-
-
-
- | {% trans "Domain" %} |
- {% trans "OpenPGP Fingerprint" %} |
- {% trans "Actions" %} |
-
-
-
- {% for domain in status.letsencrypt_domains %}
-
- | {{ domain.name }} |
-
- {% if domain.key %}
-
- {{ domain.key.pgp_fingerprint }}
-
- {% else %}
- {% trans "Not Available" %}
- {% endif %}
- |
-
- {% if not domain.key %}
-
- {% elif not running %}
-
+
+
+ {% endif %}
{% endif %}
|
diff --git a/plinth/modules/monkeysphere/templates/monkeysphere_details.html b/plinth/modules/monkeysphere/templates/monkeysphere_details.html
index bbe43947a..4702383c5 100644
--- a/plinth/modules/monkeysphere/templates/monkeysphere_details.html
+++ b/plinth/modules/monkeysphere/templates/monkeysphere_details.html
@@ -29,18 +29,18 @@
| {% trans "OpenPGP Fingerprint" %} |
- {{ key.pgp_fingerprint }} |
+ {{ key.openpgp_fingerprint }} |
| {% trans "OpenPGP Key ID" %} |
{{ key.pub }} |
- | {% trans "OpenPGP User ID" %} |
- {{ key.uid }} |
+ {% trans "OpenPGP User IDs" %} |
+ {{ key.uids|join:', ' }} |
- | {% trans "Key Generation Date" %} |
+ {% trans "Key Import Date" %} |
{{ key.date }} |
@@ -55,6 +55,30 @@
| {% trans "SSH Fingerprint" %} |
{{ key.ssh_fingerprint }} |
+
+ | {% trans "Service" %} |
+
+ {% if key.service == 'ssh' %}
+ {% trans "Secure Shell" %}
+ {% elif key.service == 'https' %}
+ {% trans "Web Server" %}
+ {% else %}
+ {% trans "Other" %}
+ {% endif %}
+ |
+
+
+ | {% trans "Key File" %} |
+ {{ key.key_file }} |
+
+
+ | {% trans "Available Domains" %} |
+ {{ key.available_domains|join:', ' }} |
+
+
+ | {% trans "Added Domains" %} |
+ {{ key.imported_domains|join:', ' }} |
+
@@ -66,13 +90,13 @@
# {% trans "Download the key" %}
-gpg --recv-key {{ key.pgp_fingerprint }}
+gpg --recv-key {{ key.openpgp_fingerprint }}
# {% trans "Sign the key" %}
-gpg --sign-key {{ key.pgp_fingerprint }}
+gpg --sign-key {{ key.openpgp_fingerprint }}
# {% trans "Send the key back to the keyservers" %}
-gpg --send-key {{ key.pgp_fingerprint }}
+gpg --send-key {{ key.openpgp_fingerprint }}
{% endblock %}
diff --git a/plinth/modules/monkeysphere/urls.py b/plinth/modules/monkeysphere/urls.py
index 73438b077..e02bfbb17 100644
--- a/plinth/modules/monkeysphere/urls.py
+++ b/plinth/modules/monkeysphere/urls.py
@@ -26,12 +26,8 @@ from . import views
urlpatterns = [
url(r'^sys/monkeysphere/$', views.index, name='index'),
- url(r'^sys/monkeysphere/(?P
[^/]+)/generate/$',
- views.generate, name='generate'),
- url(r'^sys/monkeysphere/(?P[^/]+)/generate_snakeoil/$',
- views.generate_snakeoil, name='generate_snakeoil'),
- url(r'^sys/monkeysphere/(?P[^/]+)/generate_letsencrypt/$',
- views.generate_letsencrypt, name='generate_letsencrypt'),
+ url(r'^sys/monkeysphere/(?P[0-9A-Fa-f:]+)/import/$',
+ views.import_key, name='import'),
url(r'^sys/monkeysphere/(?P[0-9A-Fa-f]+)/details/$',
views.details, name='details'),
url(r'^sys/monkeysphere/(?P[0-9A-Fa-f]+)/publish/$',
diff --git a/plinth/modules/monkeysphere/views.py b/plinth/modules/monkeysphere/views.py
index a2a43f18f..d74899919 100644
--- a/plinth/modules/monkeysphere/views.py
+++ b/plinth/modules/monkeysphere/views.py
@@ -47,58 +47,27 @@ def index(request):
@require_POST
-def generate(request, domain):
- """Generate OpenPGP key for SSH service."""
- valid_domain = any((domain in domains
- for domains in names.domains.values()))
- if valid_domain:
- try:
- actions.superuser_run(
- 'monkeysphere', ['host-import-ssh-key', domain])
- messages.success(request, _('Generated OpenPGP key.'))
