Nit 1204 ldap data refresh remove passwords (#42)

* remove passwords command

* formatting

* Update user.py

* Update user.py

* Update user.py

* Update format-python.yml

* Update format-python.yml

* Formatted code with black --line-length 120

* Update format-python.yml

---------

Co-authored-by: github-actions <41898282+github-actions[bot]@users.noreply.github.com>

.github/workflows/format-python.yml

@@ -1,16 +1,16 @@
 name: Format Python
 on:
   pull_request:
-    types:
-      - [ opened, synchronize, reopened, edited, ready_for_review ]
+    types: [ opened, edited, reopened, synchronize, ready_for_review ]
   workflow_dispatch:
 jobs:
   format:
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
         with:
-          fetch-depth: 0
+          repository: ${{ github.event.pull_request.head.repo.full_name }}
+          ref: ${{ github.event.pull_request.head.ref }}
       - name: Format code with black
         run: |
           pip install black

cli/__init__.py

@@ -209,6 +209,23 @@ def user_expiry(user_ou, root_dn):
     cli.ldap_cmds.user.user_expiry(user_ou=user_ou, root_dn=root_dn)
 
 
+@click.command()
+@click.option(
+    "-u",
+    "--user-ou",
+    help="OU to add users to, defaults to ou=Users",
+    default="ou=Users",
+)
+@click.option(
+    "-r",
+    "--root-dn",
+    help="Root DN to add users to, defaults to dc=moj,dc=com",
+    default="dc=moj,dc=com",
+)
+def remove_all_user_passwords(user_ou, root_dn):
+    cli.ldap_cmds.user.remove_all_user_passwords(user_ou=user_ou, root_dn=root_dn)
+
+
 # from cli.ldap import test
 
 main_group.add_command(add_roles_to_users)
@@ -217,6 +234,7 @@ def user_expiry(user_ou, root_dn):
 main_group.add_command(update_user_roles)
 main_group.add_command(deactivate_crc_users)
 main_group.add_command(user_expiry)
+main_group.add_command(remove_all_user_passwords)
 
 logger.configure_logging()
 

cli/database/__init__.py

@@ -13,7 +13,5 @@ def connection():
         log.debug("Created database connection successfully")
         return conn
     except Exception as e:
-        log.exception(
-            f"Failed to create database connection. An exception of type {type(e).__name__} occurred: {e}"
-        )
+        log.exception(f"Failed to create database connection. An exception of type {type(e).__name__} occurred: {e}")
         raise e

cli/env.py

@@ -27,9 +27,7 @@
         ).replace(
             "_DICT",
             "",
-        ): ast.literal_eval(val)
-        if "DICT" in key
-        else val
+        ): (ast.literal_eval(val) if "DICT" in key else val)
         for key, val in dotenv_values(".vars").items()
         if val is not None
     },  # load development variables
@@ -40,9 +38,7 @@
         ).replace(
             "_DICT",
             "",
-        ): ast.literal_eval(val)
-        if "DICT" in key
-        else val
+        ): (ast.literal_eval(val) if "DICT" in key else val)
         for key, val in os.environ.items()
         if key.startswith("VAR_") and val is not None
     },
@@ -61,9 +57,7 @@
         .replace(
             "SSM_",
             "",
-        ): ast.literal_eval(val)
-        if "_DICT" in key
-        else val
+        ): (ast.literal_eval(val) if "_DICT" in key else val)
         for key, val in dotenv_values(".secrets").items()
         if val is not None
     },
@@ -79,9 +73,7 @@
         .replace(
             "SSM_",
             "",
-        ): ast.literal_eval(val)
-        if "DICT" in key
-        else val
+        ): (ast.literal_eval(val) if "DICT" in key else val)
         for key, val in os.environ.items()
         if key.startswith("SECRET_") or key.startswith("SSM_") and val is not None
     },

cli/git/__init__.py

@@ -36,9 +36,7 @@ def get_access_token(
             headers=headers,
         )
     except Exception as e:
-        logging.exception(
-            f"Failed to get access token. An exception of type {type(e).__name__} occurred: {e}"
-        )
+        logging.exception(f"Failed to get access token. An exception of type {type(e).__name__} occurred: {e}")
         raise e
 
     # extract the token from the response
@@ -68,9 +66,7 @@ def get_repo(
                 multi_options=multi_options,
             )
         except Exception as e:
-            logging.exception(
-                f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}"
-            )
+            logging.exception(f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}")
             raise e
     # if there is a token, assume auth is required and use the token and auth_type
     elif token:
@@ -83,9 +79,7 @@ def get_repo(
                 multi_options=multi_options,
             )
         except Exception as e:
-            logging.exception(
-                f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}"
-            )
+            logging.exception(f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}")
             raise e
     # if there is no token, assume auth is not required and clone without
     else:
@@ -97,7 +91,5 @@ def get_repo(
                 multi_options=multi_options,
             )
         except Exception as e:
-            logging.exception(
-                f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}"
-            )
+            logging.exception(f"Failed to clone repo. An exception of type {type(e).__name__} occurred: {e}")
             raise e

cli/ldap_cmds/rbac.py

@@ -439,7 +439,7 @@ def user_ldifs(
     for file in user_files:
         records = ldif.LDIFRecordList(open(file, "rb"))
         records.parse()
-        
+
         # pprint(records.all_records)
         # loop through the records
         for entry in records.all_records: