tags:

views:

279

answers:

1
+4  Q: 

How can I edit Kerberos 5 configuration files with Perl?

Has anyone come across a Perl module that will parse (and write) kerberos configuration files (ie /etc/krb5.conf)? I have looked at quite a few parsing modules like Config::General, Config::Auto, etc., but none seem to be able to handle nested structures like the following:

pam = {
  debug = false
  ticket_lifetime = 36000
  renew_lifetime = 36000
  forwardable = true
  krb4_convert = false
}

It also needs to handle INI-style sections, for example:

[domain_realm]
 .example.com = EXAMPLE.COM
 example.com = EXAMPLE.COM

[appdefaults]
 pam = {
   debug = false
   ticket_lifetime = 36000
   renew_lifetime = 36000
   forwardable = true
   krb4_convert = false
 }

More details on the format can be found at the krb5 conf documentation

I’m at the point of writing my own parser, but I'd rather not have to do so if someone else has written a nice, elegant module already.

+3  A: 

I guess if it takes about 10 minutes to write a parser, it is probably not so interesting to make it a module. Here's a piece of code that probably does the job (disclaimer: I don't know anything about the config format for Kerberos, the code is based on what you posted here).

#!/usr/bin/perl -w
use strict;

my %conf;
my $section;

while (<>) {
    if (/^\s*(\S*)\s*=\s*\{\s*$/) {
        $section = $1;
        $conf{$section} = {};
    } elsif (/^\s*(\S*)\s*=\s*(\S*)\s*$/) {
        my $key = $1;
        my $value = $2;
        if ($section) {
            $conf{$section}{$key}=$value;
        }
    }
}

foreach (keys %conf) {
    $section = $_;
    foreach (keys %{$conf{$section}}) {
        print "$section:$_:$conf{$section}{$_}\n";
    }
}

EDIT: Parsing the ini format is not difficult either. You will just need to add a few more if's in the while loop, and make the data structure %conf slightly more complicated. Instead of a hash of hash, you will need a hash of hash of hash, where the first level key is the keyword in [...], and the second level is what I wrote here (for "pam = {").

PolyThinker  2009-01-07 01:51:07
Thanks for your suggestions. I'm heading down a similar path, but as you probably guessed, the file format is slightly more complex. I've now added some more details to the question that give a bit more detail. Thanks again for your help though.
Horatio Alderaan  2009-01-07 02:34:06
Yeah. That's exactly what I've ended up doing, with a bit of added logic to accept arbitrarily deep section levels.
Horatio Alderaan  2009-01-07 03:58:07

related questions

Regex to replace Boolean with bool
How do I lock a file in Perl?
How do you use XML::Parser with Style => 'Objects'
Parsing XML Elements & Attributes with Perl
Regex to match all HTML tags except <p> and </p>
Best way to extract data from a FileMaker Pro database in a script?
What's the fastest way to determine a full URL from a relative URL (given a base URL).
Why can't I connect to my CAS server with Perl's AuthCAS?
Why can't I fetch wikipedia pages with LWP::Simple?
How do I perform a Perl substitution on a string while keeping the original?
How do I read in the contents of a directory in Perl?
How can Perl's system() print the command that it's running?
How can I test STDIN without blocking in Perl?
How do I tell if a variable has a numeric value in Perl?
Why doesn't my Perl map return anything?
How can I determine the type of a blessed reference in Perl?
Parsing attributes with regex in Perl
How do you retrieve selected text using Regex in C#?
Why does the Perl conditional operator not do what I expect?
Class::DBI-like library for php?
How do you create objects in Perl?
How do I remove duplicate items from an array in Perl?
Is The Perl Journal available online?
Can you force either a scalar or array ref to be an array in Perl?
What's the safest way to iterate through the keys of a Perl hash?