summaryrefslogtreecommitdiff
path: root/src/subcommands/ma/update-users
blob: 086136403638fe492a3f462c7e0f7bd4e728b480 (plain) 
    

  1. #!/usr/bin/env bash
    2. 

  2. 

  3. # Monkeysphere authentication update-users subcommand
    4. 

  4. #
    5. 

  5. # The monkeysphere scripts are written by:
    6. 

  6. # Jameson Rollins <jrollins@fifthhorseman.net>
    7. 

  7. # Jamie McClelland <jm@mayfirst.org>
    8. 

  8. # Daniel Kahn Gillmor <dkg@fifthhorseman.net>
    9. 

  9. #
    10. 

  10. # They are Copyright 2008, and are all released under the GPL, version 3
    11. 

  11. # or later.
    12. 

  12. 

  13. update_users() {
    14. 

  14. 

  15. if [ "$1" ] ; then
    16. 

  16.     # get users from command line
    17. 

  17.     unames="$@"
    18. 

  18. else         
    19. 

  19.     # or just look at all users if none specified
    20. 

  20.     unames=$(getent passwd | cut -d: -f1)
    21. 

  21. fi
    22. 

  22. 

  23. RETCODE=0
    24. 

  24. 

  25. # set mode
    26. 

  26. MODE="authorized_keys"
    27. 

  27. 

  28. # set gnupg home
    29. 

  29. GNUPGHOME="$GNUPGHOME_AUTHENTICATION"
    30. 

  30. 

  31. # check to see if the gpg trust database has been initialized
    32. 

  32. if [ ! -s "${GNUPGHOME}/trustdb.gpg" ] ; then
    33. 

  33.     failure "GNUPG trust database uninitialized.  Please see MONKEYSPHERE-SERVER(8)."
    34. 

  34. fi
    35. 

  35. 

  36. # make sure the authorized_keys directory exists
    37. 

  37. mkdir -p "${SYSDATADIR}/authorized_keys"
    38. 

  38. 

  39. # loop over users
    40. 

  40. for uname in $unames ; do
    41. 

  41.     # check all specified users exist
    42. 

  42.     if ! id "$uname" >/dev/null ; then
    43. 

  43.     log error "----- unknown user '$uname' -----"
    44. 

  44.     continue
    45. 

  45.     fi
    46. 

  46. 

  47.     log verbose "----- user: $uname -----"
    48. 

  48. 

  49.     # make temporary directory
    50. 

  50.     TMPLOC=$(mktemp -d ${MSTMPDIR}/tmp.XXXXXXXXXX) || failure "Could not create temporary directory!"
    51. 

  51. 

  52.     # trap to delete temporary directory on exit
    53. 

  53.     trap "rm -rf $TMPLOC" EXIT
    54. 

  54. 

  55.     # create temporary authorized_user_ids file
    56. 

  56.     TMP_AUTHORIZED_USER_IDS="${TMPLOC}/authorized_user_ids"
    57. 

  57.     touch "$TMP_AUTHORIZED_USER_IDS"
    58. 

  58. 

  59.      # create temporary authorized_keys file
    60. 

  60.     AUTHORIZED_KEYS="${TMPLOC}/authorized_keys"
    61. 

  61.     touch "$AUTHORIZED_KEYS"
    62. 

  62. 

  63.     # set restrictive permissions on the temporary files
    64. 

  64.     # FIXME: is there a better way to do this?
    65. 

  65.     chmod 0700 "$TMPLOC"
    66. 

  66.     chmod 0600 "$AUTHORIZED_KEYS"
    67. 

  67.     chmod 0600 "$TMP_AUTHORIZED_USER_IDS"
    68. 

  68.     chown -R "$MONKEYSPHERE_USER" "$TMPLOC"
    69. 

  69. 

  70.     # process authorized_user_ids file
    71. 

  71.     log debug "checking for authorized_user_ids..."
    72. 

  72.     # translating ssh-style path variables
    73. 

  73.     authorizedUserIDs=$(translate_ssh_variables "$uname" "$AUTHORIZED_USER_IDS")
    74. 

  74.     if [ -s "$authorizedUserIDs" ] ; then
    75. 

  75.     # check permissions on the authorized_user_ids file path
    76. 

