~launchpad-pqm/launchpad/devel : contents of daemons/poppy-sftp.tac at revision 11387

~launchpad-pqm/launchpad/devel : (revision 11387)

# Copyright 2010 Canonical Ltd.  This software is licensed under the
# GNU Affero General Public License version 3 (see the file LICENSE).

# This is a Twisted application config file.  To run, use:
#     twistd -noy sftp.tac
# or similar.  Refer to the twistd(1) man page for details.

import os

from twisted.application import service
from twisted.conch.interfaces import ISession
from twisted.conch.ssh import filetransfer
from twisted.cred.portal import IRealm, Portal
from twisted.python import components
from twisted.web.xmlrpc import Proxy

from zope.interface import implements

from canonical.config import config
from canonical.launchpad.daemons import tachandler

from lp.poppy.twistedsftp import SFTPServer
from lp.services.sshserver.auth import (
    LaunchpadAvatar, PublicKeyFromLaunchpadChecker)
from lp.services.sshserver.service import SSHService
from lp.services.sshserver.session import DoNothingSession

# XXX: Rename this file to something that doesn't mention poppy. Talk to
# bigjools.


def make_portal():
    """Create and return a `Portal` for the SSH service.

    This portal accepts SSH credentials and returns our customized SSH
    avatars (see `LaunchpadAvatar`).
    """
    authentication_proxy = Proxy(
        config.poppy.authentication_endpoint)
    portal = Portal(Realm(authentication_proxy))
    portal.registerChecker(
        PublicKeyFromLaunchpadChecker(authentication_proxy))
    return portal


class Realm:
    implements(IRealm)

    def __init__(self, authentication_proxy):
        self.authentication_proxy = authentication_proxy

    def requestAvatar(self, avatar_id, mind, *interfaces):
        # Fetch the user's details from the authserver
        deferred = mind.lookupUserDetails(
            self.authentication_proxy, avatar_id)

        # Once all those details are retrieved, we can construct the avatar.
        def got_user_dict(user_dict):
            avatar = LaunchpadAvatar(user_dict)
            return interfaces[0], avatar, avatar.logout

        return deferred.addCallback(got_user_dict)


def get_poppy_root():
    """Return the poppy root to use for this server.

    If the POPPY_ROOT environment variable is set, use that. If not, use
    config.poppy.fsroot.
    """
    poppy_root = os.environ.get('POPPY_ROOT', None)
    if poppy_root:
        return poppy_root
    return config.poppy.fsroot


def poppy_sftp_adapter(avatar):
    return SFTPServer(avatar, get_poppy_root())


components.registerAdapter(
    poppy_sftp_adapter, LaunchpadAvatar, filetransfer.ISFTPServer)

components.registerAdapter(DoNothingSession, LaunchpadAvatar, ISession)


# Construct an Application that has the Poppy SSH server.
application = service.Application('poppy-sftp')
svc = SSHService(
    portal=make_portal(),
    private_key_path=config.poppy.host_key_private,
    public_key_path=config.poppy.host_key_public,
    oops_configuration='poppy',
    main_log='poppy',
    access_log='poppy.access',
    access_log_path=config.poppy.access_log,
    strport=config.poppy.port,
    idle_timeout=config.poppy.idle_timeout,
    banner=config.poppy.banner)
svc.setServiceParent(application)

