mò s… Gc@sÇdkZdkZdkZeidƒZeiddƒd„Zd„Zd„Zd„Z e djoXedd ƒGHedd ƒGHedd ƒGHe ddƒGHe dd ƒGHe d dƒGHndS(NsW92-130-LDAP-2.mit.edutccsoxhtidtid|gƒD]G}x>tidtid|ddgƒD]}|dddVqMWq WdS( s^ getldapgroups(user): returns a generator for the list of LDAP groups containing user sou=affiliates,dc=mit,dc=edusuid=sou=groups,dc=mit,dc=edus uniqueMember=itcniN(tltsearch_stldaptSCOPE_ONELEVELtusert user_datat group_data(RRR((t getgroups.pyt getldapgroups s  'cCslxetidtid|gƒD]D}tidtid|d|ddgƒgjotSq q WtS( s_ checkldapgroups(user, group): returns True if and only if user is in LDAP group group sou=affiliates,dc=mit,dc=edusuid=sou=groups,dc=mit,dc=edus(&(cn=s)(uniqueMember=is))N( RRRRRt result_datatgrouptTruetFalse(RR R ((R tcheckldapgroups  6 cCs´|G|GHtidd|gdtidtiƒ}tidddgd|idtidtiƒ}|iƒot Snx2|ii ƒi ƒD]}||jot Sq‘q‘Wt S( s[ checkafsgroup(user, group) returns True if and only if user is in AFS group group tptst membershiptstdouttstderrtgreps-vs^MemberststdinN(RR t subprocesstPopentPIPEtpRtp2twaitRtreadtsplittmemberR (RR RRR((R t checkafsgroups *3   cCsÑtiddd|gdtidtiƒ}tiddgd|idtidtiƒ}|iƒotSnxW|ii ƒi ƒD]@}||jot Sn|d jot||ƒot Sq‰q‰WtS( s\ checklockerowner(user, locker) returns True if and only if user administers locker tfstlistacls/mit/RRRs^ .* rlidwka$RtrlidwkaN(RRtlockerRRRRRRRRtentryRR R(RR#RRR$((R tchecklockerowner*s.0   t__main__ttabbottssystem:debathenassystem:debathena-rootssystem:hmmt-requesttscriptstecpricethmmt( RtpprintRtopenRt simple_bind_sR RRR%t__name__(R RR+RRR%RR((R t?s