Skip to content
Snippets Groups Projects
Normal view History Permalink
ssh_keys_put.c 2.43 KiB
Newer Older
Maarten de Waard's avatar
basic PUT and DELETE behavior, still does some weird stuff with random unicode...
Maarten de Waard committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 


/**
 * Callback function that deletes an SSH key from the list of keys authorised
 * for access to the initrd. The line will be left empty, because that keeps
 * the ids if SSH keys in tact for ssh_keys_get
 *
 * Example output:
 * {"ssh-keys":{"1":"ssh-rsa AAAAB3... example@example.com",
 * "2":"ssh-rsa AAAAB3...","5":"command=\"/usr/bin/cryptops-client\" ssh-rsa
 *  AAAAB3... cryptops-test@greenhost"}}
 *
 * The indices correspond to line numbers of the authorized_keys file.
 * Missing indices (like 3 and 4 in the example) arise from empty lines in the
 * file; those are creted when keys are deleted.
 *
 * @param[in]   request   incoming HTTP request
 * @param[out]  response  HTTP response to the request
 * @param[in]   user_data extra data to pass between main thread and callbacks
 * @return                internal status code
 */
int callback_ssh_keys_put(const struct _u_request * request,
    struct _u_response * response, void * user_data)
{
    // Read ssh key id from request URI.
    const char * id_string = u_map_get(request->map_url, "id");
    if (id_string == NULL)
    {
        return send_simple_response(response, 400, "error",
            "missing url parameter `id`");
    }

    int id;
    int r = parse_int(id_string, &id);
    if (r != 0)
    {
        printf("invalid url parameter `id`: %s\n", id_string);
        return send_simple_response(response, 400, "error",
            "invalid url parameter `id`");
    }

    // Read in json request body.
    json_t * json_input = ulfius_get_json_body_request(request, NULL);

    // Read SSH key from request.
    const char * ssh_key;
    ssh_key = json_string_value(json_object_get(json_input, "ssh-key"));
    if (ssh_key == NULL)
    {
        return send_simple_response(response, 400, "error", "missing ssh-key");
    }
Maarten de Waard's avatar
add command to ssh key when using PUT  
Maarten de Waard committed
53 54 55 56 57 58 
    // add cryptops-client command to ssh-key
    char * ssh_key_with_command;
    add_ssh_command(&ssh_key_with_command, ssh_key);

    r = replace_ssh_key(id, ssh_key_with_command);
Maarten de Waard's avatar
if ( and while ( instead of if( and while(  
Maarten de Waard committed
59 
    if (r < 0)
Maarten de Waard's avatar
basic PUT and DELETE behavior, still does some weird stuff with random unicode...
Maarten de Waard committed
60 
    {
Maarten de Waard's avatar
if ( and while ( instead of if( and while(  
Maarten de Waard committed
61 
        if (r == -1)
Maarten de Waard's avatar
basic PUT and DELETE behavior, still does some weird stuff with random unicode...
Maarten de Waard committed
62 63 
            return send_simple_response(response, 500, "error",
                "error opening authorized_keys");
Maarten de Waard's avatar
if ( and while ( instead of if( and while(  
Maarten de Waard committed
64 
        if (r == -2)
Maarten de Waard's avatar
basic PUT and DELETE behavior, still does some weird stuff with random unicode...
Maarten de Waard committed
65 66 67 68 69 70 71 
            return send_simple_response(response, 500, "error",
                "error opening authorized_keys tmp file");
        return send_simple_response(response, 500, "error",
            "Unknown error while processing ssh keys");
    }
    return send_simple_response(response, 200, "status", "ok");
}