tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-22 13:24:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Add identity key usage for a specific user in remote command

Browse Source 
refs #7595
fixes #7447
This commit is contained in:
Alexander Fuhr 2015-05-28 10:51:56 +02:00
parent 558120e23b
commit a47d05a038
1 changed files with 60 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

60
modules/monitoring/library/Monitoring/Command/Transport/RemoteCommandFile.php
View File

@ -4,6 +4,7 @@
namespace Icinga\Module\Monitoring\Command\Transport; namespace Icinga\Module\Monitoring\Command\Transport;
use Icinga\Application\Logger; use Icinga\Application\Logger;
use Icinga\Data\ResourceFactory;
use Icinga\Exception\ConfigurationError; use Icinga\Exception\ConfigurationError;
use Icinga\Module\Monitoring\Command\Exception\TransportException; use Icinga\Module\Monitoring\Command\Exception\TransportException;
use Icinga\Module\Monitoring\Command\IcingaCommand; use Icinga\Module\Monitoring\Command\IcingaCommand;
@ -44,6 +45,13 @@ class RemoteCommandFile implements CommandTransportInterface
*/ */
protected $user; protected $user;
/**
* Path to the identity (private key) file for the key-based authentication
*
* @var string
*/
protected $identityKey;
/** /**
* Path to the Icinga command file on the remote host * Path to the Icinga command file on the remote host
* *
@ -137,6 +145,55 @@ class RemoteCommandFile implements CommandTransportInterface
return $this->user; return $this->user;
} }
/**
* Set the path to the identity file
*
* @param string $identityKey
*
* @return $this
*/
public function setIdentityKey($identityKey)
{
$this->identityKey = (string) $identityKey;
return $this;
}
/**
* Get the path to the identity path
*
* @return string
*/
public function getIdentityKey()
{
return $this->identityKey;
}
/**
* Use a given resource to set the user and the key
*
* @param string
*
* @throws ConfigurationError
*/
public function setResource($resource = null)
{
$config = ResourceFactory::getResourceConfig($resource);
if (! isset($config->user)) {
throw new ConfigurationError(
t("Can't send external Icinga Command. Remote user is missing")
);
}
if (! isset($config->identity_key)) {
throw new ConfigurationError(
t("Can't send external Icinga Command. The identity key for the remote user is missing")
);
}
$this->setUser($config->user);
$this->setIdentityKey($config->identity_key);
}
/** /**
* Set the path to the Icinga command file on the remote host * Set the path to the Icinga command file on the remote host
* *
@ -192,6 +249,9 @@ class RemoteCommandFile implements CommandTransportInterface
if (isset($this->user)) { if (isset($this->user)) {
$ssh .= sprintf(' -l %s', escapeshellarg($this->user)); $ssh .= sprintf(' -l %s', escapeshellarg($this->user));
} }
if (isset($this->identityKey)) {
$ssh .= sprintf(' -o StrictHostKeyChecking=no -i %s', escapeshellarg($this->identityKey));
}
$ssh .= sprintf( $ssh .= sprintf(
' %s "echo %s > %s" 2>&1', // Redirect stderr to stdout ' %s "echo %s > %s" 2>&1', // Redirect stderr to stdout
escapeshellarg($this->host), escapeshellarg($this->host),