- except actions.ActionError as exception:
- messages.error(request, str(exception))
-
- return redirect(reverse_lazy('monkeysphere:index'))
-
-
-@require_POST
-def generate_snakeoil(request, domain):
- """Generate OpenPGP key for snakeoil certificate."""
- valid_domain = any((domain in domains
- for domains in names.domains.values()))
- if valid_domain:
- try:
- actions.superuser_run(
- 'monkeysphere', ['host-import-snakeoil-key', domain])
- messages.success(request, _('Generated OpenPGP key.'))
- except actions.ActionError as exception:
- messages.error(request, str(exception))
-
- return redirect(reverse_lazy('monkeysphere:index'))
-
-
-@require_POST
-def generate_letsencrypt(request, domain):
- """Generate OpenPGP key for Let's Encrypt certificate."""
- valid_domain = any((domain in domains
- for domains in names.domains.values()))
- if valid_domain:
- try:
- actions.superuser_run(
- 'monkeysphere', ['host-import-letsencrypt-key', domain])
- messages.success(request, _('Generated OpenPGP key.'))
- except actions.ActionError as exception:
- messages.error(request, str(exception))
+def import_key(request, ssh_fingerprint):
+ """Import a key into monkeysphere."""
+ available_domains = [domain
+ for domains in names.domains.values()
+ for domain in domains]
+ try:
+ actions.superuser_run(
+ 'monkeysphere', ['host-import-key', ssh_fingerprint] +
+ available_domains)
+ messages.success(request, _('Imported key.'))
+ except actions.ActionError as exception:
+ messages.error(request, str(exception))
return redirect(reverse_lazy('monkeysphere:index'))
def details(request, fingerprint):
"""Get details for an OpenPGP key."""
- key = get_key(fingerprint)
return TemplateResponse(request, 'monkeysphere_details.html',
- {'title': _('Monkeysphere'), 'key': key})
+ {'title': monkeysphere.title,
+ 'key': get_key(fingerprint)})
@require_POST
@@ -126,61 +95,36 @@ def cancel(request):
def get_status():
"""Get the current status."""
- output = actions.superuser_run('monkeysphere', ['host-show-keys'])
- keys = {}
- https_keys = {}
- for key in json.loads(output)['keys']:
- if key['uid'].startswith('ssh'):
- key['name'] = key['uid'].replace('ssh://', '')
- keys[key['name']] = key
- elif key['uid'].startswith('https'):
- key['name'] = key['uid'].replace('https://', '')
- https_keys[key['name']] = key
+ return {'keys': get_keys()}
- domains = []
- for domains_of_a_type in names.domains.values():
- for domain in domains_of_a_type:
- domains.append({
- 'name': domain,
- 'key': keys.get(domain),
- })
- # XXX: Currently, there's no way to tell if keys in monkeysphere are for
- # snakeoil or letsencrypt certs. If snakeoil cert is imported for a domain,
- # then later that domain is activated for letsencrypt, the snakeoil cert
- # will be shown in the letsencrypt table.
- output = actions.superuser_run('letsencrypt', ['get-status'])
- letsencrypt_domains_all = json.loads(output)['domains']
- letsencrypt_domains = []
- snakeoil_domains = []
- for domains_of_a_type in names.domains.values():
- for domain in domains_of_a_type:
- if domain in letsencrypt_domains_all and \
- letsencrypt_domains_all[domain]['certificate_available']:
- letsencrypt_domains.append({
- 'name': domain,
- 'key': https_keys.get(domain),
- })
- else:
- snakeoil_domains.append({
- 'name': domain,
- 'key': https_keys.get(domain),
- })
+def get_keys(fingerprint=None):
+ """Get keys."""
+ fingerprint = [fingerprint] if fingerprint else []
+ output = actions.superuser_run('monkeysphere',
+ ['host-show-keys'] + fingerprint)
+ keys = json.loads(output)['keys']
- return {'domains': domains,
- 'snakeoil_domains': snakeoil_domains,
- 'letsencrypt_domains': letsencrypt_domains}
+ domains = [domain
+ for domains_of_a_type in names.domains.values()
+ for domain in domains_of_a_type]
+ for key in keys.values():
+ if '*' in key['available_domains']:
+ key['available_domains'] = set(domains)
+ else:
+ key['available_domains'] = set(key['available_domains'])
+
+ if 'imported_domains' in key:
+ key['imported_domains'] = set(key['imported_domains']) \
+ .intersection(key['available_domains'])
+
+ return keys
def get_key(fingerprint):
"""Get key by fingerprint."""
- output = actions.superuser_run('monkeysphere',
- ['host-show-keys', fingerprint])
- if output:
- keys = json.loads(output)['keys']
- return keys[0]
-
- return None
+ keys = get_keys(fingerprint)
+ return list(keys.values())[0] if len(keys) else None
def _collect_publish_result(request):