  76.     if check_key_file_permissions "$uname" "$authorizedUserIDs" ; then
    77. 

  77.             # copy user authorized_user_ids file to temporary
    78. 

  78.             # location
    79. 

  79.         cat "$authorizedUserIDs" > "$TMP_AUTHORIZED_USER_IDS"
    80. 

  80. 

  81.         # export needed variables
    82. 

  82.         export AUTHORIZED_KEYS
    83. 

  83.         export TMP_AUTHORIZED_USER_IDS
    84. 

  84. 

  85.         # process authorized_user_ids file, as monkeysphere user
    86. 

  86.         su_monkeysphere_user \
    87. 

  87.         ". ${SYSSHAREDIR}/common; process_authorized_user_ids $TMP_AUTHORIZED_USER_IDS"
    88. 

  88.         RETURN="$?"
    89. 

  89.     else
    90. 

  90.         log debug "not processing authorized_user_ids."
    91. 

  91.     fi
    92. 

  92.     else
    93. 

  93.     log debug "empty or absent authorized_user_ids file."
    94. 

  94.     fi
    95. 

  95. 

  96.     # add user-controlled authorized_keys file if specified translate
    97. 

  97.     # ssh-style path variables
    98. 

  98.     rawAuthorizedKeys=$(translate_ssh_variables "$uname" "$RAW_AUTHORIZED_KEYS")
    99. 

  99.     if [ "$rawAuthorizedKeys" != 'none' ] ; then
    100. 

  100.     log debug "checking for raw authorized_keys..."
    101. 

  101.     if [ -s "$rawAuthorizedKeys" ] ; then
    102. 

  102.         # check permissions on the authorized_keys file path
    103. 

  103.         if check_key_file_permissions "$uname" "$rawAuthorizedKeys" ; then
    104. 

  104.         log verbose "adding raw authorized_keys file... "
    105. 

  105.         cat "$rawAuthorizedKeys" >> "$AUTHORIZED_KEYS"
    106. 

  106.         else
    107. 

  107.         log debug "not adding raw authorized_keys file."        
    108. 

  108.         fi
    109. 

  109.     else
    110. 

  110.         log debug "empty or absent authorized_keys file."
    111. 

  111.     fi
    112. 

  112.     fi
    113. 

  113. 

  114.     # move the new authorized_keys file into place
    115. 

  115.     if [ -s "$AUTHORIZED_KEYS" ] ; then
    116. 

  116.     # openssh appears to check the contents of the authorized_keys
    117. 

  117.     # file as the user in question, so the file must be readable
    118. 

  118.     # by that user at least.
    119. 

  119. 

  120.     # but in general, we don't want the user tampering with this
    121. 

  121.     # file directly, so we'll adopt this approach: Own the file by
    122. 

  122.     # the monkeysphere-server invoker (usually root, but should be
    123. 

  123.     # the same uid that sshd is launched as); change the group of
    124. 

  124.     # the file so that members of the user's group can read it.
    125. 

  125. 

  126.     # FIXME: is there a better way to do this?
    127. 

  127.     chown $(whoami) "$AUTHORIZED_KEYS" && \
    128. 

  128.         chgrp $(id -g "$uname") "$AUTHORIZED_KEYS" && \
    129. 

  129.         chmod g+r "$AUTHORIZED_KEYS" && \
    130. 

  130.         mv -f "$AUTHORIZED_KEYS" "${SYSDATADIR}/authorized_keys/${uname}" || \
    131. 

  131.         { 
    132. 

  132.         log error "Failed to install authorized_keys for '$uname'!"
    133. 

  133.         rm -f "${SYSDATADIR}/authorized_keys/${uname}"
    134. 

  134.         # indicate that there has been a failure:
    135. 

  135.         RETURN=1
    136. 

  136.     }
    137. 

  137.     else
    138. 

  138.     rm -f "${SYSDATADIR}/authorized_keys/${uname}"
    139. 

  139.     fi
    140. 

  140. 

  141.     # unset the trap
    142. 

  142.     trap - EXIT
    143. 

  143. 

  144.     # destroy temporary directory
    145. 

  145.     rm -rf "$TMPLOC"
    146. 

  146. done
    147. 

  147. 

  148. }
    149.
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-02 15:07:59 +0000