server/modules/adduser.py

#!/usr/bin/python3

import argparse
import os
import shutil
import subprocess


parser = argparse.ArgumentParser(description='iconograph adduser')
parser.add_argument(
    '--authorized_keys_file',
    dest='authorized_keys_file',
    action='store')
parser.add_argument(
    '--chroot-path',
    dest='chroot_path',
    action='store',
    required=True)
parser.add_argument(
    '--sudo',
    dest='sudo',
    action='store_true')
parser.add_argument(
    '--username',
    dest='username',
    action='store',
    required=True)
FLAGS = parser.parse_args()


def Exec(*args, **kwargs):
    print('+', args)
    subprocess.check_call(args, **kwargs)


def ExecChroot(*args, **kwargs):
    Exec('chroot', FLAGS.chroot_path, *args, **kwargs)


def main():
  ExecChroot('adduser', '--system', '--group', '--disabled-password', 
             '--shell=/bin/bash', FLAGS.username)

  if FLAGS.sudo:
    with open(os.path.join(FLAGS.chroot_path, 'etc', 'sudoers.d', FLAGS.username), 'w') as fh:
      fh.write('%s\tALL=(ALL) NOPASSWD: ALL\n' % FLAGS.username)

  if FLAGS.authorized_keys_file:
    dest_dir = os.path.join(FLAGS.chroot_path, 'home', FLAGS.username, '.ssh')
    dest_path = os.path.join(dest_dir, 'authorized_keys')
    os.mkdir(dest_dir)
    shutil.copy(FLAGS.authorized_keys_file, dest_path)
    ExecChroot('chown', '--recursive', '%s:%s' % (FLAGS.username, FLAGS.username), '/home/%s' % FLAGS.username)


if __name__ == '__main__':
  main()
Module to create a user with optional sudo privs and authorized_keys 2016-04-29 17:58:03 +00:00			`#!/usr/bin/python3`

			`import argparse`
			`import os`
			`import shutil`
			`import subprocess`


			`parser = argparse.ArgumentParser(description='iconograph adduser')`
			`parser.add_argument(`
			`'--authorized_keys_file',`
			`dest='authorized_keys_file',`
			`action='store')`
			`parser.add_argument(`
			`'--chroot-path',`
			`dest='chroot_path',`
			`action='store',`
			`required=True)`
			`parser.add_argument(`
			`'--sudo',`
			`dest='sudo',`
			`action='store_true')`
			`parser.add_argument(`
			`'--username',`
			`dest='username',`
			`action='store',`
			`required=True)`
			`FLAGS = parser.parse_args()`


			`def Exec(args, *kwargs):`
			`print('+', args)`
			`subprocess.check_call(args, **kwargs)`


			`def ExecChroot(args, *kwargs):`
			`Exec('chroot', FLAGS.chroot_path, args, *kwargs)`


			`def main():`
			`ExecChroot('adduser', '--system', '--group', '--disabled-password',`
Set shell, switch to passwordless sudo 2016-04-29 18:55:13 +00:00			`'--shell=/bin/bash', FLAGS.username)`
Module to create a user with optional sudo privs and authorized_keys 2016-04-29 17:58:03 +00:00
			`if FLAGS.sudo:`
Set shell, switch to passwordless sudo 2016-04-29 18:55:13 +00:00			`with open(os.path.join(FLAGS.chroot_path, 'etc', 'sudoers.d', FLAGS.username), 'w') as fh:`
Bug 2016-04-29 19:16:48 +00:00			`fh.write('%s\tALL=(ALL) NOPASSWD: ALL\n' % FLAGS.username)`
Module to create a user with optional sudo privs and authorized_keys 2016-04-29 17:58:03 +00:00
			`if FLAGS.authorized_keys_file:`
			`dest_dir = os.path.join(FLAGS.chroot_path, 'home', FLAGS.username, '.ssh')`
			`dest_path = os.path.join(dest_dir, 'authorized_keys')`
			`os.mkdir(dest_dir)`
			`shutil.copy(FLAGS.authorized_keys_file, dest_path)`
			`ExecChroot('chown', '--recursive', '%s:%s' % (FLAGS.username, FLAGS.username), '/home/%s' % FLAGS.username)`


			`if __name__ == '__main__':`
			`main()`