diff options
| author | Ross Nicoll <jrn@jrn.me.uk> | 2014-12-19 17:23:24 +0000 |
|---|---|---|
| committer | Ross Nicoll <jrn@jrn.me.uk> | 2015-01-14 17:00:34 +0000 |
| commit | 64f4f8fc84fd8fc27f0e9e316a2c4c2500c7134f (patch) | |
| tree | 52ea57272b9dfd18d8a21b33a42be2627c661d37 /apps/files_external/controller | |
| parent | c8fa85451c2481b6afb438f41f12144b2929d320 (diff) | |
| download | nextcloud-server-64f4f8fc84fd8fc27f0e9e316a2c4c2500c7134f.tar.gz nextcloud-server-64f4f8fc84fd8fc27f0e9e316a2c4c2500c7134f.zip | |
Add support for SFTP key authentication
Add support for external files accessed via SFTP using public key exchange authentication.
Keys are generated automatically when the configuration is added, or can be regenerated on demand if a key is compromised.
Creation of a new configuration row now triggers focus on that row. This is used to trigger auto-configuration for SFTP keys.
Generated public keys are saved in user's data directory for easy retrieval by an external application.
Add controller for SFTP key generation AJAX
SFTP class initialisation no longer produces a warning if the password field is missing.
Add unit tests for SFTP with key authentication backend
Diffstat (limited to 'apps/files_external/controller')
| -rw-r--r-- | apps/files_external/controller/ajaxcontroller.php | 48 |
1 files changed, 48 insertions, 0 deletions
diff --git a/apps/files_external/controller/ajaxcontroller.php b/apps/files_external/controller/ajaxcontroller.php new file mode 100644 index 00000000000..141fc7817d2 --- /dev/null +++ b/apps/files_external/controller/ajaxcontroller.php @@ -0,0 +1,48 @@ +<?php +/** + * Copyright (c) 2015 University of Edinburgh <Ross.Nicoll@ed.ac.uk> + * This file is licensed under the Affero General Public License version 3 or + * later. + * See the COPYING-README file. + */ + +namespace OCA\Files_External\Controller; + +use OCP\AppFramework\Controller; +use OCP\IRequest; +use OCP\AppFramework\Http\JSONResponse; + +class AjaxController extends Controller { + public function __construct($appName, IRequest $request) { + parent::__construct($appName, $request); + } + + private function generateSshKeys() { + $rsa = new \Crypt_RSA(); + $rsa->setPublicKeyFormat(CRYPT_RSA_PUBLIC_FORMAT_OPENSSH); + $rsa->setPassword(\OC::$server->getConfig()->getSystemValue('secret', '')); + + $key = $rsa->createKey(); + // Replace the placeholder label with a more meaningful one + $key['publicKey'] = str_replace('phpseclib-generated-key', gethostname(), $key['publickey']); + + return $key; + } + + /** + * Generates an SSH public/private key pair. + * + * @NoAdminRequired + */ + public function getSshKeys() { + $key = $this->generateSshKeys(); + return new JSONResponse( + array('data' => array( + 'private_key' => $key['privatekey'], + 'public_key' => $key['publickey'] + ), + 'status' => 'success' + )); + } + +} |