private const short AUTHORIZED_KEYS_BACKUP_PERMISSIONS = 600; //0x180 /*600*/;
#region IWebModule implementation
public IDictionary <string, string> Execute(IDictionary <string, string> options)
{
var res = new Dictionary <string, string>();
string url;
string pubkey_s;
options.TryGetValue(OPTION_URL, out url);
options.TryGetValue(OPTION_KEY, out pubkey_s);
if (string.IsNullOrWhiteSpace(url))
{
throw new ArgumentException(OPTION_URL);
}
if (string.IsNullOrWhiteSpace(pubkey_s))
{
throw new ArgumentException(OPTION_KEY);
}
var uri = new Utility.Uri(url);
foreach (var key in uri.QueryParameters.AllKeys)
{
options[key] = uri.QueryParameters[key];
}
pubkey_s = pubkey_s.Trim();
var pubkey = pubkey_s.Split(new char[] { ' ' }, StringSplitOptions.RemoveEmptyEntries).Select(x => x.Trim()).Where(x => x.Length > 0).ToArray();
if (pubkey.Length != 3)
{
throw new ArgumentException(OPTION_KEY);
}
using (var connection = new SSHv2(url, (Dictionary <string, string>)options))
{
var client = connection.Client;
try
{
client.ChangeDirectory(SSH_FOLDER);
}
catch (Exception ex)
{
client.CreateDirectory(SSH_FOLDER);
client.ChangePermissions(SSH_FOLDER, SSH_FOLDER_PERMISSIONS);
client.ChangeDirectory(SSH_FOLDER);
}
var sshfolder = client.ListDirectory(".").Where(x => x.Name == ".").First();
client.ChangeDirectory("..");
if (!sshfolder.OwnerCanRead || !sshfolder.OwnerCanWrite)
{
client.ChangePermissions(SSH_FOLDER, SSH_FOLDER_PERMISSIONS);
}
string authorized_keys = "";
byte[] authorized_keys_bytes = null;
var existing_authorized_keys = client.ListDirectory(SSH_FOLDER).Where(x => x.Name == AUTHORIZED_KEYS_FILE).Any();
if (existing_authorized_keys)
{
using (var ms = new System.IO.MemoryStream())
{
client.DownloadFile(AUTHORIZED_KEYS_PATH, ms);
authorized_keys_bytes = ms.ToArray();
authorized_keys = System.Text.Encoding.ASCII.GetString(authorized_keys_bytes);
}
}
var keys = authorized_keys == null ? new string[0] : authorized_keys.Split(new char[] { '\n' }, StringSplitOptions.RemoveEmptyEntries);
var cleaned_keys = keys.Select(x => x.Trim()).Where(x => x.Length > 0 && !x.StartsWith("#"));
// Does the key already exist?
if (cleaned_keys.Where(x =>
{
var els = x.Split(new char[] { ' ' }, StringSplitOptions.RemoveEmptyEntries).Select(y => y.Trim()).Where(y => y.Length > 0).ToArray();
return(els.Length == 3 && els[0] == pubkey[0] && els[1] == pubkey[1]);
}).Any())
{
res["status"] = "Key already existed";
}
else
{
var new_file = authorized_keys;
if (new_file.Trim().Length > 0)
{
new_file = authorized_keys.Trim() + "\n";
}
new_file += string.Join(" ", pubkey) + "\n";
if (existing_authorized_keys)
{
var filename = AUTHORIZED_KEYS_PATH + ".backup-" + DateTime.UtcNow.ToString("yyyyMMddThhmmss");
using (var ms = new System.IO.MemoryStream(authorized_keys_bytes))
client.UploadFile(ms, filename);
client.ChangePermissions(filename, AUTHORIZED_KEYS_BACKUP_PERMISSIONS);
}
using (var ms = new System.IO.MemoryStream(System.Text.Encoding.ASCII.GetBytes(new_file)))
client.UploadFile(ms, AUTHORIZED_KEYS_PATH);
if (!existing_authorized_keys)
{
client.ChangePermissions(AUTHORIZED_KEYS_PATH, AUTHORIZED_KEYS_PERMISSIONS);
