add/remove keys to authorized_keys

3 files changed, 59 insertions, 0 deletions

diff --git a/bin/gitlab-keys b/bin/gitlab-keys
new file mode 100755
index 0000000..6a297c4
--- /dev/null
+++ b/bin/gitlab-keys
@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+#
+# GitLab Keys shell. Add/remove keys from ~/.ssh/authorized_keys
+#
+# Ex.
+#   /bin/gitlab-keys add-key dzaporozhets "ssh-rsa AAAAx321..."
+#
+#
+ROOT_PATH = File.join(File.expand_path(File.dirname(__FILE__)), "..")
+require File.join(ROOT_PATH, 'lib', 'gitlab_keys')
+GitlabKeys.new.exec
+
+exit
diff --git a/config.yml.example b/config.yml.example
index 1bf9834..666121d 100644
--- a/config.yml.example
+++ b/config.yml.example
@@ -1,2 +1,3 @@
 user: git
 repos_path: "/home/git/repositories"
+auth_file: "/home/git/.ssh/authorized_keys"
diff --git a/lib/gitlab_keys.rb b/lib/gitlab_keys.rb
new file mode 100644
index 0000000..7defc45
--- /dev/null
+++ b/lib/gitlab_keys.rb
@@ -0,0 +1,44 @@
+require 'open3'
+require 'yaml'
+
+class GitlabKeys
+  attr_accessor :auth_file, :key, :username
+
+  def initialize
+    @command = ARGV.shift
+    @username = ARGV.shift
+    @key = ARGV.shift
+
+    config = YAML.load_file(File.join(ROOT_PATH, 'config.yml'))
+    @auth_file = config['auth_file']
+  end
+
+  def exec
+    case @command
+    when 'add-key'; add_key
+    when 'rm-key';  rm_key
+    when 'rm-user'; rm_user
+    else
+      puts 'not allowed'
+    end
+  end
+
+  protected
+
+  def add_key
+    cmd = "command=\"#{ROOT_PATH}/bin/gitlab-shell #{@username}\",no-port-forwarding,no-X11-forwarding,no-agent-forwarding,no-pty #{@key}"
+    cmd = "echo \"#{cmd}\" >> #{auth_file}"
+    system(cmd)
+  end
+
+  def rm_key
+    cmd = "sed '/#{@key}/d' #{auth_file}"
+    system(cmd)
+  end
+
+  def rm_user
+    cmd = "sed -i '/#{@username}/d' #{auth_file}"
+    puts cmd
+    system(cmd)
+  end
+end