# Copyright 2012 Cloudbase Solutions Srl # # Licensed under the Apache License, Version 2.0 (the "License"); you may # not use this file except in compliance with the License. You may obtain # a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, software # distributed under the License is distributed on an "AS IS" BASIS, WITHOUT # WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the # License for the specific language governing permissions and limitations # under the License. import os from oslo.config import cfg from cloudbaseinit import exception from cloudbaseinit.openstack.common import log as logging from cloudbaseinit.osutils import factory as osutils_factory from cloudbaseinit.plugins.common import base CONF = cfg.CONF CONF.import_opt('username', 'cloudbaseinit.plugins.common.createuser') LOG = logging.getLogger(__name__) class SetUserSSHPublicKeysPlugin(base.BasePlugin): def execute(self, service, shared_data): public_keys = service.get_public_keys() if not public_keys: LOG.debug('Public keys not found in metadata') return (base.PLUGIN_EXECUTION_DONE, False) username = CONF.username osutils = osutils_factory.get_os_utils() user_home = osutils.get_user_home(username) if not user_home: raise exception.CloudbaseInitException("User profile not found!") LOG.debug("User home: %s" % user_home) user_ssh_dir = os.path.join(user_home, '.ssh') if not os.path.exists(user_ssh_dir): os.makedirs(user_ssh_dir) authorized_keys_path = os.path.join(user_ssh_dir, "authorized_keys") LOG.info("Writing SSH public keys in: %s" % authorized_keys_path) with open(authorized_keys_path, 'w') as f: for public_key in public_keys: # All public keys are space-stripped. f.write(public_key + "\n") return (base.PLUGIN_EXECUTION_DONE, False)