cloudx-proxy 0.3.13__tar.gz → 0.3.15__tar.gz

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/CHANGELOG.md

@@ -1,3 +1,18 @@
+## [0.3.15](https://github.com/easytocloud/cloudX-proxy/compare/v0.3.14...v0.3.15) (2025-03-06)
+
+
+### Bug Fixes
+
+* added --ssh-config ([893d919](https://github.com/easytocloud/cloudX-proxy/commit/893d919f7ef30dc5fd41a06b2c032d0035180e80))
+* added --ssh-config also in connect ([75b7b3b](https://github.com/easytocloud/cloudX-proxy/commit/75b7b3b5ecac5f1a1012ce9d4905bc5aed444915))
+
+## [0.3.14](https://github.com/easytocloud/cloudX-proxy/compare/v0.3.13...v0.3.14) (2025-03-06)
+
+
+### Bug Fixes
+
+* restricted permissions on generated files and directories ([6b7b057](https://github.com/easytocloud/cloudX-proxy/commit/6b7b057832ab95fc6cb00c759380663eec2960a5))
+
 ## [0.3.13](https://github.com/easytocloud/cloudX-proxy/compare/v0.3.12...v0.3.13) (2025-03-06)
 
 

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.2
 Name: cloudx-proxy
-Version: 0.3.13
+Version: 0.3.15
 Summary: SSH proxy command to connect VSCode with Cloud9/CloudX instance using AWS Systems Manager
 Author-email: easytocloud <info@easytocloud.com>
 License: MIT License

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/cloudx_proxy/_version.py

@@ -17,5 +17,5 @@ __version__: str
 __version_tuple__: VERSION_TUPLE
 version_tuple: VERSION_TUPLE
 
-__version__ = version = '0.3.13'
-__version_tuple__ = version_tuple = (0, 3, 13)
+__version__ = version = '0.3.15'
+__version_tuple__ = version_tuple = (0, 3, 15)

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/cloudx_proxy/cli.py

@@ -17,8 +17,9 @@ def cli():
 @click.option('--profile', default='vscode', help='AWS profile to use (default: vscode)')
 @click.option('--region', help='AWS region (default: from profile, or eu-west-1 if not set)')
 @click.option('--ssh-key', default='vscode', help='SSH key name to use (default: vscode)')
+@click.option('--ssh-config', help='SSH config file to use (default: ~/.ssh/vscode/config)')
 @click.option('--aws-env', help='AWS environment directory (default: ~/.aws, use name of directory in ~/.aws/aws-envs/)')
-def connect(instance_id: str, port: int, profile: str, region: str, ssh_key: str, aws_env: str):
+def connect(instance_id: str, port: int, profile: str, region: str, ssh_key: str, ssh_config: str, aws_env: str):
     """Connect to an EC2 instance via SSM.
     
     INSTANCE_ID is the EC2 instance ID to connect to (e.g., i-0123456789abcdef0)
@@ -35,6 +36,7 @@ def connect(instance_id: str, port: int, profile: str, region: str, ssh_key: str
             profile=profile,
             region=region,
             ssh_key=ssh_key,
+            ssh_config=ssh_config,
             aws_env=aws_env
         )
         
@@ -48,8 +50,9 @@ def connect(instance_id: str, port: int, profile: str, region: str, ssh_key: str
 @cli.command()
 @click.option('--profile', default='vscode', help='AWS profile to use (default: vscode)')
 @click.option('--ssh-key', default='vscode', help='SSH key name to use (default: vscode)')
+@click.option('--ssh-config', help='SSH config file to use (default: ~/.ssh/vscode/config)')
 @click.option('--aws-env', help='AWS environment directory (default: ~/.aws, use name of directory in ~/.aws/aws-envs/)')
-def setup(profile: str, ssh_key: str, aws_env: str):
+def setup(profile: str, ssh_key: str, ssh_config: str, aws_env: str):
     """Set up AWS profile, SSH keys, and configuration for CloudX.
     
