-- gitano.usercommand -- -- Gitano user-commands -- -- Copyright 2012 Daniel Silverstone local log = require 'gitano.log' local util = require 'gitano.util' local repository = require 'gitano.repository' local config = require 'gitano.config' local sio = require 'luxio.simple' local builtin_whoami_short = "Find out how Gitano identifies you" local builtin_whoami_helptext = [[ usage: whoami Tells you who you are, what your email address is set to, what keys you have registered etc. ]] local function builtin_whoami_validate(config, repo, cmdline) -- whoami if #cmdline > 1 then log.error("usage: whoami") return false end return true end local function builtin_whoami_prep(config, repo, cmdline, context) context.operation = "whoami" return config.repo:run_lace(context) end local function builtin_whoami_run(config, repo, cmdline, env) local username = env["GITANO_USER"] local userdata = config.users[username] log.stdout(" User name:", username) log.stdout(" Real name:", userdata.real_name or "Unknown") log.stdout("Email address:", userdata.email_address or "unknown@example.com") local pfx = " SSH key:" local longesttag = 0 for tagname in pairs(userdata.keys) do if #tagname > longesttag then longesttag = #tagname end end for tagname, keydata in pairs(userdata.keys) do local suffix = (env.GITANO_KEYTAG == tagname) and " [*]" or "" local spaces = (" "):rep(longesttag - #tagname) log.stdout(pfx .. spaces, tagname, "=>", keydata.keytag .. suffix) pfx = " " end local groups = {} local indirect = {} local maxname = 0 for grname, gtab in pairs(config.groups) do log.ddebug(grname, "?") if gtab.filtered_members[username] then if #grname > maxname then maxname = #grname end groups[#groups+1] = grname log.ddebug(grname,"=", tostring(#groups)) if not gtab.members[username] then indirect[grname] = gtab.filtered_members[username] end end end if #groups > 0 then pfx = " In groups:" table.sort(groups) for _, group in ipairs(groups) do local spaces = (" "):rep(maxname - #group) log.ddebug(group, indirect[group] or "DIRECT") local via = indirect[group] and (" (via %s)"):format((indirect[group]:match("^[^!]+!([^!]+)")) or "???") or "" log.stdout(pfx, spaces .. group .. ":", config.groups[group].settings.description .. via) pfx = " " end end return "exit", 0 end local builtin_sshkey_short = "SSH key management" local builtin_sshkey_helptext = [[ usage: sshkey [ ] With no subcommand, sshkey will list the ssh keys you have, similarly to the whoami command. sshkey add Adds an ssh key with the given tag. The content of the key must be supplied on a single line on stdin. cat id_rsa.pub | ssh gitano@somehost sshkey add personal-laptop sshkey del Removes an ssh key with the given tag. If the current access is via that ssh key then you cannot remove it. Add a new key and switch to using that one first. ]] local function builtin_sshkey_validate(config, _, cmdline) if #cmdline == 1 then cmdline[2] = "list" end if cmdline[2] == "list" then if #cmdline > 2 then log.error("sshkey list: No arguments expected") return false end elseif cmdline[2] == "add" or cmdline[2] == "del" then if #cmdline ~= 3 then log.error("sshkey", cmdline[2] .. ": Expected tag and no more") return false end if not cmdline[3]:match("^[a-z][a-z0-9_-]+$") then log.error("sshkey:", cmdline[3], "is not a valid tag name.") log.state("Tag names start with a letter and may contain only letters") log.state("and numbers, underscores and dashes. Tag names must be at") log.state("least two characters long.") return false end else log.error("sshkey: Unknown subcommand", cmdline[2]) return false end return true end local function builtin_sshkey_prep(config, _, cmdline, context) context.operation = "sshkey" local action, reason = config.repo:run_lace(context) if action == "deny" then return reason end local utab = config.users[context.user] if cmdline[2] == "add" then -- Ensure that the given tag doesn't already exist if utab.keys[cmdline[3]] then return "deny", "Key tag " .. cmdline[3] .. " already exists" end elseif cmdline[2] == "del" then -- Ensure that the given tag does exist if not utab.keys[cmdline[3]] then return "deny", "Key tag " .. cmdline[3] .. " does not exist" end end return action, reason end local function builtin_sshkey_run(conf, _, cmdline, env) local utab = conf.users[env.GITANO_USER] if cmdline[2] == "list" then if not next(utab.keys) then log.warn("There are no SSH keys registered for", env.GITANO_USER .. ", sorry") else local pfx = " SSH key:" for tagname, keydata in pairs(utab.keys) do local suffix = (env.GITANO_KEYTAG == tagname) and " [*]" or "" log.state(pfx, tagname, "=>", keydata.keytag .. suffix) pfx = " " end end elseif cmdline[2] == "add" then local sshkey = sio.stdin:read("*l") local keytype, keydata, keytag = sshkey:match("^([^ ]+) ([^ ]+) ([^ ].*)$") if not (keytype and keydata and keytag) then log.error("Unable to parse key,", filename, "did not smell like an OpenSSH v2 key") return "exit", 1 end if (keytype ~= "ssh-rsa") and (keytype ~= "ssh-dss") and (keytype ~= "ecdsa-sha2-nistp256") and (keytype ~= "ecdsa-sha2-nistp384") and (keytype ~= "ecdsa-sha2-nistp521") then log.error("Unknown key type", keytype) return "exit", 1 end local keytab = { data = sshkey, keyname = cmdline[3], username = env.GITANO_USER, keytag = keytag, } utab.keys[cmdline[3]] = keytab elseif cmdline[2] == "del" then utab.keys[cmdline[3]] = nil end if cmdline[2] ~= "list" then -- Store the config back. local action = (cmdline[2] == "add") and "Added" or "Deleted" action = action .. " " .. cmdline[3] .. " for " .. env.GITANO_USER local ok, msg = config.commit(conf, action, env.GITANO_USER) if not ok then log.error(msg) return "exit", 1 end end return "exit", 0 end local function register_commands(reg) assert(reg("whoami", builtin_whoami_short, builtin_whoami_helptext, builtin_whoami_validate, builtin_whoami_prep, builtin_whoami_run, false, false)) assert(reg("sshkey", builtin_sshkey_short, builtin_sshkey_helptext, builtin_sshkey_validate, builtin_sshkey_prep, builtin_sshkey_run, false, false)) end return { register = register_commands }