kanidm/kanidm_unix_int/src/ssh_authorizedkeys.rs

#![deny(warnings)]
#![warn(unused_extern_crates)]
#![deny(clippy::unwrap_used)]
#![deny(clippy::expect_used)]
#![deny(clippy::panic)]
#![deny(clippy::unreachable)]
#![deny(clippy::await_holding_lock)]
#![deny(clippy::needless_pass_by_value)]
#![deny(clippy::trivially_copy_pass_by_ref)]

#[macro_use]
extern crate log;

use log::debug;
use std::path::PathBuf;
use structopt::StructOpt;

use futures::executor::block_on;

use kanidm_unix_common::client::call_daemon;
use kanidm_unix_common::unix_config::KanidmUnixdConfig;
use kanidm_unix_common::unix_proto::{ClientRequest, ClientResponse};

include!("./opt/ssh_authorizedkeys.rs");

#[tokio::main]
async fn main() {
    let opt = SshAuthorizedOpt::from_args();
    if opt.debug {
        ::std::env::set_var("RUST_LOG", "kanidm=debug,kanidm_client=debug");
    } else {
        ::std::env::set_var("RUST_LOG", "kanidm=info,kanidm_client=info");
    }
    env_logger::init();

    debug!("Starting authorized keys tool ...");

    let cfg = match KanidmUnixdConfig::new().read_options_from_optional_config("/etc/kanidm/unixd")
    {
        Ok(c) => c,
        Err(e) => {
            error!("Failed to parse /etc/kanidm/unixd: {:?}", e);
            std::process::exit(1);
        }
    };

    debug!(
        "Using kanidm_unixd socket path: {:?}",
        cfg.sock_path.as_str()
    );

    // see if the kanidm_unixd socket exists and quit if not
    if !PathBuf::from(&cfg.sock_path).exists() {
        error!(
            "Failed to find unix socket at {}, quitting!",
            cfg.sock_path.as_str()
        );
        std::process::exit(1);
    }
    let req = ClientRequest::SshKey(opt.account_id);

    match block_on(call_daemon(cfg.sock_path.as_str(), req)) {
        Ok(r) => match r {
            ClientResponse::SshKeys(sk) => sk.iter().for_each(|k| {
                println!("{}", k);
            }),
            _ => {
                error!("Error calling kanidm_unixd: unexpected response -> {:?}", r);
            }
        },
        Err(e) => {
            error!("Error calling kanidm_unixd -> {:?}", e);
        }
    }
}
195 rel cleanup (#268) Fixes #195 pre release cleanup. This does a LOT, clippy, formatting, and much much more. It fixes a lot of parts of the book, improves server config and more. 2020-06-18 02:30:42 +02:00			`#![deny(warnings)]`
V large cleanup 2020-08-04 04:58:11 +02:00			`#![warn(unused_extern_crates)]`
			`#![deny(clippy::unwrap_used)]`
			`#![deny(clippy::expect_used)]`
			`#![deny(clippy::panic)]`
			`#![deny(clippy::unreachable)]`
			`#![deny(clippy::await_holding_lock)]`
			`#![deny(clippy::needless_pass_by_value)]`
			`#![deny(clippy::trivially_copy_pass_by_ref)]`

129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`#[macro_use]`
			`extern crate log;`

			`use log::debug;`
fixes #557, adds a check for the kanidm_unixd socket file and bails if not (#560) 2021-08-08 01:54:21 +02:00			`use std::path::PathBuf;`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`use structopt::StructOpt;`

			`use futures::executor::block_on;`

129 nsswitch stage 2 groups (#185) Implements #129, adding the libnss_kanidm.so/dylib, and the related caching parts for properly handling these types. 2020-02-15 01:27:25 +01:00			`use kanidm_unix_common::client::call_daemon;`
20200218 pam (#189) Add support for unix_password handling, and pam authentication for services. 2020-02-29 05:02:14 +01:00			`use kanidm_unix_common::unix_config::KanidmUnixdConfig;`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`use kanidm_unix_common::unix_proto::{ClientRequest, ClientResponse};`

