capistrano-ssh-authorized-keys-github 1.1.0 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (4) hide show
  1. checksums.yaml +4 -4
  2. data/capistrano-ssh-authorized-keys-github.gemspec +1 -1
  3. data/lib/capistrano/tasks/ssh-authorized-keys-github.cap +24 -21
  4. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: fdeace2093ea8dd5b0326e751fe39daaf0976d9815949063d0a041b579637db4
4
- data.tar.gz: 5dcd586bbab56363ee751a3379354bfb93861e6dff1e645d78194eb530d86945
3
+ metadata.gz: 6775ce8d8eac1a2c278c71435aba2e616f684bad6038d3c7313082545e9c1a7e
4
+ data.tar.gz: 46d20cb800aefd3fe294f0c19f262afb5a1e5396fa86ba44af40c6ff9a723d50
5
5
  SHA512:
6
- metadata.gz: f5e563b6bcb8f601cb0d31c846869c8d62bff34d2154fd356c0c6596f695ed2238a152abfb3e50871ab1b20b8d581f5e17734a88a9af2770351c58bacc3f4fa5
7
- data.tar.gz: e740b5181dcf8f7eb9915d9395c7bef55c222249980c3866cb771d2cc151c7ee61ef948b14b081e9562dec467314f21fe5207140b55f298dc359b3a04d5d0fd0
6
+ metadata.gz: 4813997a4c8330e160109eb041c0363642ee4c89090f87bd327094b3901d482a5ea5d783c783334d5f0dbbded9c69e79e9401c30e31e8b52b0beead17ba078f4
7
+ data.tar.gz: f4c4e6b67257f8232c427f02803d4b2d520b10f123d61b212003c2a3af17ee39ef4eb0535ede0d284fb1f5b24c9cb799bed797781bfd22486e226d747628bc54
data/capistrano-ssh-authorized-keys-github.gemspec CHANGED
@@ -4,7 +4,7 @@ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
4
4
 
5
5
  Gem::Specification.new do |spec|
6
6
  spec.name = 'capistrano-ssh-authorized-keys-github'
7
- spec.version = '1.1.0'
7
+ spec.version = '1.2.0'
8
8
  spec.authors = ['lloydwatkin']
9
9
  spec.email = ['lloyd@olioex.com']
10
10
  spec.summary = %q{Sync Github organisation public SSH keys to `server authorized_keys` file}
data/lib/capistrano/tasks/ssh-authorized-keys-github.cap CHANGED
@@ -8,7 +8,7 @@ NO_ORGANISATION_MEMBER_KEYS_FOUND = 'There are no public members for this Github
8
8
  namespace :security do
9
9
  desc 'Cycle SSH key logins'
10
10
  task :update_ssh_keys do
11
- on roles(:all) do |host|
11
+ run_locally do
12
12
  organisations = fetch(:github_orgs) || fetch(:github_org) || raise(NO_GITHUB_ORGANISATION_PROVIDED)
13
13
  keys = ""
14
14
  authentication = ''
@@ -17,37 +17,40 @@ namespace :security do
17
17
  end
18
18
 
19
19
  [*organisations].each do |organisation|
20
+ info "Fetching keys for #{organisation}"
20
21
  url = URI("https://#{authentication}api.github.com/orgs/#{organisation}")
21
22
  organisation_details = JSON.parse(Net::HTTP.get_response(url).body, symbolize_names: true)
22
23
  members_url = URI(organisation_details[:members_url].gsub("{/member}", "").gsub('https://', "https://#{authentication}"))
23
- members = JSON.parse(Net::HTTP.get_response(members_url).body, symbolize_names: true)
24
- keys += " #
25
- # #{organisation_details[:name]} keys
26
- # #{members_url}
27
- #
28
- # --
29
-
30
- "
24
+ response = Net::HTTP.get_response(members_url)
25
+ raise response.body unless response.kind_of? Net::HTTPSuccess
26
+ members = JSON.parse(response.body, symbolize_names: true)
27
+ keys += "\n#\n"\
28
+ "# #{organisation_details[:name]} keys\n"\
29
+ "# #{members_url}\n"\
30
+ "#\n"
31
31
  member_details = members.map { |member| member[:login].downcase }.sort
32
32
  member_details.each do |member|
33
+ info " - Downloading keys for #{member}"
33
34
  member_keys = URI("https://#{authentication}github.com/#{member}.keys")
34
- info = " #
35
- # @#{member}
36
- # #{member_keys}
37
- #
38
- "
39
- keys += info + Net::HTTP.get_response(member_keys).body.gsub(/\r\n?/, "\n")
35
+ info = "\n #\n"\
36
+ " # @#{member}\n"\
37
+ " # #{member_keys}\n"\
38
+ " #\n"
39
+ response = Net::HTTP.get_response(member_keys)
40
+ raise response.body unless response.kind_of? Net::HTTPSuccess
41
+ keys += info + response.body.gsub(/\r\n?/, "\n")
40
42
  end
41
43
  end
44
+ raise raise NO_ORGANISATION_MEMBER_KEYS_FOUND unless keys.scan(/ssh-(rsa|ed25519)/).count > 0
45
+ info "Writing authorized_keys file to ./tmp"
46
+ File.open("./tmp/authorized_keys", "w") do |f|
47
+ f.write(keys)
48
+ end
42
49
 
43
- if keys.scan(/ssh-(rsa|ed25519)/).count > 0
44
- File.open("./tmp/authorized_keys", "w") do |f|
45
- f.write(keys)
46
- end
50
+ info "Uploading updated authorized_keys to servers"
51
+ on roles(:all) do |host|
47
52
  upload! './tmp/authorized_keys', "/tmp/authorized_keys"
48
53
  execute :mv, "/tmp/authorized_keys", "~/.ssh/authorized_keys"
49
- else
50
- raise NO_ORGANISATION_MEMBER_KEYS_FOUND
51
54
  end
52
55
  end
53
56
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: capistrano-ssh-authorized-keys-github
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.1.0
4
+ version: 1.2.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - lloydwatkin
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-10-28 00:00:00.000000000 Z
11
+ date: 2022-11-07 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: capistrano