Enable SSH only if any keys exist

2019-03-22 10:31:25 +01:00 · 2019-03-22 10:31:25 +01:00 · 2494c55493
commit 2494c55493
parent 81d9bb74ee
2 changed files with 8 additions and 1 deletions
--- a/usr/lib/python3.6/vmmgr/remote.py
+++ b/usr/lib/python3.6/vmmgr/remote.py
@ -18,6 +18,13 @@ def set_authorized_keys(keys):
    # Saves content of root's authorized_files
    with open(AUTHORIZED_KEYS, 'w') as f:
        f.write(keys)
+    # Enable or disable SSH service
+    if keys.strip():
+        subprocess.run(['/sbin/rc-update', 'add', 'sshd', 'boot'])
+        subprocess.run(['/sbin/service', 'sshd', 'start'])
+    else:
+        subprocess.run(['/sbin/service', 'sshd', 'stop'])
+        subprocess.run(['/sbin/rc-update', 'del', 'sshd', 'boot'])

 def is_wireguard_running():
    # Returns status of wg0 interface (inferred from existence of its config file)
--- a/usr/share/vmmgr/templates/setup-remote.html
+++ b/usr/share/vmmgr/templates/setup-remote.html
@ -3,7 +3,7 @@
 {% block body %}
 <div class="setup-box">
    <h2>SSH klíče</h2>
-    <p>Obsah souboru <em>authorized_hosts</em> uživatele root.</p>
+    <p>Obsah souboru <em>authorized_keys</em> uživatele root.</p>
    <form id="update-ssh-keys" action="/update-ssh-keys" method="post">
        <textarea name="ssh-keys" id="ssh-keys">{{ authorized_keys }}</textarea>
        <input type="submit" value="Nastavit klíče">