     This command will:
@@ -61,9 +64,10 @@ def setup(profile: str, ssh_key: str, aws_env: str):
     Example usage:
         cloudx-proxy setup
         cloudx-proxy setup --profile myprofile --ssh-key mykey
+        cloudx-proxy setup --ssh-config ~/.ssh/cloudx/config
     """
     try:
-        setup = CloudXSetup(profile=profile, ssh_key=ssh_key, aws_env=aws_env)
+        setup = CloudXSetup(profile=profile, ssh_key=ssh_key, ssh_config=ssh_config, aws_env=aws_env)
         
         print("\n\033[1;95m=== cloudx-proxy Setup ===\033[0m\n")
         

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/cloudx_proxy/core.py

@@ -7,7 +7,7 @@ from botocore.exceptions import ClientError
 
 class CloudXProxy:
     def __init__(self, instance_id: str, port: int = 22, profile: str = "vscode", 
-                 region: str = None, ssh_key: str = "vscode", aws_env: str = None):
+                 region: str = None, ssh_key: str = "vscode", ssh_config: str = None, aws_env: str = None):
         """Initialize CloudX client for SSH tunneling via AWS SSM.
         
         Args:
@@ -39,8 +39,14 @@ class CloudXProxy:
         self.ec2 = self.session.client('ec2')
         self.ec2_connect = self.session.client('ec2-instance-connect')
         
-        # Set up SSH key path
-        self.ssh_dir = os.path.expanduser("~/.ssh/vscode")
+        # Set up SSH configuration and key paths
+        if ssh_config:
+            self.ssh_config_file = os.path.expanduser(ssh_config)
+            self.ssh_dir = os.path.dirname(self.ssh_config_file)
+        else:
+            self.ssh_dir = os.path.expanduser("~/.ssh/vscode")
+            self.ssh_config_file = os.path.join(self.ssh_dir, "config")
+            
         self.ssh_key = os.path.join(self.ssh_dir, f"{ssh_key}.pub")
 
     def log(self, message: str) -> None:

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/cloudx_proxy/setup.py

@@ -9,20 +9,28 @@ import boto3
 from botocore.exceptions import ClientError
 
 class CloudXSetup:
-    def __init__(self, profile: str = "vscode", ssh_key: str = "vscode", aws_env: str = None):
+    def __init__(self, profile: str = "vscode", ssh_key: str = "vscode", ssh_config: str = None, aws_env: str = None):
         """Initialize cloudx-proxy setup.
         
         Args:
             profile: AWS profile name (default: "vscode")
             ssh_key: SSH key name (default: "vscode")
+            ssh_config: SSH config file path (default: None, uses ~/.ssh/vscode/config)
             aws_env: AWS environment directory (default: None)
         """
         self.profile = profile
         self.ssh_key = ssh_key
         self.aws_env = aws_env
         self.home_dir = str(Path.home())
-        self.ssh_dir = Path(self.home_dir) / ".ssh" / "vscode"
-        self.ssh_config_file = self.ssh_dir / "config"
+        
+        # Set up ssh config paths based on provided config or default
+        if ssh_config:
+            self.ssh_config_file = Path(os.path.expanduser(ssh_config))
+            self.ssh_dir = self.ssh_config_file.parent
+        else:
+            self.ssh_dir = Path(self.home_dir) / ".ssh" / "vscode"
+            self.ssh_config_file = self.ssh_dir / "config"
+        
         self.ssh_key_file = self.ssh_dir / f"{ssh_key}"
         self.default_env = None
 
@@ -68,6 +76,25 @@ class CloudXSetup:
         response = input(prompt_text)
         return response if response else default
 
+    def _set_directory_permissions(self, directory: Path) -> bool:
+        """Set proper permissions (700) on a directory for Unix-like systems.
+        
+        Args:
+            directory: Path to the directory
+            
+        Returns:
+            bool: True if permissions were set successfully
+        """
+        try:
+            if platform.system() != 'Windows':
+                import stat
+                directory.chmod(stat.S_IRWXU)  # 700 permissions (owner read/write/execute)
+                self.print_status(f"Set {directory} permissions to 700", True, 2)
+            return True
+        except Exception as e:
+            self.print_status(f"Error setting permissions: {str(e)}", False, 2)
+            return False
+
     def setup_aws_profile(self) -> bool:
         """Set up AWS profile using aws configure command.
         
