1
0
Fork 0
mirror of https://github.com/nishiki/manage-password.git synced 2024-11-30 08:53:05 +00:00
mpw/lib/Server.rb
2014-11-16 19:46:21 +01:00

343 lines
8.8 KiB
Ruby

#!/usr/bin/ruby
module MPW
require 'socket'
require 'json'
require 'highline/import'
require 'digest'
require 'logger'
class Server
attr_accessor :error_msg
# Constructor
def initialize
YAML::ENGINE.yamler='syck'
end
# Start the server
def start
server = TCPServer.open(@host, @port)
@log.info("The server is started on #{@host}:#{@port}")
loop do
Thread.start(server.accept) do |client|
@log.info("#{client.peeraddr[3]} is connected")
while true do
msg = get_client_msg(client)
next if not msg
if msg['gpg_key'].nil? or msg['gpg_key'].empty? or msg['password'].nil? or msg['password'].empty?
@log.warning("#{client.peeraddr[3]} is disconnected because no password or no gpg_key")
close_connection(client)
next
end
case msg['action']
when 'get'
@log.debug("#{client.peeraddr[3]} GET gpg_key=#{msg['gpg_key']} suffix=#{msg['suffix']}")
client.puts get_file(msg)
when 'update'
@log.debug("#{client.peeraddr[3]} UPDATE gpg_key=#{msg['gpg_key']} suffix=#{msg['suffix']}")
client.puts update_file(msg)
when 'delete'
@log.debug("#{client.peeraddr[3]} DELETE gpg_key=#{msg['gpg_key']} suffix=#{msg['suffix']}")
client.puts delete_file(msg)
else
@log.warning("#{client.peeraddr[3]} is disconnected because unkwnow command")
send_msg = {action: 'unknown',
gpg_key: msg['gpg_key'],
error: 'server.error.client.unknown'
}
client.puts send_msg
close_connection(client)
end
end
end
end
rescue Exception => e
puts "Impossible to start the server: #{e}"
@log.error("Impossible to start the server: #{e}")
exit 2
end
# Get a gpg file
# @args: msg -> message puts by the client
# @rtrn: json message
def get_file(msg)
gpg_key = msg['gpg_key'].sub('@', '_')
if msg['suffix'].nil? or msg['suffix'].empty?
file_gpg = "#{@data_dir}/#{gpg_key}.yml"
else
file_gpg = "#{@data_dir}/#{gpg_key}-#{msg['suffix']}.yml"
end
if File.exist?(file_gpg)
gpg_data = YAML::load_file(file_gpg)
salt = gpg_data['gpg']['salt']
hash = gpg_data['gpg']['hash']
data = gpg_data['gpg']['data']
if is_authorized?(msg['password'], salt, hash)
send_msg = {action: 'get',
gpg_key: msg['gpg_key'],
data: data,
error: nil
}
else
send_msg = {action: 'get',
gpg_key: msg['gpg_key'],
error: 'server.error.client.no_authorized'
}
end
else
send_msg = {action: 'get',
gpg_key: msg['gpg_key'],
data: '',
error: nil
}
end
return send_msg.to_json
end
# Update a file
# @args: msg -> message puts by the client
# @rtrn: json message
def update_file(msg)
gpg_key = msg['gpg_key'].sub('@', '_')
data = msg['data']
if data.nil? or data.empty?
send_msg = {action: 'update',
gpg_key: msg['gpg_key'],
error: 'server.error.client.no_data'
}
return send_msg.to_json
end
if msg['suffix'].nil? or msg['suffix'].empty?
file_gpg = "#{@data_dir}/#{gpg_key}.yml"
else
file_gpg = "#{@data_dir}/#{gpg_key}-#{msg['suffix']}.yml"
end
if File.exist?(file_gpg)
gpg_data = YAML::load_file(file_gpg)
salt = gpg_data['gpg']['salt']
hash = gpg_data['gpg']['hash']
else
salt = generate_salt
hash = Digest::SHA256.hexdigest(salt + msg['password'])
end
if is_authorized?(msg['password'], salt, hash)
begin
config = {'gpg' => {'salt' => salt,
'hash' => hash,
'data' => data
}
}
File.open(file_gpg, 'w+') do |file|
file << config.to_yaml
end
send_msg = {action: 'update',
gpg_key: msg['gpg_key'],
error: nil
}
rescue Exception => e
send_msg = {action: 'update',
gpg_key: msg['gpg_key'],
error: 'server.error.client.unknown'
}
end
else
send_msg = {action: 'update',
gpg_key: msg['gpg_key'],
error: 'server.error.client.no_authorized'
}
end
return send_msg.to_json
end
# Remove a gpg file
# @args: msg -> message puts by the client
# @rtrn: json message
def delete_file(msg)
gpg_key = msg['gpg_key'].sub('@', '_')
if msg['suffix'].nil? or msg['suffix'].empty?
