mirror of
https://github.com/optim-enterprises-bv/vault.git
synced 2025-11-02 19:47:54 +00:00
60 lines
1.3 KiB
Go
60 lines
1.3 KiB
Go
package ssh
|
|
|
|
import (
|
|
"fmt"
|
|
"io/ioutil"
|
|
"os/exec"
|
|
|
|
"golang.org/x/crypto/ssh"
|
|
)
|
|
|
|
func exec_command(cmdString string) error {
|
|
cmd := exec.Command("/bin/bash", "-c", cmdString)
|
|
if _, err := cmd.Output(); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func installSshOtkInTarget(session *ssh.Session) error {
|
|
remoteCmdString := `
|
|
grep -vFf vault_ssh_otk.pem.pub ~/.ssh/authorized_keys > ./temp_authorized_keys
|
|
cat ./temp_authorized_keys > ~/.ssh/authorized_keys
|
|
cat ./vault_ssh_otk.pem.pub >> ~/.ssh/authorized_keys
|
|
rm -f ./temp_authorized_keys ./vault_ssh_otk.pem.pub
|
|
`
|
|
if err := session.Run(remoteCmdString); err != nil {
|
|
return err
|
|
}
|
|
return nil
|
|
}
|
|
func createSSHPublicKeysSession(username string, ipAddr string) *ssh.Session {
|
|
pemBytes, err := ioutil.ReadFile("vault_ssh_shared.pem")
|
|
if err != nil {
|
|
fmt.Errorf("Reading shared key failed: " + err.Error())
|
|
}
|
|
|
|
signer, err := ssh.ParsePrivateKey(pemBytes)
|
|
if err != nil {
|
|
fmt.Errorf("Parsing Private Key failed: " + err.Error())
|
|
}
|
|
|
|
config := &ssh.ClientConfig{
|
|
User: username,
|
|
Auth: []ssh.AuthMethod{
|
|
ssh.PublicKeys(signer),
|
|
},
|
|
}
|
|
|
|
client, err := ssh.Dial("tcp", ipAddr+":22", config)
|
|
if err != nil {
|
|
fmt.Errorf("Dial Failed: " + err.Error())
|
|
}
|
|
|
|
session, err := client.NewSession()
|
|
if err != nil {
|
|
fmt.Errorf("NewSession failed: " + err.Error())
|
|
}
|
|
return session
|
|
}
|