shaba/one
1
0
Fork 0
mirror of https://github.com/OpenNebula/one.git synced 2025-03-22 18:50:08 +03:00
Code Releases Wiki Activity

Made timespan an option. Added default proxy locations. read in certificate chain and key from files. Hold cert chain in array.

Browse Source
This commit is contained in:
Ted 2011-08-23 14:28:18 -05:00
parent 2508c1fbe7
commit f9f2ad176d
1 changed files with 47 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

57
src/authm_mad/oneauth
View File

@ -103,20 +103,57 @@ cmd=CommandParser::CmdParser.new(ARGV) do
ssh.login(user, time)
exit_with_code 0
end
loginx509_desc = <<-EOT.unindent
Generates an X509-based authenication proxy based on a user certificate.
oneauth x509_login <username> [<lifetime in seconds>] [<cert or proxy path>] [<key path>]
EOT
command 'loginx509', login_desc, :text, :text, :text, :text do
command 'loginx509', loginx509_desc, :text, :text, :text, :text do
user = args[0]
cert = File.read(args[1])
key = File.read(args[2])
time = args[3]
if time
time=time.to_i
else
time=3600
time = Integer(args[1]) rescue false
certpath = args[2]
keypath = args[3]
# Set default arguments
if !time
time=0
certpath = args[1]
keypath = args[2]
end
auth = X509Auth.new(:cert=>cert,:key=>key)
if !certpath
certpath=ENV["X509_PROXY_CERT"]
end
if !certpath
certpath='/tmp/x509up_u' + Process.uid.to_s
end
if !keypath
keypath=certpath
end
if !keypath
exit_with_code 1
end
# Read in the certificates
if @options[:certpath] && File.readable?(@options[:certpath])
certs_in = File.read(@options[:certpath])
certs_pem = certs_in.scan(/-+BEGIN CERTIFICATE-+\n([^-]*)\n-+END CERTIFICATE-+/)
certs_pem.flatten!
end
# Read in the key
if @options[:keypath] && File.readable?(@options[:keypath])
key_in = File.read(@options[:keypath])
rc = key_in.match(/-+BEGIN RSA PRIVATE KEY-+\n([^-]*)\n-+END RSA PRIVATE KEY-+/)
key_pem = rc[0]
end
# Invoke the login method
auth = X509Auth.new(:certs_pem=>certs_pem,:key_pem=>key_pem)
auth.login(user, time)
exit_with_code 0