#!/usr/bin/env python3

# coding: utf-8

# See COPYING for distribution information.

"""

    Use this script in order to set database permissions for your Dovecot

    and Postfix database users.

    Run `python set-permissions.py -h` for details.

"""

import getpass

import sys

has_psycopg2 = False

try:

    import psycopg2

    has_psycopg2 = True

except ImportError:

    try:

        from pyPgSQL import PgSQL

    except ImportError:

        sys.stderr.write('error: no suitable database module found\n')

        raise SystemExit(1)

if has_psycopg2:

    DBErr = psycopg2.DatabaseError

else:

    DBErr = PgSQL.libpq.DatabaseError

        err_hdlr('missing Postfix database user name')

        err_hdlr('missing Dovecot database user name')

def get_dbh(database, user, password, host, port):

    if has_psycopg2:

        return psycopg2.connect(database=database, user=user,

                                password=password, host=host, port=port)

    return PgSQL.connect(user=user, password=password, host=host,

                         database=database, port=port)

    descr = 'Set permissions for Dovecot and Postfix in the vmm database.'

            action='store_true', help='Prompt for the database password.')

            help='Hostname or IP address of the database server. Leave ' +

                 'blank in order to use the default Unix-domain socket.')

            default='mailsys',

            help='Specifies the TCP port or the local Unix-domain socket ' +

                 'file extension on which the server is listening for ' +

            default=getpass.getuser(),

            default='dovecot',

            default='postfix',

    return parser

def set_permissions(dbh, dc_vers, dovecot, postfix):

    dc_rw = ('userquota_11', 'userquota')[dc_vers == 12]

    dbc = dbh.cursor()

    dbc.execute('GRANT SELECT ON domain_data, domain_name, mailboxformat, '

                'maillocation, quotalimit, service_set, users TO %s' % dovecot)

    dbc.execute('GRANT SELECT, INSERT, UPDATE, DELETE ON %s TO %s' %

                (dc_rw, dovecot))

    dbc.execute('GRANT SELECT ON alias, catchall, domain_data, domain_name, '

                'maillocation, postfix_gid, relocated, transport, users TO %s'

                % postfix)

    dbc.close()

def set_permissions84(dbh, dc_vers, dovecot, postfix):

    dc_rw_tbls = ('userquota_11', 'userquota')[dc_vers == 12]

    dc_ro_tbls = 'mailboxformat, maillocation, service_set, quotalimit'

    pf_ro_tbls = 'alias, catchall, postfix_gid, relocated, transport'

    db = dict(dovecot=dovecot, postfix=postfix)

    db['dovecot_tbls'] = {

        'domain_data': 'domaindir, gid, qid, ssid',

        'domain_name': 'domainname, gid',

        'users': 'gid, local_part, mid, passwd, qid, ssid, uid',

    }

    db['postfix_tbls'] = {

        'domain_data': 'domaindir, gid, tid',

        'domain_name': 'domainname, gid',

        'maillocation': 'directory, mid',

        'users': 'gid, local_part, mid, tid, uid',

    }

    dbc = dbh.cursor()

    dbc.execute('GRANT SELECT, INSERT, UPDATE, DELETE ON %s TO %s' %

                (dc_rw_tbls, db['dovecot']))

    dbc.execute('GRANT SELECT ON %s TO %s' % (dc_ro_tbls, db['dovecot']))

    dbc.execute('GRANT SELECT ON %s TO %s' % (pf_ro_tbls, db['postfix']))

    for table, columns in db['dovecot_tbls'].items():

        dbc.execute('GRANT SELECT (%s) ON %s TO %s' % (columns, table,

                                                       db['dovecot']))

    for table, columns in db['postfix_tbls'].items():

        dbc.execute('GRANT SELECT (%s) ON %s TO %s' % (columns, table,

                                                       db['postfix']))

    dbc.close()

def set_versions(dbh, versions):

    dbc = dbh.cursor()

    if hasattr(dbh, 'server_version'):

        versions['pgsql'] = dbh.server_version

    else:

        try:

            dbc.execute("SELECT current_setting('server_version_num')")

            versions['pgsql'] = int(dbc.fetchone()[0])

        except DBErr:

            versions['pgsql'] = 80199

    dbc.execute("SELECT relname FROM pg_stat_user_tables WHERE relname LIKE "

                "'userquota%'")

    res = dbc.fetchall()

    dbc.close()

    tbls = [tbl[0] for tbl in res]

    if 'userquota' in tbls:

        versions['dovecot'] = 12

    elif 'userquota_11' in tbls:

        versions['dovecot'] = 11

    else:

        sys.stderr.write('error: no userquota table found\nis "' + dbh.dsn +

                         '" correct? is the database up to date?\n')

        dbh.close()

        raise SystemExit(1)

if __name__ == '__main__':

    versions = {}

    set_versions(dbh, versions)

    if versions['pgsql'] < 80400:

    else:

    dbh.commit()

    dbh.close()