# Service that announces when the daemon is ready
tachandler.ReadyService().setServiceParent(application)

10918.2.3 by Steve Kowalik Merge in the code for poppy-sftp	1	# Copyright 2010 Canonical Ltd. This software is licensed under the
	2	# GNU Affero General Public License version 3 (see the file LICENSE).
	3
	4	# This is a Twisted application config file. To run, use:
	5	# twistd -noy sftp.tac
	6	# or similar. Refer to the twistd(1) man page for details.
	7
	8	import os
	9
	10	from twisted.application import service
11057.4.3 by Jonathan Lange Use the DoNothing adapter.	11	from twisted.conch.interfaces import ISession
10918.2.3 by Steve Kowalik Merge in the code for poppy-sftp	12	from twisted.conch.ssh import filetransfer
	13	from twisted.cred.portal import IRealm, Portal
	14	from twisted.python import components
	15	from twisted.web.xmlrpc import Proxy
	16
	17	from zope.interface import implements
	18
	19	from canonical.config import config
	20	from canonical.launchpad.daemons import tachandler
	21
	22	from lp.poppy.twistedsftp import SFTPServer
	23	from lp.services.sshserver.auth import (
	24	LaunchpadAvatar, PublicKeyFromLaunchpadChecker)
	25	from lp.services.sshserver.service import SSHService
11057.4.3 by Jonathan Lange Use the DoNothing adapter.	26	from lp.services.sshserver.session import DoNothingSession
10918.2.3 by Steve Kowalik Merge in the code for poppy-sftp	27
	28	# XXX: Rename this file to something that doesn't mention poppy. Talk to
	29	# bigjools.
	30
	31
	32	def make_portal():
	33	"""Create and return a `Portal` for the SSH service.
	34
	35	This portal accepts SSH credentials and returns our customized SSH
	36	avatars (see `LaunchpadAvatar`).
	37	"""
	38	authentication_proxy = Proxy(
	39	config.poppy.authentication_endpoint)
	40	portal = Portal(Realm(authentication_proxy))
	41	portal.registerChecker(
	42	PublicKeyFromLaunchpadChecker(authentication_proxy))
	43	return portal
	44
	45
	46	class Realm:
	47	implements(IRealm)
	48
	49	def __init__(self, authentication_proxy):
	50	self.authentication_proxy = authentication_proxy
	51
	52	def requestAvatar(self, avatar_id, mind, *interfaces):
	53	# Fetch the user's details from the authserver
	54	deferred = mind.lookupUserDetails(
	55	self.authentication_proxy, avatar_id)
	56
	57	# Once all those details are retrieved, we can construct the avatar.
	58	def got_user_dict(user_dict):
	59	avatar = LaunchpadAvatar(user_dict)
	60	return interfaces[0], avatar, avatar.logout
	61
	62	return deferred.addCallback(got_user_dict)
	63
	64
	65	def get_poppy_root():
	66	"""Return the poppy root to use for this server.
	67
	68	If the POPPY_ROOT environment variable is set, use that. If not, use
	69	config.poppy.fsroot.
	70	"""
	71	poppy_root = os.environ.get('POPPY_ROOT', None)
	72	if poppy_root:
	73	return poppy_root
	74	return config.poppy.fsroot
	75
	76
	77	def poppy_sftp_adapter(avatar):
	78	return SFTPServer(avatar, get_poppy_root())
	79
	80
	81	components.registerAdapter(
	82	poppy_sftp_adapter, LaunchpadAvatar, filetransfer.ISFTPServer)
	83
11057.4.3 by Jonathan Lange Use the DoNothing adapter.	84	components.registerAdapter(DoNothingSession, LaunchpadAvatar, ISession)
11057.4.3 by Jonathan Lange Use the DoNothing adapter.	85
10918.2.3 by Steve Kowalik Merge in the code for poppy-sftp	86
	87	# Construct an Application that has the Poppy SSH server.
	88	application = service.Application('poppy-sftp')
	89	svc = SSHService(
	90	portal=make_portal(),
	91	private_key_path=config.poppy.host_key_private,
	92	public_key_path=config.poppy.host_key_public,
	93	oops_configuration='poppy',
	94	main_log='poppy',
	95	access_log='poppy.access',
	96	access_log_path=config.poppy.access_log,
	97	strport=config.poppy.port,
	98	idle_timeout=config.poppy.idle_timeout,
	99	banner=config.poppy.banner)
	100	svc.setServiceParent(application)
	101
	102	# Service that announces when the daemon is ready
	103	tachandler.ReadyService().setServiceParent(application)