From 7c3295e9783a677bf15287bf048240c56b3b03ba Mon Sep 17 00:00:00 2001 From: Jyrki Aaltonen Date: Wed, 28 Aug 2019 11:33:26 +0300 Subject: [PATCH] Support for authorized keys Added optional parameter for admin user authorized keys. Change-Id: I1310afeb024f625663557a7c0b9992bdefa17ae2 Signed-off-by: Jyrki Aaltonen --- cmdatahandlers/src/cmdatahandlers/users/config.py | 9 +++++++++ userconfigtemplate/user_config.yaml | 3 +++ 2 files changed, 12 insertions(+) diff --git a/cmdatahandlers/src/cmdatahandlers/users/config.py b/cmdatahandlers/src/cmdatahandlers/users/config.py index 9607194..406823c 100644 --- a/cmdatahandlers/src/cmdatahandlers/users/config.py +++ b/cmdatahandlers/src/cmdatahandlers/users/config.py @@ -106,6 +106,15 @@ class Config(config.Config): """ return self.config[self.ROOT]['initial_user_password'] + def get_admin_user_authorized_keys(self): + ''' Get the authorized public keys for the admin user + + Return: + + A list of authorized keys (strings), can be an empty list + ''' + return self.config[self.ROOT].get('admin_user_authorized_keys', []) + def mask_sensitive_data(self): self.config[self.ROOT]['admin_user_password'] = self.MASK self.config[self.ROOT]['initial_user_password'] = self.MASK diff --git a/userconfigtemplate/user_config.yaml b/userconfigtemplate/user_config.yaml index 64677ac..de9e18d 100644 --- a/userconfigtemplate/user_config.yaml +++ b/userconfigtemplate/user_config.yaml @@ -62,6 +62,9 @@ users: ### python -c "from passlib.hash import sha512_crypt; import getpass; print sha512_crypt.using(rounds=5000).hash(getpass.getpass())" admin_user_password: + # Authorized public keys for the admin user + #admin_user_authorized_keys: [] + ### User details for the initial user (gets user_management_admin role) initial_user_name: initial_user_password: -- 2.16.6