2012-11-19 19:24:05 +01:00
|
|
|
# == Schema Information
|
|
|
|
#
|
|
|
|
# Table name: keys
|
|
|
|
#
|
|
|
|
# id :integer not null, primary key
|
|
|
|
# user_id :integer
|
|
|
|
# created_at :datetime not null
|
|
|
|
# updated_at :datetime not null
|
|
|
|
# key :text
|
|
|
|
# title :string(255)
|
|
|
|
# identifier :string(255)
|
|
|
|
# project_id :integer
|
|
|
|
#
|
|
|
|
|
2012-02-07 22:56:53 +01:00
|
|
|
require 'digest/md5'
|
|
|
|
|
2011-10-08 23:36:38 +02:00
|
|
|
class Key < ActiveRecord::Base
|
|
|
|
belongs_to :user
|
2011-12-31 15:24:10 +01:00
|
|
|
belongs_to :project
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-09-26 20:17:17 +02:00
|
|
|
attr_accessible :key, :title
|
2012-08-29 06:58:22 +02:00
|
|
|
|
2012-10-09 02:10:04 +02:00
|
|
|
before_validation :strip_white_space
|
|
|
|
before_save :set_identifier
|
|
|
|
|
2012-09-27 08:20:36 +02:00
|
|
|
validates :title, presence: true, length: { within: 0..255 }
|
2013-02-07 08:42:22 +01:00
|
|
|
validates :key, presence: true, length: { within: 0..5000 }, format: { :with => /ssh-.{3} / }, uniqueness: true
|
|
|
|
validate :fingerprintable_key
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-08-11 00:07:50 +02:00
|
|
|
delegate :name, :email, to: :user, prefix: true
|
2012-02-07 22:56:53 +01:00
|
|
|
|
2012-02-07 23:32:20 +01:00
|
|
|
def strip_white_space
|
2012-03-01 16:00:14 +01:00
|
|
|
self.key = self.key.strip unless self.key.blank?
|
2012-02-07 23:32:20 +01:00
|
|
|
end
|
|
|
|
|
2012-09-21 18:22:43 +02:00
|
|
|
def fingerprintable_key
|
|
|
|
return true unless key # Don't test if there is no key.
|
|
|
|
# `ssh-keygen -lf /dev/stdin <<< "#{key}"` errors with: redirection unexpected
|
|
|
|
file = Tempfile.new('key_file')
|
|
|
|
begin
|
|
|
|
file.puts key
|
|
|
|
file.rewind
|
|
|
|
fingerprint_output = `ssh-keygen -lf #{file.path} 2>&1` # Catch stderr.
|
|
|
|
ensure
|
|
|
|
file.close
|
|
|
|
file.unlink # deletes the temp file
|
|
|
|
end
|
2013-02-15 10:16:21 +01:00
|
|
|
errors.add(:key, "can't be fingerprinted") if $?.exitstatus != 0
|
2012-09-21 18:22:43 +02:00
|
|
|
end
|
|
|
|
|
2011-10-08 23:36:38 +02:00
|
|
|
def set_identifier
|
2011-12-31 15:24:10 +01:00
|
|
|
if is_deploy_key
|
2012-09-27 08:20:36 +02:00
|
|
|
self.identifier = "deploy_#{Digest::MD5.hexdigest(key)}"
|
2011-12-31 15:24:10 +01:00
|
|
|
else
|
|
|
|
self.identifier = "#{user.identifier}_#{Time.now.to_i}"
|
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|
2011-10-26 15:46:25 +02:00
|
|
|
|
2011-12-31 15:24:10 +01:00
|
|
|
def is_deploy_key
|
2013-02-07 08:42:22 +01:00
|
|
|
!!project_id
|
2011-12-31 15:24:10 +01:00
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
|
2012-06-07 14:44:57 +02:00
|
|
|
# projects that has this key
|
2011-10-08 23:36:38 +02:00
|
|
|
def projects
|
2011-12-31 15:24:10 +01:00
|
|
|
if is_deploy_key
|
|
|
|
[project]
|
|
|
|
else
|
2013-01-02 18:32:34 +01:00
|
|
|
user.authorized_projects
|
2011-12-31 15:24:10 +01:00
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|
2012-08-28 23:04:06 +02:00
|
|
|
|
2013-02-05 10:12:15 +01:00
|
|
|
def shell_id
|
|
|
|
"key-#{self.id}"
|
2013-02-04 14:07:56 +01:00
|
|
|
end
|
2011-10-08 23:36:38 +02:00
|
|
|
end
|