python-securepass 0.4.3-1 / usr / lib / python-securepass / sp-sshkey

This file is indexed.

/usr/lib/python-securepass/sp-sshkey is in python-securepass 0.4.3-1.

This file is owned by root:root, with mode 0o755.

The actual contents of the file can be viewed below. 

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
#!/usr/bin/python
##
## SecurePass CLI tools utilities
## Get SSH for a given user
## helper for AuthorizedKeysCommand in OpenSSSH
##
## In securepass.conf specify:
## [nss] and realm = myrealm to assign default realm
## [ssh] and root = user,user to assign root keys
##
## (c) 2013 Giuseppe Paterno' (gpaterno@gpaterno.com)
##          GARL Sagl (www.garl.ch)
##

from argparse import ArgumentParser
from securepass import utils
from securepass import securepass
import logging


def get_user_key(handler, username):
    # Output the ssh key, if found as attribute
    # TODO: Need to put some caching here
    try:
        attributes = handler.users_xattr_list(user=username)
        return attributes.get("sshkey", None)
    except Exception:
        return None


# Autoappend the realm
def expand_user(user):
    if not '@' in user and 'realm' in config:
        return "%s@%s" % (user, config['realm'])
    else:
        return user


parser = ArgumentParser(
    description="List user's SSH keys",
    prog="sp-sshkey",
)


parser.add_argument('-D', '--debug',
                    action='store_true', dest="debug_flag",
                    help="Enable debug output",)
parser.add_argument('-r', '--realm',
                    action='store', dest="realm",
                    help="Set alternate realm",)
parser.add_argument('username', action='store')

values = parser.parse_args()


## Set debug
FORMAT = '%(asctime)-15s %(levelname)s: %(message)s'
if values.debug_flag:
    logging.basicConfig(format=FORMAT, level=logging.DEBUG)
else:
    logging.basicConfig(format=FORMAT, level=logging.INFO)


## Load config
config = utils.loadConfig()

## Config the handler
sp_handler = securepass.SecurePass(app_id=config['app_id'],
                                   app_secret=config['app_secret'],
                                   endpoint=config['endpoint'])

## Check if we have a domain, otherwise append
username = expand_user(values.username)
logging.debug("Username is: %s" % username)

# Special case for root, otherwise print ssh key
if username.split("@")[0] == 'root' and 'root' in config:
    logging.debug("root request detected, cycling for users")

    for user in config['root'].split(','):
        key = get_user_key(sp_handler, expand_user(user))
        if key is not None:
            print key
else:
    key = get_user_key(sp_handler, username)
    if key is not None:
        print key

APT Browse - Built by Thomas Orozco.