raijin-server 0.2.30__py3-none-any.whl → 0.2.32__py3-none-any.whl

raijin_server/__init__.py

@@ -1,5 +1,5 @@
 """Pacote principal do CLI Raijin Server."""
 
-__version__ = "0.2.30"
+__version__ = "0.2.32"
 
 __all__ = ["__version__"]

raijin_server/modules/kong.py

@@ -150,23 +150,28 @@ def _uninstall_kong(ctx: ExecutionContext) -> None:
     )
     
     run_cmd(
-        ["kubectl", "delete", "namespace", "kong", "--ignore-not-found"],
+        ["kubectl", "delete", "namespace", "kong", "--ignore-not-found", "--wait=false"],
         ctx,
         check=False,
     )
     
-    # Remove CRDs do Kong tambem
-    crds = _check_orphan_crds(ctx)
-    if crds:
-        typer.echo(f"Removendo {len(crds)} CRDs do Kong...")
-        for crd in crds:
-            run_cmd(
-                ["kubectl", "delete", "crd", crd, "--ignore-not-found"],
-                ctx,
-                check=False,
-            )
+    # Remove CRDs do Kong diretamente (mais confiável)
+    typer.echo("Removendo CRDs do Kong...")
+    run_cmd(
+        ["sh", "-c", "kubectl get crd -o name | grep konghq.com | xargs -r kubectl delete --ignore-not-found"],
+        ctx,
+        check=False,
+    )
+    
+    # Aguarda namespace terminar de deletar
+    typer.echo("Aguardando limpeza completa...")
+    run_cmd(
+        ["kubectl", "wait", "--for=delete", "namespace/kong", "--timeout=60s"],
+        ctx,
+        check=False,
+    )
     
-    time.sleep(5)
+    time.sleep(3)
 
 
 def _wait_for_kong_ready(ctx: ExecutionContext, timeout: int = 180) -> bool:

raijin_server/modules/ssh_hardening.py

@@ -43,7 +43,8 @@ def _write_authorized_keys(username: str, content: str, ctx: ExecutionContext) -
 
     ssh_dir.mkdir(parents=True, exist_ok=True)
     os.chmod(ssh_dir, 0o700)
-    auth_file.write_text(AUTHORIZED_KEYS_TEMPLATE.format(key=content.strip()))
+    normalized_key = content.replace("\r\n", "\n").strip()  # normaliza CRLF de chaves geradas no Windows
+    auth_file.write_text(AUTHORIZED_KEYS_TEMPLATE.format(key=normalized_key))
     os.chmod(auth_file, 0o600)
     run_cmd(["chown", "-R", f"{username}:{username}", str(ssh_dir)], ctx)
 
@@ -69,12 +70,16 @@ def run(ctx: ExecutionContext) -> None:
     username = typer.prompt("Usuario administrativo para SSH", default="adminops")
     ssh_port = typer.prompt("Porta SSH", default="22")
     sudo_access = typer.confirm("Adicionar usuario ao grupo sudo?", default=True)
+    extra_users = typer.prompt(
+        "Usuarios adicionais permitidos (opcional, separados por espaco)", default=""
+    ).strip()
     pubkey_path = typer.prompt(
-        "Arquivo com chave publica (ENTER para ~/.ssh/id_ed25519.pub)",
-        default=str(Path.home() / ".ssh/id_ed25519.pub"),
+        "Arquivo com chave publica ou authorized_keys existente",
+        default=str(Path.home() / ".ssh/authorized_keys"),
     )
 
     public_key = _load_public_key(pubkey_path)
+    allow_users = " ".join(part for part in [username, extra_users] if part).strip()
 
     _ensure_user(username, ctx)
     if sudo_access:
@@ -91,7 +96,10 @@ PasswordAuthentication no
 PermitEmptyPasswords no
 ChallengeResponseAuthentication no
 UsePAM yes
-AllowUsers {username}
+KbdInteractiveAuthentication no
+PubkeyAuthentication yes
+AuthorizedKeysFile %h/.ssh/authorized_keys
+AllowUsers {allow_users}
 AuthenticationMethods publickey
 X11Forwarding no
 ClientAliveInterval 300

{raijin_server-0.2.30.dist-info → raijin_server-0.2.32.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: raijin-server
-Version: 0.2.30
+Version: 0.2.32
 Summary: CLI para automacao de setup e hardening de servidores Ubuntu Server.
 Home-page: https://example.com/raijin-server
 Author: Equipe Raijin