@@ -138,10 +165,20 @@ class CloudXSetup:
             self.ssh_dir.mkdir(parents=True, exist_ok=True)
             self.print_status("SSH directory exists", True, 2)
             
+            # Set proper permissions on the vscode directory
+            if not self._set_directory_permissions(self.ssh_dir):
+                return False
+            
             key_exists = self.ssh_key_file.exists() and (self.ssh_key_file.with_suffix('.pub')).exists()
             
             if key_exists:
                 self.print_status(f"SSH key '{self.ssh_key}' exists", True, 2)
+                # Set proper permissions on existing key files
+                if platform.system() != 'Windows':
+                    import stat
+                    self.ssh_key_file.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions (owner read/write)
+                    self.ssh_key_file.with_suffix('.pub').chmod(stat.S_IRUSR | stat.S_IWUSR | stat.S_IROTH | stat.S_IRGRP)  # 644 permissions
+                    self.print_status("Set key file permissions", True, 2)
             else:
                 self.print_status(f"Generating new SSH key '{self.ssh_key}'...", None, 2)
                 subprocess.run([
@@ -152,6 +189,12 @@ class CloudXSetup:
                 ], check=True)
                 self.print_status("SSH key generated", True, 2)
                 
+                # Set proper permissions on newly generated key files
+                if platform.system() != 'Windows':
+                    import stat
+                    self.ssh_key_file.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions (owner read/write)
+                    self.ssh_key_file.with_suffix('.pub').chmod(stat.S_IRUSR | stat.S_IWUSR | stat.S_IROTH | stat.S_IRGRP)  # 644 permissions
+                    self.print_status("Set key file permissions", True, 2)
             
             return True
 
@@ -200,6 +243,13 @@ Host cloudx-{cloudx_env}-{hostname}
             with open(self.ssh_config_file, 'a') as f:
                 f.write(host_entry)
             self.print_status("Host entry added with settings", True, 2)
+            
+            # Set proper permissions on the config file
+            if platform.system() != 'Windows':
+                import stat
+                self.ssh_config_file.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions (owner read/write)
+                self.print_status("Set config file permissions to 600", True, 2)
+                
             return True
 
         except Exception as e:
@@ -220,24 +270,16 @@ Host cloudx-{cloudx_env}-{hostname}
             bool: True if directory was created or exists with proper permissions
         """
         try:
-            # Create path based on platform
-            if platform.system() == 'Windows':
-                control_dir = Path(self.home_dir) / ".ssh" / "control"
-            else:
-                control_dir = Path(self.home_dir) / ".ssh" / "control"
+            # Create control directory path
+            control_dir = Path(self.home_dir) / ".ssh" / "control"
             
             # Create directory if it doesn't exist
             if not control_dir.exists():
                 control_dir.mkdir(parents=True, exist_ok=True)
                 self.print_status(f"Created control directory: {control_dir}", True, 2)
             
-            # Set proper permissions on Unix-like systems
-            if platform.system() != 'Windows':
-                import stat
-                control_dir.chmod(stat.S_IRWXU)  # 700 permissions (owner read/write/execute)
-                self.print_status("Set directory permissions to 700", True, 2)
-                
-            return True
+            # Set proper permissions
+            return self._set_directory_permissions(control_dir)
             
         except Exception as e:
             self.print_status(f"Error creating control directory: {str(e)}", False, 2)
@@ -296,8 +338,10 @@ Host cloudx-{cloudx_env}-{hostname}
                 if f"Host cloudx-{cloudx_env}-*" in current_config:
                     self.print_status(f"Found existing config for cloudx-{cloudx_env}-*", True, 2)
                     choice = self.prompt(
-                        "Would you like to \n(1) override the existing config\n "
-                        "(2) add settings to the specific host entry?",
+                        "Would you like to \n"
+                        "  1: override the existing config\n"
+                        "  2: add settings to the specific host entry?\n"
+                        "Select an option",
                         "1"
                     )
                     if choice == "2":
@@ -324,6 +368,7 @@ Host cloudx-{cloudx_env}-{hostname}
             # Create base config
             self.print_status(f"Creating new config for cloudx-{cloudx_env}-*", None, 2)
             # Build ProxyCommand with only non-default parameters
+            # We don't need to include ssh_config here as SSH will handle that through the config
             proxy_command = "uvx cloudx-proxy connect %h %p"
             if self.profile != "vscode":
                 proxy_command += f" --profile {self.profile}"
@@ -369,6 +414,12 @@ Host cloudx-{cloudx_env}-*
             else:
                 self.ssh_config_file.write_text(base_config)
             self.print_status("Base configuration created", True, 2)
+            
+            # Set proper permissions on the config file
+            if platform.system() != 'Windows':
+                import stat
+                self.ssh_config_file.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions (owner read/write)
+                self.print_status("Set config file permissions to 600", True, 2)
 
