acl_scripts/add_host.sql at master · sthilaire/acl_scripts · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
---------------------------------------------------------------------
--
--               Copyright(C) 2013 Tim St. Hilaire
--                         All Rights Reserved
--
---------------------------------------------------------------------

--  verify off prevents the old/new substitution message
set verify off
-- Show the dbms_output results
set serverout on
-- Hide the "procedure completed messages"
set feedback off

-- start with the list of files
@show_descrip

PROMPT ================================================================================
PROMPT == ACL HOST ADD
PROMPT ==
PROMPT == This will add host and port range to a specific ACL file
PROMPT ================================================================================
PROMPT

-- setup bind variables
variable ACL_FILE varchar2(4000)
variable ACL_HOST varchar2(4000)
variable ACL_PLOW number
variable ACL_PHI  number

-- Gather User Input into substitution variables
ACCEPT ACL_FILE CHAR                     PROMPT '== Enter the ACL FILE   (Full .xml Path)   : '
ACCEPT ACL_HOST CHAR DEFAULT '*'         PROMPT '== Enter the HOST to assign to the ACL [*] : '
ACCEPT ACL_PLOW CHAR DEFAULT NULL        PROMPT '== Enter the LOW PORT limit  (Null is OK)  : '
ACCEPT ACL_PHI  CHAR DEFAULT NULL        PROMPT '== Enter the HIGH PORT limit (Null is OK)  : '
PROMPT

-- Assign Values to bind variables
exec :ACL_FILE := trim('&ACL_FILE')
exec :ACL_HOST := trim('&ACL_HOST')
exec :ACL_PLOW := &ACL_PLOW
exec :ACL_PHI  := &ACL_PHI


DECLARE
  l_process_error EXCEPTION;
  l_temp VARCHAR2(32767);
BEGIN

  -- Input Check
  IF :ACL_FILE IS NULL
  or :ACL_FILE = ''
  or :ACL_HOST = '' THEN
    dbms_output.put_line('** ISSUE: FILE and HOST inputs are required..');
    raise l_process_error;
  END IF;

  -- Confirm ACL file input exists
  -- include ACL list that may not have privs
  BEGIN
    SELECT path
    INTO l_temp
    FROM path_view
    WHERE path = :ACL_FILE
      AND path LIKE '/sys/acls/%.xml';
  EXCEPTION WHEN NO_DATA_FOUND THEN
    dbms_output.put_line('** ISSUE: The ACL File entered ['||:ACL_FILE||'] does not exist');
    raise l_process_error;
  END;

  dbms_output.put_line('All Checks Passed...');

  -- Actual Assignment procedure
  DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL (
     acl         => :ACL_FILE,
     host        => :ACL_HOST,
     lower_port  => :ACL_PLOW,
     upper_port  => :ACL_PHI
     );

  commit;

  dbms_output.put_line('Complete...   Review results below.');

EXCEPTION
  WHEN l_process_error THEN
    dbms_output.put_line('** Due to issue the process has ended....');
    dbms_output.put_line('.');
END;
/

-- shows the results
-- includes the prompt
@show_hosts