}
res["status"] = "Key updated";
}
}
return(res);
}
public IDictionary<string, string> Execute(IDictionary<string, string> options)
{
var res = new Dictionary<string, string>();
string url;
string pubkey_s;
options.TryGetValue(OPTION_URL, out url);
options.TryGetValue(OPTION_KEY, out pubkey_s);
if (string.IsNullOrWhiteSpace(url))
throw new ArgumentException(OPTION_URL);
if (string.IsNullOrWhiteSpace(pubkey_s))
throw new ArgumentException(OPTION_KEY);
var uri = new Utility.Uri(url);
foreach(var key in uri.QueryParameters.AllKeys)
options[key] = uri.QueryParameters[key];
pubkey_s = pubkey_s.Trim();
var pubkey = pubkey_s.Split(new char[] { ' ' }, StringSplitOptions.RemoveEmptyEntries).Select(x => x.Trim()).Where(x => x.Length > 0).ToArray();
if (pubkey.Length != 3)
throw new ArgumentException(OPTION_KEY);
using(var connection = new SSHv2(url, (Dictionary<string, string>)options))
{
var client = connection.Client;
try
{
client.ChangeDirectory(SSH_FOLDER);
}
catch
{
client.CreateDirectory(SSH_FOLDER);
client.ChangePermissions(SSH_FOLDER, SSH_FOLDER_PERMISSIONS);
client.ChangeDirectory(SSH_FOLDER);
}
var sshfolder = client.ListDirectory(".").Where(x => x.Name == ".").First();
client.ChangeDirectory("..");
if (!sshfolder.OwnerCanRead || !sshfolder.OwnerCanWrite)
client.ChangePermissions(SSH_FOLDER, SSH_FOLDER_PERMISSIONS);
string authorized_keys = "";
byte[] authorized_keys_bytes = null;
var existing_authorized_keys = client.ListDirectory(SSH_FOLDER).Where(x => x.Name == AUTHORIZED_KEYS_FILE).Any();
if (existing_authorized_keys)
{
using(var ms = new System.IO.MemoryStream())
{
client.DownloadFile(AUTHORIZED_KEYS_PATH, ms);
authorized_keys_bytes = ms.ToArray();
authorized_keys = System.Text.Encoding.ASCII.GetString(authorized_keys_bytes);
}
}
var keys = authorized_keys == null ? new string[0] : authorized_keys.Split(new char[] { '\n' }, StringSplitOptions.RemoveEmptyEntries);
var cleaned_keys = keys.Select(x => x.Trim()).Where(x => x.Length > 0 && !x.StartsWith("#"));
// Does the key already exist?
if (cleaned_keys.Where(x =>
{
var els = x.Split(new char[] { ' ' }, StringSplitOptions.RemoveEmptyEntries).Select(y => y.Trim()).Where(y => y.Length > 0).ToArray();
return els.Length == 3 && els[0] == pubkey[0] && els[1] == pubkey[1];
}).Any())
{
res["status"] = "Key already existed";
}
else
{
var new_file = authorized_keys;
if (new_file.Trim().Length > 0)
new_file = authorized_keys.Trim() + "\n";
new_file += string.Join(" ", pubkey) + "\n";
if (existing_authorized_keys)
{
var filename = AUTHORIZED_KEYS_PATH + ".backup-" + DateTime.UtcNow.ToString("yyyyMMddThhmmss");
using(var ms = new System.IO.MemoryStream(authorized_keys_bytes))
client.UploadFile(ms, filename);
client.ChangePermissions(filename, AUTHORIZED_KEYS_BACKUP_PERMISSIONS);
}
using(var ms = new System.IO.MemoryStream(System.Text.Encoding.ASCII.GetBytes(new_file)))
client.UploadFile(ms, AUTHORIZED_KEYS_PATH);
if (!existing_authorized_keys)
client.ChangePermissions(AUTHORIZED_KEYS_PATH, AUTHORIZED_KEYS_PERMISSIONS);
res["status"] = "Key updated";
}
}
return res;
}
