Remove user shell attribute as enum (#117)

* Remove user shell attribute as enum

* Add changelog fragment for #117

Author: DonGiovanni83

changelogs/fragments/117-remove-user-shell-attribute-as-enum.yml

@@ -0,0 +1,3 @@
+---
+bugfixes:
+    - system_access_users - Remove the UserLoginEnum type to prevent strict validation.

plugins/module_utils/system_access_users_utils.py

@@ -63,16 +63,6 @@ class OPNSenseCryptReturnError(Exception):
     """
 
 
-# pylint: disable=too-few-public-methods
-class UserLoginShell(ListEnum):
-    """Represents the user login shell."""
-
-    NOLOGIN = "/sbin/nologin"
-    CSH = "/bin/csh"
-    SH = "/bin/sh"
-    TCSH = "/bin/tcsh"
-
-
 @dataclass
 class Group:
     """
@@ -190,7 +180,7 @@ class User:
         descr (Optional[str]): A description of the user, if available.
         ipsecpsk (Optional[str]): IPsec pre-shared key, if applicable.
         otp_seed (Optional[str]): OTP seed for two-factor authentication, if used.
-        shell (Optional[UserLoginShell]): The user's login shell, if specified.
+        shell (Optional[str]): The user's login shell, if specified.
         uid (Optional[str]): The user's unique identifier.
         disabled (bool): Whether the user is disabled (default is False).
         full_name (Optional[str]): The user's full name, if available.
@@ -225,7 +215,7 @@ class User:
     descr: Optional[str] = None
     ipsecpsk: Optional[str] = None
     otp_seed: Optional[str] = None
-    shell: Optional[UserLoginShell] = UserLoginShell.NOLOGIN
+    shell: str = "/sbin/nologin"
     uid: Optional[str] = None
     disabled: bool = False
     full_name: Optional[str] = None
@@ -245,8 +235,6 @@ def __init__(self, **kwargs):
         _extra_attrs: dict = {}
         for key, value in kwargs.items():
             if key in _attr_names:
-                if key == "shell":
-                    value = UserLoginShell.from_string(value)
                 setattr(self, key, value)
                 continue
 
@@ -264,20 +252,6 @@ def __eq__(self, other) -> bool:
 
         return True
 
-    def __post_init__(self) -> None:
-        # Manually define the fields and their expected types
-        enum_fields = {
-            "shell": UserLoginShell,
-        }
-
-        for field_name, field_type in enum_fields.items():
-            value = getattr(self, field_name)
-
-            # Check if the value is a string and the field_type is a subclass of ListEnum
-            if isinstance(value, str) and issubclass(field_type, ListEnum):
-                # Convert string to ListEnum
-                setattr(self, field_name, field_type.from_string(value))
-
     def set_otp_seed(self, otp_seed: str = None) -> str:
         """
         Generates and returns a base32-encoded OTP seed.

tests/unit/plugins/module_utils/test_system_access_users_utils.py

@@ -15,7 +15,6 @@
     Group,
     User,
     UserSet,
-    UserLoginShell,
     OPNSenseGroupNotFoundError,
     OPNSenseCryptReturnError,
 )
@@ -157,7 +156,7 @@ def test_user_from_xml():
     assert test_user.authorizedkeys is None
     assert test_user.ipsecpsk is None
     assert test_user.otp_seed is None
-    assert test_user.shell == UserLoginShell.SH
+    assert test_user.shell == "/bin/sh"
     assert test_user.uid == "1000"
 
 
@@ -204,7 +203,7 @@ def test_user_with_api_key_from_xml():
     assert test_user.authorizedkeys is None
     assert test_user.ipsecpsk is None
     assert test_user.otp_seed is None
-    assert test_user.shell == UserLoginShell.SH
+    assert test_user.shell == "/bin/sh"
     assert test_user.uid == "1001"
 
 
@@ -227,7 +226,7 @@ def test_user_from_ansible_module_params_simple(sample_config_path):
     assert new_test_user.expires is None
     assert new_test_user.authorizedkeys is None
     assert new_test_user.ipsecpsk is None
-    assert new_test_user.shell == UserLoginShell.SH
+    assert new_test_user.shell == "/bin/sh"
     assert new_test_user.uid == "1000"
 
 
@@ -316,7 +315,7 @@ def test_user_from_ansible_module_params_with_group(sample_config_path):
     assert new_test_user.expires is None
     assert new_test_user.authorizedkeys is None
     assert new_test_user.ipsecpsk is None
-    assert new_test_user.shell == UserLoginShell.SH
+    assert new_test_user.shell == "/bin/sh"
     assert new_test_user.uid == "1000"
     assert new_test_user.groupname == ["admins"]
 
@@ -504,7 +503,7 @@ def test_user_from_ansible_module_params_with_authorizedkeys(
     assert new_test_user.expires is None
     assert new_test_user.authorizedkeys == "3J35EY37QTNXFFEECJGZ32WVYQC5W4GZ"
     assert new_test_user.ipsecpsk is None
-    assert new_test_user.shell == UserLoginShell.SH
+    assert new_test_user.shell == "/bin/sh"
     assert new_test_user.uid == "1000"