306 command complete (#354) Fixes #306 adding command line autocompletion. These are generated to: CARGO_TARGET_DIR/item-hash/out/. These will need to be packaged for distros later, it's unclear how we could use cargo install with these as cargo doesn't support arbitrary artefacts like this (yet?). 2021-02-13 04:46:22 +01:00			`include!("./opt/ssh_authorizedkeys.rs");`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00
			`#[tokio::main]`
			`async fn main() {`
306 command complete (#354) Fixes #306 adding command line autocompletion. These are generated to: CARGO_TARGET_DIR/item-hash/out/. These will need to be packaged for distros later, it's unclear how we could use cargo install with these as cargo doesn't support arbitrary artefacts like this (yet?). 2021-02-13 04:46:22 +01:00			`let opt = SshAuthorizedOpt::from_args();`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`if opt.debug {`
			`::std::env::set_var("RUST_LOG", "kanidm=debug,kanidm_client=debug");`
			`} else {`
			`::std::env::set_var("RUST_LOG", "kanidm=info,kanidm_client=info");`
			`}`
			`env_logger::init();`

			`debug!("Starting authorized keys tool ...");`
20200218 pam (#189) Add support for unix_password handling, and pam authentication for services. 2020-02-29 05:02:14 +01:00
Xxx clippy outdated (#318) This finishes some of the outstanding clippy issues that existed. Additionally, we updated all the project deps and updated libraries we could in the project. A bug exists currently in cargo outdated that is preventing further updates to this however, but that's a bit out of my hands. 2020-09-08 04:46:10 +02:00			`let cfg = match KanidmUnixdConfig::new().read_options_from_optional_config("/etc/kanidm/unixd")`
			`{`
			`Ok(c) => c,`
fixes #557, adds a check for the kanidm_unixd socket file and bails if not (#560) 2021-08-08 01:54:21 +02:00			`Err(e) => {`
			`error!("Failed to parse /etc/kanidm/unixd: {:?}", e);`
Xxx clippy outdated (#318) This finishes some of the outstanding clippy issues that existed. Additionally, we updated all the project deps and updated libraries we could in the project. A bug exists currently in cargo outdated that is preventing further updates to this however, but that's a bit out of my hands. 2020-09-08 04:46:10 +02:00			`std::process::exit(1);`
			`}`
			`};`
20200218 pam (#189) Add support for unix_password handling, and pam authentication for services. 2020-02-29 05:02:14 +01:00
fixes #557, adds a check for the kanidm_unixd socket file and bails if not (#560) 2021-08-08 01:54:21 +02:00			`debug!(`
			`"Using kanidm_unixd socket path: {:?}",`
			`cfg.sock_path.as_str()`
			`);`

			`// see if the kanidm_unixd socket exists and quit if not`
			`if !PathBuf::from(&cfg.sock_path).exists() {`
			`error!(`
			`"Failed to find unix socket at {}, quitting!",`
			`cfg.sock_path.as_str()`
			`);`
			`std::process::exit(1);`
			`}`
195 rel cleanup (#268) Fixes #195 pre release cleanup. This does a LOT, clippy, formatting, and much much more. It fixes a lot of parts of the book, improves server config and more. 2020-06-18 02:30:42 +02:00			`let req = ClientRequest::SshKey(opt.account_id);`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00
20200218 pam (#189) Add support for unix_password handling, and pam authentication for services. 2020-02-29 05:02:14 +01:00			`match block_on(call_daemon(cfg.sock_path.as_str(), req)) {`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`Ok(r) => match r {`
			`ClientResponse::SshKeys(sk) => sk.iter().for_each(\|k\| {`
			`println!("{}", k);`
			`}),`
			`_ => {`
fixes #557, adds a check for the kanidm_unixd socket file and bails if not (#560) 2021-08-08 01:54:21 +02:00			`error!("Error calling kanidm_unixd: unexpected response -> {:?}", r);`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`}`
			`},`
			`Err(e) => {`
fixes #557, adds a check for the kanidm_unixd socket file and bails if not (#560) 2021-08-08 01:54:21 +02:00			`error!("Error calling kanidm_unixd -> {:?}", e);`
129 pam nsswitch stage 1 daemon (#179) Implements #129, pam and nsswitch daemon capability. This is stage 1, which adds a localhost unix domain socket resolver, a ssh key client, support to the server for generating unix tokens, an async client lib, and client handles for adding posix extensions to accounts and groups. 2020-02-13 00:43:01 +01:00			`}`
			`}`
			`}`