summaryrefslogtreecommitdiff
path: root/scripts
diff options
context:
space:
mode:
Diffstat (limited to 'scripts')
-rwxr-xr-x[-rw-r--r--]scripts/vyatta-load-user-key.pl77
1 files changed, 36 insertions, 41 deletions
diff --git a/scripts/vyatta-load-user-key.pl b/scripts/vyatta-load-user-key.pl
index 6379fa8c..9b84ab2a 100644..100755
--- a/scripts/vyatta-load-user-key.pl
+++ b/scripts/vyatta-load-user-key.pl
@@ -19,8 +19,12 @@
#
# **** End License ****
-use strict;
use lib "/opt/vyatta/share/perl5/";
+use strict;
+use warnings;
+
+use Vyatta::Config;
+
sub usage {
print "Usage: $0 user filename|url\n";
@@ -34,7 +38,7 @@ sub check_http {
# error codes are send back in html, so 1st try a header
# and look for "HTTP/1.1 200 OK"
#
- my $rc = `curl -q -I $url 2>&1`;
+ my $rc = `curl -s -q -I $url 2>&1`;
if ( $rc =~ /HTTP\/\d+\.?\d\s+(\d+)\s+(.*)$/mi ) {
my $rc_code = $1;
my $rc_string = $2;
@@ -46,57 +50,58 @@ sub check_http {
}
}
-sub load_url {
- my ($url, $tmpfile) = @_;
- my $proto;
+sub geturl {
+ my ($proto, $url) = @_;
- if ( $url =~ /^(\w+):\/\/\w/ ) {
- $proto = lc($1);
- } else {
- die "Invalid url [$url]\n";
+ if ($proto eq 'http') {
+ check_http($url)
}
- die "Invalid url protocol [$proto]\n"
- unless( $proto eq 'tftp' ||
- $proto eq 'ftp' ||
- $proto eq 'http' ||
- $proto eq 'scp' );
+ my $cmd = "curl -#";
- check_http($url)
- if ($proto eq 'http');
+ # Handle user@host syntax which curl doesn't do
+ if ($proto eq 'scp') {
+ if ($url =~ m#scp://(\w+)@(.*)# ) {
+ $cmd .= " -u $1";
+ $url = "scp://$2";
+ }
+ }
+ $cmd .= " $url";
+
+ open (my $curl, "$cmd |" )
+ or die "$cmd command failed: $!\n";
- system("curl -# -o $tmpfile $url") == 0
- or die "Can not fetch remote file $url\n";
+ return $curl;
}
-usage unless ($#ARGV != 2);
+usage unless ($#ARGV == 1);
my $user = $ARGV[0];
-my $loadfile = $ARGV[1];
+my $source = $ARGV[1];
my $sbindir = $ENV{vyatta_sbindir};
my $config = new Vyatta::Config;
$config->setLevel("system login user");
-die "$user does not exist in configuration\n"
+die "User $user does not exist in current configuration\n"
unless $config->exists($user);
-if ( $loadfile =~ /^[^\/]\w+:\// ) {
- my $tmp_file = "/tmp/key.$user.$$";
-
- load_url ($loadfile, $tmp_file);
- $loadfile = $tmp_file;
+# If it has protocol:// then use curl to copy
+my $in;
+if ( $source =~ m#(^[^/]\w+)://# ) {
+ $in = geturl ($1, $source);
+} else {
+ open(my $in, '<', $source)
+ or die "Cannot open file $source: $!\n";
}
-open(my $cfg, '<', $loadfile)
- or die "Cannot open file $loadfile: $!\n";
-
-while (<$cfg>) {
+while (<$in>) {
chomp;
# public key (format 2) consist of:
# options, keytype, base64-encoded key, comment.
# The options field is optional (but not supported).
my ($keytype, $keycode, $comment) = split / /;
+
die "Not a valid key file format (see man sshd)"
unless defined($keytype) && defined($keycode) && defined($comment);
@@ -112,7 +117,7 @@ while (<$cfg>) {
die "\"$cmd\" type failed\n"
if ($? >> 8);
}
-close $cfg;
+close $in;
system("$sbindir/my_commit");
if ( $? >> 8 ) {
@@ -122,13 +127,3 @@ if ( $? >> 8 ) {
print "Done\n";
exit 0;
-
-
-
-
-
-
-
-
-
-