             # Add specific host entry
             self.print_status(f"Adding host entry for cloudx-{cloudx_env}-{hostname}", None, 2)
@@ -380,25 +431,51 @@ Host cloudx-{cloudx_env}-{hostname}
                 f.write(host_entry)
             self.print_status("Host entry added", True, 2)
 
-            # Ensure main SSH config includes our config
-            main_config = Path(self.home_dir) / ".ssh" / "config"
-            include_line = f"Include {self.ssh_config_file}\n"
+            # Handle system SSH config integration
+            system_config_path = Path(self.home_dir) / ".ssh" / "config"
             
-            if main_config.exists():
-                content = main_config.read_text()
-                if include_line not in content:
-                    with open(main_config, 'a') as f:
-                        f.write(f"\n{include_line}")
-                    self.print_status("Added include line to main SSH config", True, 2)
-                else:
-                    self.print_status("Main SSH config already includes our config", True, 2)
+            # Ensure ~/.ssh directory has proper permissions
+            ssh_parent_dir = Path(self.home_dir) / ".ssh"
+            if not ssh_parent_dir.exists():
+                ssh_parent_dir.mkdir(parents=True, exist_ok=True)
+                self.print_status(f"Created SSH directory: {ssh_parent_dir}", True, 2)
+            self._set_directory_permissions(ssh_parent_dir)
+            
+            # If our config file is the system config, we're done
+            if self.ssh_config_file.samefile(system_config_path) if self.ssh_config_file.exists() and system_config_path.exists() else str(self.ssh_config_file) == str(system_config_path):
+                self.print_status("Using system SSH config directly, no Include needed", True, 2)
             else:
-                main_config.write_text(include_line)
-                self.print_status("Created main SSH config with include line", True, 2)
+                # Otherwise, make sure the system config includes our config file
+                include_line = f"Include {self.ssh_config_file}\n"
+                
+                if system_config_path.exists():
+                    content = system_config_path.read_text()
+                    if include_line not in content:
+                        with open(system_config_path, 'a') as f:
+                            f.write(f"\n{include_line}")
+                        self.print_status("Added include line to system SSH config", True, 2)
+                    else:
+                        self.print_status("System SSH config already includes our config", True, 2)
+                    
+                    # Set correct permissions on system config file
+                    if platform.system() != 'Windows':
+                        import stat
+                        system_config_path.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions
+                        self.print_status("Set system config file permissions to 600", True, 2)
+                else:
+                    system_config_path.write_text(include_line)
+                    self.print_status("Created system SSH config with include line", True, 2)
+                    
+                    # Set correct permissions on newly created system config file
+                    if platform.system() != 'Windows':
+                        import stat
+                        system_config_path.chmod(stat.S_IRUSR | stat.S_IWUSR)  # 600 permissions
+                        self.print_status("Set system config file permissions to 600", True, 2)
 
-            self.print_status("\nSSH configuration summary:", None)
-            self.print_status(f"Main config: {main_config}", None, 2)
+            self.print_status("SSH configuration summary:", None)
+            self.print_status(f"System config: {system_config_path}", None, 2)
             self.print_status(f"cloudx-proxy config: {self.ssh_config_file}", None, 2)
+            self.print_status(f"SSH key directory: {self.ssh_dir}", None, 2)
             self.print_status(f"Connect using: ssh cloudx-{cloudx_env}-{hostname}", None, 2)
             
             return True

{cloudx_proxy-0.3.13 → cloudx_proxy-0.3.15}/cloudx_proxy.egg-info/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.2
 Name: cloudx-proxy
-Version: 0.3.13
+Version: 0.3.15
 Summary: SSH proxy command to connect VSCode with Cloud9/CloudX instance using AWS Systems Manager
 Author-email: easytocloud <info@easytocloud.com>
 License: MIT License