U Įwh@sfddlZddlmZmZddlmZddlZddlZddlZddlTddl m Z Gddde j Z dS)N)datetimetimezone)Path)*) cmf_ssh_keycszeZdZeddZeddZeddZddZdd d Zd d Z ddZ fddZ fddZ fddZ ZS) CmfSshKeycCsttjd|jdS)Nz/conf/users/key_.jsonrconfigGIT_DIRcodeselfr&./modules/evagit/models/cmf_ssh_key.pykey_file szCmfSshKey.key_filecCsttjd|jdS)Nz/conf/users/deleted_key_rr r rrrkey_file_deletedszCmfSshKey.key_file_deletedcCsttjdS)Nz/githome/.ssh/authorized_keys)rr r r rrrauthorized_keys_fileszCmfSshKey.authorized_keys_filec Cs|j|jstddd|jr2tdddt|jj|jrLt|jndid}|jjjdddt |jd}t j ||dd W5QRXdS) NuKSSH-ключ должен принадлежать пользователюTabortu8SSH-ключ c таким id уже существует)userexpiration_daterepos)exist_okparentswindent) parentload cmf_alertrexistsstridrmkdiropenjsondump)rdatafrrr_create_key_files     zCmfSshKey._create_key_fileNc Cs|pi|p g}}|js2td|jdddt|jd}t|}W5QRX|D]\}}||d|<q\|D]"}||dkrqvd|d|d<qvt|jd }tj||d d W5QRXdS) NuФайл для SSH-ключа u отсутствуетTrrrZallowrrr) rr"r!r r&r'r itemsr()rZ additionsZ deletionsr*r)ZrepoZpermrrrupdate_key_file+s  zCmfSshKey.update_key_filec Csdtjd|jd|jd}d\}}t|jd}||krzt|tjtj BWn4t k rt d|d7}t dYq4YnX||t|tjW5QRdSW5QRXt d td d d dS) Nz command="z /githook.py zB",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty  ra/authorized_keys file is locked by other processDauthorized_keys file is locked by other process longer than expectedu2Невозможно добавить SSH-ключTr)r r r keyr&rfcntlflockLOCK_EXLOCK_NBIOErrorloggingwarningtimesleepwriteLOCK_UNerrorr!)rZ auth_template max_retries cur_retriesr*rrr_add_authorized_key@s      zCmfSshKey._add_authorized_keycCs4tjj|jddddgd}|D]}||gqdS)Nzgit_role.perm_push namespacememberZ tree_parent)rHZfields)ZmodelsZCmfEvagitRoleAssignlistrZadd_ssh_key_perms)rZ role_assignsZ role_assignrrr_recalc_role_assignsYs  zCmfSshKey._recalc_role_assignscstdgS)Nr)supersave_preload_fieldsr  __class__rrrLaszCmfSshKey.save_preload_fieldscs|jstddd|jr8|jtjtjdkr8tdddt|j j  d fddtd td D|_t|j j  |_|||tj||S) Nu<SSH-ключ невозможно редактироватьTr)ZtzumДата истечения срока действия ключа не может быть в прошлом:csg|]}||dqS)r).0imd5rr lsz"CmfSshKey.save..rrP)Zis_newr!rrZnowrZutchashlibrTr7valueencodeZ hexdigestjoinrangelenZ fingerprintZsha256Zfingerprint_sha256r+rFrJrKsave)rargskwargsrMrSrr\ds  &zCmfSshKey.savec s$js tdjdnjjd\}}tjd}||krzt |tj tj BWn4t k rtd|d7}t dYqDYnX|dfdd |D}|d|||t |tjtj||W5QRSW5QRXtd td d d dS)Nz SSH-key file z already been deletedr1zr+r4r5rcs&g|]}tj|krd|n|qS)#)r#r )rQliner rrrUsz$CmfSshKey.delete..r6u0Невозможно удалить SSH-ключTr)rr"r=r>renamerr&rr8r9r:r;r<r?r@seek readlinestruncate writelinesrBrKdeleterCr!)rr]r^rDrEr*linesrMr rrfus,        $ zCmfSshKey.delete)NN)__name__ __module__ __qualname__propertyrrrr+r/rFrJrLr\rf __classcell__rrrMrr s      r) rVrrpathlibrr'r?r8Z cmf.includeZmodules.evagit.fieldsrrrrrrs