file_gpg = "#{@data_dir}/#{gpg_key}.yml"
else
file_gpg = "#{@data_dir}/#{gpg_key}-#{msg['suffix']}.yml"
end
if not File.exist?(file_gpg)
send_msg = {:action => 'delete',
:gpg_key => msg['gpg_key'],
:error => nil
}
return send_msg.to_json
end
gpg_data = YAML::load_file(file_gpg)
salt = gpg_data['gpg']['salt']
hash = gpg_data['gpg']['hash']
if is_authorized?(msg['password'], salt, hash)
begin
File.unlink(file_gpg)
send_msg = {action: 'delete',
gpg_key: msg['gpg_key'],
error: nil
}
rescue Exception => e
send_msg = {action: 'delete',
gpg_key: msg['gpg_key'],
error: 'server.error.client.unknown'
}
end
else
send_msg = {action: 'delete',
gpg_key: msg['gpg_key'],
error: 'server.error.client.no_authorized'
}
end
return send_msg.to_json
end
# Check is the hash equal the password with the salt
# @args: password -> the user password
# salt -> the salt
# hash -> the hash of the password with the salt
# @rtrn: true is is good, else false
def is_authorized?(password, salt, hash)
if hash == Digest::SHA256.hexdigest(salt + password)
return true
else
return false
end
end
# Get message to client
# @args: client -> client connection
# @rtrn: array of the json string, or false if isn't json message
def get_client_msg(client)
msg = client.gets
return JSON.parse(msg)
rescue
closeConnection(client)
return false
end
# Close the client connection
# @args: client -> client connection
def close_connection(client)
client.puts "Closing the connection. Bye!"
client.close
end
# Check the config file
# @args: file_config -> the configuration file
# @rtrn: true if the config file is correct
def checkconfig(file_config)
config = YAML::load_file(file_config)
@host = config['config']['host']
@port = config['config']['port'].to_i
@data_dir = config['config']['data_dir']
@log_file = config['config']['log_file']
@timeout = config['config']['timeout'].to_i
if @host.empty? or @port <= 0 or @data_dir.empty?
puts I18n.t('checkconfig.fail')
puts I18n.t('checkconfig.empty')
return false
end
if not Dir.exist?(@data_dir)
puts I18n.t('checkconfig.fail')
puts I18n.t('checkconfig.datadir')
return false
end
if @log_file.nil? or @log_file.empty?
puts I18n.t('checkconfig.fail')
puts I18n.t('checkconfig.log_file_empty')
return false
else
begin
@log = Logger.new(@log_file)
rescue
puts I18n.t('checkconfig.fail')
puts I18n.t('checkconfig.log_file_create')
return false
end
end
return true
rescue Exception => e
puts "#{I18n.t('checkconfig.fail')}\n#{e}"
return false
end
# Create a new config file
# @args: file_config -> the configuration file
# @rtrn: true if le config file is create
def setup(file_config)
puts I18n.t('form.setup.title')
puts '--------------------'
host = ask(I18n.t('form.setup.host')).to_s
port = ask(I18n.t('form.setup.port')).to_s
data_dir = ask(I18n.t('form.setup.data_dir')).to_s
log_file = ask(I18n.t('form.setup.log_file')).to_s
timeout = ask(I18n.t('form.setup.timeout')).to_s
config = {'config' => {'host' => host,
'port' => port,
'data_dir' => data_dir,
'log_file' => log_file,
'timeout' => timeout
}
}
File.open(file_config, 'w') do |file|
file << config.to_yaml
end
return true
rescue Exception => e
puts "#{I18n.t('form.setup.not_valid')}\n#{e}"
return false
end
# Generate a random salt
# @args: length -> the length salt
# @rtrn: a random string
def generate_salt(length=4)
if length.to_i <= 0 or length.to_i > 16
length = 4
else
length = length.to_i
end
return ([*('A'..'Z'),*('a'..'z'),*('0'..'9')]).sample(length).join
end
end
end