2012-02-07 22:56:53 +01:00
|
|
|
require 'digest/md5'
|
|
|
|
|
|
2011-10-08 23:36:38 +02:00
|
|
|
class Key < ActiveRecord::Base
|
|
|
|
|
belongs_to :user
|
2011-12-31 15:24:10 +01:00
|
|
|
belongs_to :project
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-09-26 20:17:17 +02:00
|
|
|
attr_accessible :key, :title
|
2012-08-29 06:58:22 +02:00
|
|
|
|
2012-10-09 02:10:04 +02:00
|
|
|
before_validation :strip_white_space
|
|
|
|
|
before_save :set_identifier
|
|
|
|
|
|
2012-09-27 08:20:36 +02:00
|
|
|
validates :title, presence: true, length: { within: 0..255 }
|
2012-10-09 02:10:04 +02:00
|
|
|
validates :key, presence: true, length: { within: 0..5000 }, format: { :with => /ssh-.{3} / }
|
|
|
|
|
validate :unique_key, :fingerprintable_key
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-08-11 00:07:50 +02:00
|
|
|
delegate :name, :email, to: :user, prefix: true
|
2012-02-07 22:56:53 +01:00
|
|
|
|
2012-02-07 23:32:20 +01:00
|
|
|
def strip_white_space
|
2012-03-01 16:00:14 +01:00
|
|
|
self.key = self.key.strip unless self.key.blank?
|
2012-02-07 23:32:20 +01:00
|
|
|
end
|
|
|
|
|
|
2012-02-07 22:56:53 +01:00
|
|
|
def unique_key
|
2012-08-11 00:07:50 +02:00
|
|
|
query = Key.where(key: key)
|
2012-02-07 23:32:20 +01:00
|
|
|
query = query.where('(project_id IS NULL OR project_id = ?)', project_id) if project_id
|
|
|
|
|
if (query.count > 0)
|
2012-02-07 22:56:53 +01:00
|
|
|
errors.add :key, 'already exist.'
|
|
|
|
|
end
|
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-09-21 18:22:43 +02:00
|
|
|
def fingerprintable_key
|
|
|
|
|
return true unless key # Don't test if there is no key.
|
|
|
|
|
# `ssh-keygen -lf /dev/stdin <<< "#{key}"` errors with: redirection unexpected
|
|
|
|
|
file = Tempfile.new('key_file')
|
|
|
|
|
begin
|
|
|
|
|
file.puts key
|
|
|
|
|
file.rewind
|
|
|
|
|
fingerprint_output = `ssh-keygen -lf #{file.path} 2>&1` # Catch stderr.
|
|
|
|
|
ensure
|
|
|
|
|
file.close
|
|
|
|
|
file.unlink # deletes the temp file
|
|
|
|
|
end
|
|
|
|
|
errors.add(:key, "can't be fingerprinted") if fingerprint_output.match("failed")
|
|
|
|
|
end
|
|
|
|
|
|
2011-10-08 23:36:38 +02:00
|
|
|
def set_identifier
|
2011-12-31 15:24:10 +01:00
|
|
|
if is_deploy_key
|
2012-09-27 08:20:36 +02:00
|
|
|
self.identifier = "deploy_#{Digest::MD5.hexdigest(key)}"
|
2011-12-31 15:24:10 +01:00
|
|
|
else
|
|
|
|
|
self.identifier = "#{user.identifier}_#{Time.now.to_i}"
|
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|
2011-10-26 15:46:25 +02:00
|
|
|
|
2011-12-31 15:24:10 +01:00
|
|
|
def is_deploy_key
|
|
|
|
|
true if project_id
|
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-06-07 14:44:57 +02:00
|
|
|
# projects that has this key
|
2011-10-08 23:36:38 +02:00
|
|
|
def projects
|
2011-12-31 15:24:10 +01:00
|
|
|
if is_deploy_key
|
|
|
|
|
[project]
|
|
|
|
|
else
|
|
|
|
|
user.projects
|
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|
2012-08-28 23:04:06 +02:00
|
|
|
|
|
|
|
|
def last_deploy?
|
|
|
|
|
Key.where(identifier: identifier).count == 0
|
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|
2012-09-27 08:20:36 +02:00
|
|
|
|
2011-10-08 23:36:38 +02:00
|
|
|
# == Schema Information
|
|
|
|
|
#
|
|
|
|
|
# Table name: keys
|
|
|
|
|
#
|
2012-09-27 07:36:31 +02:00
|
|
|
# id :integer not null, primary key
|
|
|
|
|
# user_id :integer
|
2012-06-26 20:23:09 +02:00
|
|
|
# created_at :datetime not null
|
|
|
|
|
# updated_at :datetime not null
|
2011-10-08 23:36:38 +02:00
|
|
|
# key :text
|
|
|
|
|
# title :string(255)
|
|
|
|
|
# identifier :string(255)
|
2012-09-27 07:36:31 +02:00
|
|
|
# project_id :integer
|
2011-10-08 23:36:38 +02:00
|
|
|
#
|
2012-10-09 10:14:17 +02:00
|
|
|
|
