1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
|
// Copyright 2016 The Upspin Authors. All rights reserved.
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file.
// Keyserver is a wrapper for a key implementation that presents it as an HTTP
// interface.
package main // import "kesim.org/upspin-keyserver"
import (
"flag"
"os"
"path/filepath"
"strings"
"upspin.io/flags"
"upspin.io/log"
"upspin.io/serverutil"
"upspin.io/serverutil/keyserver"
"upspin.io/upspin"
// Load required transports
_ "upspin.io/key/transports"
// Possible storage backends.
"upspin.io/cloud/https"
_ "upspin.io/cloud/storage/disk"
)
var (
keyDir = flag.String("keyDir", "", "initialize keys from this `directory`")
)
func main() {
keyserver.Main(setupTestUser)
https.ListenAndServeFromFlags(nil)
}
// setupTestUser uses the -test_user and -test_secrets flags to bootstrap the
// inprocess key server with an initial user.
func setupTestUser(server upspin.KeyServer) {
if *keyDir == "" {
log.Println("no keyDir provided")
return
}
if flags.InsecureHTTP {
if !serverutil.IsLoopback(flags.HTTPAddr) {
log.Fatal("cannot use -keyDir flag on an insecure connection except on -http=localhost:port")
}
}
entries, err := os.ReadDir(*keyDir)
if err != nil {
log.Fatalf("cannot open keyDir %q: %v", *keyDir, err)
}
if len(entries) == 0 {
log.Fatalf("no entries in keyDir %q", *keyDir)
}
for _, entry := range entries {
name := entry.Name()
path := filepath.Join(*keyDir, name)
if !strings.Contains(name, "@") {
continue
}
f, err := os.ReadFile(path)
if err != nil {
log.Fatalf("unable to read %q: %v", path, err)
}
parts := strings.SplitN(string(f), "\n", 3)
if len(parts) != 3 {
log.Fatalf("file %q has wrong number of lines", path)
}
dir, err := upspin.ParseEndpoint(parts[0])
if err != nil {
log.Fatalf("couldn't parse first line of %q as dirserver: %v", path, err)
}
store, err := upspin.ParseEndpoint(parts[1])
if err != nil {
log.Fatalf("couldn't parse first line of %q as storeserver: %v", path, err)
}
userStruct := &upspin.User{
Name: upspin.UserName(name),
Dirs: []upspin.Endpoint{*dir},
Stores: []upspin.Endpoint{*store},
PublicKey: upspin.PublicKey(string(parts[2])),
}
err = server.Put(userStruct)
if err != nil {
log.Fatalf("Put %q failed: %v", name, err)
}
log.Printf("Added user %q\n", name)
// Need to add snapshot user, too
nparts := strings.Split(name, "@")
snapName := nparts[0]+"+snapshot@"+nparts[1]
snapStruct := &upspin.User {
Name: upspin.UserName(snapName),
PublicKey: upspin.PublicKey(string(parts[2])),
}
err = server.Put(snapStruct)
if err != nil {
log.Fatalf("Put %q failed: %v", snapName, err)
}
}
}
|
