1
0
Fork 0
mirror of https://code.sup39.dev/repos/Wqawg synced 2025-01-15 16:25:08 +09:00

Adapt to my latest changes to 'ssh' repo

This commit is contained in:
fr33domlover 2016-04-19 08:17:52 +00:00
parent 1b16e2e566
commit 3439870ad5

View file

@ -35,21 +35,16 @@ import Network.SSH
import Network.SSH.Channel import Network.SSH.Channel
import Network.SSH.Crypto import Network.SSH.Crypto
import Network.SSH.Session import Network.SSH.Session
--import Yesod.Default.Main (LogFunc)
import Vervis.Model import Vervis.Model
import Vervis.Settings import Vervis.Settings
-- TODO:
-- [ ] See which git commands gitolite SSH supports and see if I can implement
-- them with Hit (i think it was git upload-pack)
type ChannelBase = LoggingT (ReaderT ConnectionPool IO) type ChannelBase = LoggingT (ReaderT ConnectionPool IO)
type SessionBase = LoggingT (ReaderT ConnectionPool IO) type SessionBase = LoggingT (ReaderT ConnectionPool IO)
--type UserAuthId = PersonId type UserAuthId = PersonId
type Channel = ChannelT {-UserAuthId-} ChannelBase type Channel = ChannelT UserAuthId ChannelBase
type Session = SessionT SessionBase {-UserAuthId-} ChannelBase type Session = SessionT SessionBase UserAuthId ChannelBase
type SshChanDB = SqlPersistT Channel type SshChanDB = SqlPersistT Channel
type SshSessDB = SqlPersistT Session type SshSessDB = SqlPersistT Session
@ -71,8 +66,8 @@ chanFail wantReply msg = do
channelError $ unpack msg channelError $ unpack msg
when wantReply channelFail when wantReply channelFail
authorize :: Authorize -> Session Bool -- (AuthResult UserAuthId) authorize :: Authorize -> Session (AuthResult UserAuthId)
authorize (Password _ _) = return False -- AuthFail authorize (Password _ _) = return AuthFail
authorize (PublicKey name key) = do authorize (PublicKey name key) = do
mpk <- runSessDB $ do mpk <- runSessDB $ do
mp <- getBy $ UniquePersonLogin $ pack name mp <- getBy $ UniquePersonLogin $ pack name
@ -83,19 +78,19 @@ authorize (PublicKey name key) = do
return $ Just (pid, ks) return $ Just (pid, ks)
case mpk of case mpk of
Nothing -> do Nothing -> do
$logInfoS src "Auth failed: Invalid user" lift $ $logInfoS src "Auth failed: Invalid user"
return False -- AuthFail return AuthFail
Just (pid, keys) -> do Just (pid, keys) -> do
let eValue (Entity _ v) = v let eValue (Entity _ v) = v
matches = matches =
(== key) . blobToKey . fromStrict . sshKeyContent . eValue (== key) . blobToKey . fromStrict . sshKeyContent . eValue
case find matches keys of case find matches keys of
Nothing -> do Nothing -> do
$logInfoS src "Auth failed: No matching key found" lift $ $logInfoS src "Auth failed: No matching key found"
return False -- AuthFail return AuthFail
Just match -> do Just match -> do
$logInfoS src "Auth succeeded" lift $ $logInfoS src "Auth succeeded"
return True -- $ AuthSuccess pid return $ AuthSuccess pid
data Action = UploadPack () deriving Show data Action = UploadPack () deriving Show
@ -109,11 +104,11 @@ runAction _wantReply action =
handle :: Bool -> ChannelRequest -> Channel () handle :: Bool -> ChannelRequest -> Channel ()
handle wantReply request = do handle wantReply request = do
$logDebugS src $ pack $ show request lift $ $logDebugS src $ pack $ show request
case detectAction request of case detectAction request of
Nothing -> err "Unsupported request" Nothing -> err "Unsupported request"
Just act -> do Just act -> do
$logDebugS src $ pack $ show act lift $ $logDebugS src $ pack $ show act
res <- runAction wantReply act res <- runAction wantReply act
case res of case res of
Nothing -> do Nothing -> do
@ -130,7 +125,7 @@ mkConfig
:: AppSettings :: AppSettings
-> ConnectionPool -> ConnectionPool
-> LogFunc -> LogFunc
-> IO (Config SessionBase ChannelBase {-UserAuthId-}) -> IO (Config SessionBase ChannelBase UserAuthId)
mkConfig settings pool logFunc = do mkConfig settings pool logFunc = do
keyPair <- keyPairFromFile $ appSshKeyFile settings keyPair <- keyPairFromFile $ appSshKeyFile settings
return $ Config return $ Config