nik/FreedomBox
1
0
Fork 0
mirror of https://github.com/freedombox/FreedomBox.git synced 2026-01-21 07:55:00 +00:00
Code Issues Packages Projects Releases Wiki Activity
FreedomBox/plinth/modules/ssh/views.py
Sunil Mohan Adapa c20f640641
ssh: Add checkbox to remove login group restrictions 
Tests:

- Disable the checkbox. Non-admin user who is not part freedombox-ssh group
fails to login. Admin user can login.

- Enable the checkbox and both non-admin user and admin user can login via SSH.

Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
Reviewed-by: James Valleroy <jvalleroy@mailbox.org>
2022-12-05 20:47:11 -05:00

65 lines
1.9 KiB
Python
Raw Blame History

# SPDX-License-Identifier: AGPL-3.0-or-later
"""Views for the SSH app."""
from django.contrib import messages
from django.utils.translation import gettext_lazy as _
from plinth.modules import ssh
from plinth.privileged import service as service_privileged
from plinth.views import AppView
from . import privileged
from .forms import SSHServerForm
class SshAppView(AppView):
"""Show ssh app main page."""
app_id = 'ssh'
template_name = 'ssh.html'
form_class = SSHServerForm
def get_context_data(self, *args, **kwargs):
"""Return additional context for rendering the template."""
context = super().get_context_data(**kwargs)
context['host_keys'] = ssh.get_host_keys()
return context
def get_initial(self):
"""Return initial values of the form."""
initial = super().get_initial()
initial.update({
'password_auth_disabled':
not privileged.is_password_authentication_enabled(),
'allow_all':
not privileged.are_users_restricted()
})
return initial
def form_valid(self, form):
"""Apply changes from the form."""
old_config = self.get_initial()
new_config = form.cleaned_data
updated = False
def is_field_changed(field):
return old_config[field] != new_config[field]
passwd_auth_changed = is_field_changed('password_auth_disabled')
if passwd_auth_changed:
privileged.set_password_authentication(
not new_config['password_auth_disabled'])
service_privileged.reload('ssh')
updated = True
if is_field_changed('allow_all'):
privileged.restrict_users(not new_config['allow_all'])
updated = True
if updated:
messages.success(self.request, _('Configuration updated'))
return super().form_valid(form)
Reference in New Issue View Git Blame Copy Permalink