Support for authorized keys

Added optional parameter for admin user authorized keys.

Change-Id: I1310afeb024f625663557a7c0b9992bdefa17ae2
Signed-off-by: Jyrki Aaltonen <jyrki.aaltonen@nokia.com>

diff --git a/cmdatahandlers/src/cmdatahandlers/users/config.py b/cmdatahandlers/src/cmdatahandlers/users/config.py
index 9607194..406823c 100644 (file)
--- a/cmdatahandlers/src/cmdatahandlers/users/config.py
+++ b/cmdatahandlers/src/cmdatahandlers/users/config.py
@@ -106,6 +106,15 @@ class Config(config.Config):
         """
         return self.config[self.ROOT]['initial_user_password']
 
+    def get_admin_user_authorized_keys(self):
+        ''' Get the authorized public keys for the admin user
+
+            Return:
+
+            A list of authorized keys (strings), can be an empty list
+        '''
+        return self.config[self.ROOT].get('admin_user_authorized_keys', [])
+
     def mask_sensitive_data(self):
         self.config[self.ROOT]['admin_user_password'] = self.MASK
         self.config[self.ROOT]['initial_user_password'] = self.MASK

diff --git a/userconfigtemplate/user_config.yaml b/userconfigtemplate/user_config.yaml
index 64677ac..de9e18d 100644 (file)
--- a/userconfigtemplate/user_config.yaml
+++ b/userconfigtemplate/user_config.yaml
@@ -62,6 +62,9 @@ users:
     ### python -c "from passlib.hash import sha512_crypt; import getpass; print sha512_crypt.using(rounds=5000).hash(getpass.getpass())"
     admin_user_password: <VALUE>
 
+    # Authorized public keys for the admin user
+    #admin_user_authorized_keys: []
+
     ### User details for the initial user (gets user_management_admin role)
     initial_user_name: <VALUE>
     initial_user_password: <VALUE>