{raijin_server-0.2.30.dist-info → raijin_server-0.2.32.dist-info}/RECORD

@@ -1,4 +1,4 @@
-raijin_server/__init__.py,sha256=RBohu5QPizLjIo2M7DnX6GpWDLUuqvHB16Gzb8HDoZM,95
+raijin_server/__init__.py,sha256=lY1Zh0BpnKR_Xt80B_ZQ1POl97fFJCV6ne3tDgd4-64,95
 raijin_server/cli.py,sha256=2m7q1znMLbBdnUwN6oOUrCZXEqC2e7SfbjYkymbP4lQ,37884
 raijin_server/config.py,sha256=QNiEVvrbW56XgvNn5-h3bkJm46Xc8mjNqPbvixXD8N0,4829
 raijin_server/healthchecks.py,sha256=lzXdFw6S0hOYbUKbqksh4phb04lXgXdTspP1Dsz4dx8,15401
@@ -18,7 +18,7 @@ raijin_server/modules/hardening.py,sha256=4hz3ifkMhPlXa2n7gPxN0gitQgzALZ-073vuU3
 raijin_server/modules/harness.py,sha256=uWTxTVJlY_VB6xi4ftMtTSaIb96HA8WJQS-RbyxU45M,5391
 raijin_server/modules/istio.py,sha256=o0K5-Fw4LRs-kbAVgwzYxHzEt_aPFJG8suqOqvg2748,7297
 raijin_server/modules/kafka.py,sha256=n7ZpLPWv6sKBJhdBiPe7VgeDB24YiCIOWvOQkWwt03Y,5664
-raijin_server/modules/kong.py,sha256=KKS9HZF-6Q-ZtJBpBNvWZN6L4YR45iiVR0KiYB1nSz8,13229
+raijin_server/modules/kong.py,sha256=eDSagvEP9_BCs9pZ-pCVs1BDdlYOoJfY5PnUSiTvvgc,13416
 raijin_server/modules/kubernetes.py,sha256=9E6zV0zGQWZW92NVpxwYctpi-4JDmi6YzF3tKRI4HlU,13343
 raijin_server/modules/loki.py,sha256=aNiUpnOFppZMXoQwYhn7IoPMzwUz4aHi6pbiqj1PRjc,5022
 raijin_server/modules/metallb.py,sha256=uUuklc_RsQ-W2qDVRMQAxQm9HKGEqso444b1IwBpM6w,8554
@@ -29,7 +29,7 @@ raijin_server/modules/observability_ingress.py,sha256=Fh1rlFWueBNHnOkHuoHYyhILmp
 raijin_server/modules/prometheus.py,sha256=wT9jdcC-8vVysVKgMR5isGbxxpvGFPRf7fhMAGd9kJU,10761
 raijin_server/modules/sanitize.py,sha256=_RnWn1DUuNrzx3NnKEbMvf5iicgjiN_ubwT59e0rYWY,6040
 raijin_server/modules/secrets.py,sha256=d4j12feQL8m_4-hYN5FfboQHvBc75TFeGno3OzrXokE,9266
-raijin_server/modules/ssh_hardening.py,sha256=oQdk-EVnEHNMKIWvoFuZzI4jK0nNO8IAY4hkB4pj8zw,4025
+raijin_server/modules/ssh_hardening.py,sha256=yTPvgHv3T0j0ayXoc-kN7YVe3SISi1yKnwipPb3bk_Y,4445
 raijin_server/modules/traefik.py,sha256=crEYIqAidAhh_H93qIvCbTtJ7BjO-3ef77alLc_--Gg,3535
 raijin_server/modules/velero.py,sha256=yDtqd6yUu0L5wzLCjYXqvvxB_RyaAoZtntb6HoHVAOo,5642
 raijin_server/modules/vpn.py,sha256=hF-0vA17VKTxhQLDBSEeqI5aPQpiaaj4IpUf9l6lr64,8297
@@ -38,9 +38,9 @@ raijin_server/scripts/checklist.sh,sha256=j6E0Kmk1EfjLvKK1VpCqzXJAXI_7Bm67LK4ndy
 raijin_server/scripts/install.sh,sha256=Y1ickbQ4siQ0NIPs6UgrqUr8WWy7U0LHmaTQbEgavoI,3949
 raijin_server/scripts/log_size_metric.sh,sha256=Iv4SsX8AuCYRou-klYn32mX41xB6j0xJGLBO6riw4rU,1208
 raijin_server/scripts/pre-deploy-check.sh,sha256=XqMo7IMIpwUHF17YEmU0-cVmTDMoCGMBFnmS39FidI4,4912
-raijin_server-0.2.30.dist-info/licenses/LICENSE,sha256=kJsMCjOiRZE0AQNtxWqBa32z9kMAaF4EUxyHj3hKaJo,1105
-raijin_server-0.2.30.dist-info/METADATA,sha256=prMsN_Rip_CpEeAxq3Lxiulydtm6Sj4BkidyuaLbzUQ,22476
-raijin_server-0.2.30.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
-raijin_server-0.2.30.dist-info/entry_points.txt,sha256=3ZvxDX4pvcjkIRsXAJ69wIfVmKa78LKo-C3QhqN2KVM,56
-raijin_server-0.2.30.dist-info/top_level.txt,sha256=Yz1xneCRtsZOzbPIcTAcrSxd-1p80pohMXYAZ74dpok,14
-raijin_server-0.2.30.dist-info/RECORD,,
+raijin_server-0.2.32.dist-info/licenses/LICENSE,sha256=kJsMCjOiRZE0AQNtxWqBa32z9kMAaF4EUxyHj3hKaJo,1105
+raijin_server-0.2.32.dist-info/METADATA,sha256=Uxzf8i6E1zxhjsJsPZOrqSw4tlSyQLqCRzXBtLX3H0E,22476
+raijin_server-0.2.32.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
+raijin_server-0.2.32.dist-info/entry_points.txt,sha256=3ZvxDX4pvcjkIRsXAJ69wIfVmKa78LKo-C3QhqN2KVM,56
+raijin_server-0.2.32.dist-info/top_level.txt,sha256=Yz1xneCRtsZOzbPIcTAcrSxd-1p80pohMXYAZ74dpok,14
+raijin_server-0.2.32.dist-info/RECORD,,