def ssh_keygen(user, key_type="rsa"):
"""Generates a pair of ssh keys in the user's home .ssh directory.
"""
d = user_exists(user)
if not d:
raise ExecutionError("user '%s' does not exists" % user)
elif "home" not in d:
raise ExecutionError("user '%s' has not declared path" % user)
else:
key_file = os.path.join(d["home"], ".ssh/id_%s.pub" % key_type)
if not file_exists(key_file):
dir_ensure(os.path.join(d["home"], ".ssh/"),
mode="0700",
owner=user)
_x = run("ssh-keygen -q -t %s -f '%s/.ssh/id_%s' -N ''" %
(key_type, d["home"], key_type))[0]
mico.output.info("created ssh-key for user %s" % user)
if _x.return_code == 0:
_x = file_attribs(os.path.join(d["home"],
".ssh/id_%s" % key_type),
owner=user)
if _x.return_code == 0:
return file_attribs(os.path.join(
d["home"], ".ssh/id_%s.pub" % key_type),
owner=user)
else:
return _x
else:
return _x
def ssh_keygen(user, key_type="rsa"):
"""Generates a pair of ssh keys in the user's home .ssh directory.
"""
d = user_exists(user)
if not d:
raise ExecutionError("user '%s' does not exists" % user)
elif "home" not in d:
raise ExecutionError("user '%s' has not declared path" % user)
else:
key_file = os.path.join(d["home"], ".ssh/id_%s.pub" % key_type)
if not file_exists(key_file):
dir_ensure(os.path.join(d["home"], ".ssh/"), mode="0700", owner=user)
_x = run("ssh-keygen -q -t %s -f '%s/.ssh/id_%s' -N ''" % (
key_type,
d["home"],
key_type
))[0]
mico.output.info("created ssh-key for user %s" % user)
if _x.return_code == 0:
_x = file_attribs(os.path.join(d["home"],".ssh/id_%s" % key_type), owner=user)
if _x.return_code == 0:
return file_attribs(os.path.join(d["home"],".ssh/id_%s.pub" % key_type), owner=user)
else:
return _x
else:
return _x
def ssh_authorize(user, key):
"""Adds the given key to the '.ssh/authorized_keys' for the given
user."""
u = user_exists(user)
if not u:
raise ExecutionError("user '%s' does not exists" % user)
elif "home" not in u:
raise ExecutionError("user '%s' has not declared path" % user)
else:
key_file = os.path.join(u["home"], ".ssh/authorized_keys")
key = key.strip(os.linesep) + os.linesep
if file_exists(key_file):
data = file_read(key_file)
if data.find(key[:-1]) == -1:
_x = file_append(key_file, key)
else:
_x = data
mico.output.info("key %s added to user %s" % (
key.split()[2],
user,
))
return _x
else:
_x = dir_ensure(os.path.dirname(key_file), owner=user, mode="700")
if _x.return_code == 0:
_x = file_write(key_file, key, owner=user, mode="600")
if _x.return_code == 0:
_x = file_attribs(key_file, owner=user, mode="600")
mico.output.info("key %s added to user %s" % (
key.split()[2],
user,
))
return _x
def ssh_authorize(user, key):
"""Adds the given key to the '.ssh/authorized_keys' for the given
user."""
u = user_exists(user)
if not u:
raise ExecutionError("user '%s' does not exists" % user)
elif "home" not in u:
raise ExecutionError("user '%s' has not declared path" % user)
else:
key_file = os.path.join(u["home"], ".ssh/authorized_keys")
key = key.strip(os.linesep) + os.linesep
if file_exists(key_file):
data = file_read(key_file)
if data.find(key[:-1]) == -1:
_x = file_append(key_file, key)
else:
_x = data
mico.output.info("key %s added to user %s" % (key.split()[2], user,))
return _x
else:
_x = dir_ensure(os.path.dirname(key_file), owner=user, mode="700")
if _x.return_code == 0:
_x = file_write(key_file, key, owner=user, mode="600")
if _x.return_code == 0:
_x = file_attribs(key_file, owner=user, mode="600")
mico.output.info("key %s added to user %s" % (key.split()[2], user,))
return _x
def dir_attribs(location, mode=None, owner=None, group=None, recursive=False):
"""Updates the mode/owner/group for the given remote directory.
"""
from mico.lib.core.file import file_attribs
return file_attribs(location,
mode=mode,
owner=owner,
group=group,
recursive=recursive)
def dir_attribs(location, mode=None, owner=None, group=None, recursive=False):
"""Updates the mode/owner/group for the given remote directory.
"""
from mico.lib.core.file import file_attribs
return file_attribs(location, mode=mode, owner=owner, group=group, recursive=recursive)