "Token, ".$tok["name"]." is of type ".$tok["type"]."\n";
+		}
+		break;
+	case "addtoken":
+		$tokenid = $argv[2];
+		$tokenkey = $argv[3];
+		$tokentype = $argv[4];
+		$ret = $myga->MSG_ADD_HARDWARE($tokenid, $tokenkey, $tokentype);
+		break;
+	case "provisiontoken":
+		$username = $argv[2];
+		$ttype = "";
+		$tkey = "";
+		if(isset($argv[3])) $ttype = $argv[3];
+		if(isset($argv[4])) $tkey = $argv[4];
+		$ret = $myga->MSG_PROVISION_USER($username, $ttype, $tkey);
+		break;
+	case "getusers":
+		$group = "client";
+		$partof = "";
+		$onlytokens = "no";
+		if(isset($argv[2])) $group = $argv[2];
+		if(isset($argv[3])) $partof = $argv[3];
+		if(isset($argv[4])) $onlytokens = $argv[4];
+		$ret = $myga->MSG_GET_USERS($group, $partof, $onlytokens);
+		foreach($ret as $key => $val) {
+			$real = $val["realname"];
+			$user = $val["username"];
+			$hastok = "";
+			if($val["hastoken"]) {
+				$hastok = " * ";
+			}
+			echo "$hastok$real ($user)\n";
+		}
+		break;
+	case "deleteuser":
+		$ret = $myga->MSG_DELETE_USER($argv[2]);
+		if($ret) {
+			echo "Delete user token succeeded\n";
+		} else {
+			echo "Delete user token failed\n";
+		}
+		break;
 	default:
 		echo "No such command, ".$argv[1]."\n";
 		usage();