Support to add public SSH key on init of admin user

If DEVELOPMENT_BECOME_ANY_ACCOUNT is used there is an init step for creating the initial admin user. Enhance this step so that it can also add a public SSH key for the created user. Only OpenSSH style keys are supported and there is no validity check on the provided SSH key. Change-Id: Id202c28a82ac16e99ebec7be4a3b099787090980 Signed-off-by: Edwin Kempin <edwin.kempin@sap.com>
2015-05-06 15:24:33 +02:00 · 2015-05-06 15:24:33 +02:00 · 897d92618c
commit 897d92618c
parent 0f243ef2a7
1 changed files with 35 additions and 0 deletions
--- a/gerrit-pgm/src/main/java/com/google/gerrit/pgm/init/InitAdminUser.java
+++ b/gerrit-pgm/src/main/java/com/google/gerrit/pgm/init/InitAdminUser.java
@ -23,6 +23,7 @@ import com.google.gerrit.reviewdb.client.Account;
 import com.google.gerrit.reviewdb.client.AccountExternalId;
 import com.google.gerrit.reviewdb.client.AccountGroup;
 import com.google.gerrit.reviewdb.client.AccountGroupMember;
+import com.google.gerrit.reviewdb.client.AccountSshKey;
 import com.google.gerrit.reviewdb.client.AuthType;
 import com.google.gerrit.reviewdb.server.ReviewDb;
 import com.google.gwtorm.server.SchemaFactory;
@ -30,6 +31,11 @@ import com.google.inject.Inject;

 import org.apache.commons.validator.routines.EmailValidator;

+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+import java.nio.file.Files;
+import java.nio.file.Path;
+import java.nio.file.Paths;
 import java.util.Collections;

 public class InitAdminUser implements InitStep {
@ -72,6 +78,7 @@ public class InitAdminUser implements InitStep {
          String name = ui.readString("Administrator", "name");
          String email = readEmail();
          String httpPassword = ui.readString("secret", "HTTP password");
+          AccountSshKey sshKey = readSshKey(id);

          AccountExternalId extUser =
              new AccountExternalId(id, new AccountExternalId.Key(
@ -98,6 +105,10 @@ public class InitAdminUser implements InitStep {
              new AccountGroupMember(new AccountGroupMember.Key(id,
                  new AccountGroup.Id(1)));
          db.accountGroupMembers().insert(Collections.singleton(m));
+
+          if (sshKey != null) {
+            db.accountSshKeys().insert(Collections.singleton(sshKey));
+          }
        }
      }
    } finally {
@ -113,4 +124,28 @@ public class InitAdminUser implements InitStep {
    }
    return email;
  }
+
+  private AccountSshKey readSshKey(Account.Id id) throws IOException {
+    String defaultPublicSshKeyFile = "";
+    Path defaultPublicSshKeyPath =
+        Paths.get(System.getProperty("user.home"), ".ssh", "id_rsa.pub");
+    if (Files.exists(defaultPublicSshKeyPath)) {
+      defaultPublicSshKeyFile = defaultPublicSshKeyPath.toString();
+    }
+    String publicSshKeyFile =
+        ui.readString(defaultPublicSshKeyFile, "public SSH key file");
+    return !Strings.isNullOrEmpty(publicSshKeyFile)
+        ? createSshKey(id, publicSshKeyFile) : null;
+  }
+
+  private AccountSshKey createSshKey(Account.Id id, String keyFile)
+      throws IOException {
+    Path p = Paths.get(keyFile);
+    if (!Files.exists(p)) {
+      throw new IOException(String.format(
+          "Cannot add public SSH key: %s is not a file", keyFile));
+    }
+    String content = new String(Files.readAllBytes(p), StandardCharsets.UTF_8);
+    return new AccountSshKey(new AccountSshKey.Id(id, 0), content);
+  }
 }