selfprivacy-rest-api/selfprivacy_api/resources/services/ssh.py

#!/usr/bin/env python3
from flask import Blueprint, request
from flask_restful import Resource, reqparse
import portalocker
import json

from selfprivacy_api.resources.services import api

# Enable SSH
class EnableSSH(Resource):
    def post(self):
        with portalocker.Lock("/etc/nixos/userdata/userdata.json", "r+") as f:
            portalocker.lock(f, portalocker.LOCK_EX)
            try:
                data = json.load(f)
                if "ssh" not in data:
                    data["ssh"] = {}
                data["ssh"]["enable"] = True
                f.seek(0)
                json.dump(data, f, indent=4)
                f.truncate()
            finally:
                portalocker.unlock(f)

        return {
            "status": 0,
            "message": "SSH enabled",
        }


# Write new SSH key
class WriteSSHKey(Resource):
    def put(self):
        parser = reqparse.RequestParser()
        parser.add_argument(
            "public_key", type=str, required=True, help="Key cannot be blank!"
        )
        args = parser.parse_args()

        publicKey = args["public_key"]

        with portalocker.Lock("/etc/nixos/userdata/userdata.json", "r+") as f:
            portalocker.lock(f, portalocker.LOCK_EX)
            try:
                data = json.load(f)
                if "ssh" not in data:
                    data["ssh"] = {}
                # Return 400 if key already in array
                for key in data["ssh"]["rootSshKeys"]:
                    if key == publicKey:
                        return {
                            "error": "Key already exists",
                        }, 400
                data["ssh"]["rootSshKeys"].append(publicKey)
                f.seek(0)
                json.dump(data, f, indent=4)
                f.truncate()
            finally:
                portalocker.unlock(f)

        return {
            "status": 0,
            "message": "New SSH key successfully written",
        }


api.add_resource(EnableSSH, "/ssh/enable")
api.add_resource(WriteSSHKey, "/ssh/key/send")
Decomposition 2021-11-11 20:31:28 +02:00			`#!/usr/bin/env python3`
			`from flask import Blueprint, request`
Fix ssh key add 2021-11-11 20:45:57 +02:00			`from flask_restful import Resource, reqparse`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`import portalocker`
			`import json`
Decomposition 2021-11-11 20:31:28 +02:00
			`from selfprivacy_api.resources.services import api`

			`# Enable SSH`
			`class EnableSSH(Resource):`
			`def post(self):`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`with portalocker.Lock("/etc/nixos/userdata/userdata.json", "r+") as f:`
			`portalocker.lock(f, portalocker.LOCK_EX)`
			`try:`
			`data = json.load(f)`
			`if "ssh" not in data:`
			`data["ssh"] = {}`
			`data["ssh"]["enable"] = True`
			`f.seek(0)`
			`json.dump(data, f, indent=4)`
			`f.truncate()`
			`finally:`
			`portalocker.unlock(f)`
Decomposition 2021-11-11 20:31:28 +02:00
			`return {`
			`"status": 0,`
			`"message": "SSH enabled",`
			`}`


			`# Write new SSH key`
			`class WriteSSHKey(Resource):`
			`def put(self):`
Fix ssh key add 2021-11-11 20:45:57 +02:00			`parser = reqparse.RequestParser()`
			`parser.add_argument(`
			`"public_key", type=str, required=True, help="Key cannot be blank!"`
			`)`
			`args = parser.parse_args()`
Decomposition 2021-11-11 20:31:28 +02:00
Fix ssh key add 2021-11-11 20:45:57 +02:00			`publicKey = args["public_key"]`
Decomposition 2021-11-11 20:31:28 +02:00
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`with portalocker.Lock("/etc/nixos/userdata/userdata.json", "r+") as f:`
			`portalocker.lock(f, portalocker.LOCK_EX)`
			`try:`
			`data = json.load(f)`
			`if "ssh" not in data:`
			`data["ssh"] = {}`
			`# Return 400 if key already in array`
			`for key in data["ssh"]["rootSshKeys"]:`
			`if key == publicKey:`
			`return {`
			`"error": "Key already exists",`
			`}, 400`
			`data["ssh"]["rootSshKeys"].append(publicKey)`
			`f.seek(0)`
			`json.dump(data, f, indent=4)`
			`f.truncate()`
			`finally:`
			`portalocker.unlock(f)`
Decomposition 2021-11-11 20:31:28 +02:00
			`return {`
			`"status": 0,`
Move to JSON controlled server settings 2021-11-15 15:49:06 +02:00			`"message": "New SSH key successfully written",`
Decomposition 2021-11-11 20:31:28 +02:00			`}`


			`api.add_resource(EnableSSH, "/ssh/enable")`
			`api.add_resource(WriteSSHKey, "/ssh/key/send")`