kosmos/chef
kosmos/chef
8
3
Fork 0
Code Issues 30 Pull Requests 3 Projects 2 Activity
chef/cookbooks/ssh_known_hosts/providers/entry.rb
Greg Karékinian ee4079fa85 Initial Chef repository
2015-07-21 19:45:23 +02:00

79 lines
2.0 KiB
Ruby
Raw Blame History

#
# Author:: Seth Vargo (<sethvargo@gmail.com>)
# Provider:: entry
#
# Copyright 2013, Seth Vargo
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
use_inline_resources if defined?(use_inline_resources)
def whyrun_supported?
true
end
action :create do
if new_resource.key
if new_resource.key_type == 'rsa' || new_resource.key_type == 'dsa'
key_type = "ssh-#{new_resource.key_type}"
else
key_type = new_resource.key_type
end
key = "#{new_resource.host} #{key_type} #{new_resource.key}"
else
key = `ssh-keyscan -t#{node['ssh_known_hosts']['key_type']} -p #{new_resource.port} #{new_resource.host}`
end
comment = key.split("\n").first || ""
if key_exists?(key, comment)
Chef::Log.debug "Known hosts key for #{new_resource.name} already exists - skipping"
else
new_keys = (keys + [key]).uniq.sort
file "ssh_known_hosts-#{new_resource.name}" do
path node['ssh_known_hosts']['file']
action :create
backup false
content "#{new_keys.join($/)}#{$/}"
end
end
end
private
def keys
unless @keys
if key_file_exists?
lines = ::File.readlines(node['ssh_known_hosts']['file'])
@keys = lines.map {|line| line.chomp}.reject {|line| line.empty?}
else
@keys = []
end
end
@keys
end
def key_file_exists?
::File.exists?(node['ssh_known_hosts']['file'])
end
def key_exists?(key, comment)
keys.any? do |line|
line.match(/#{Regexp.escape(comment)}|#{Regexp.escape(key)}/)
end
end
Reference in New Issue View Git Blame Copy Permalink