Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Simpler way to share SSH keys from non-Linux hosts #103

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Simpler way to share SSH keys from non-Linux hosts #103

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
303c519
Document how to share SSH keys from non-Linux hosts
simonbru Jul 22, 2021
a9ba7b2
Fix loading of environment config
simonbru Jul 22, 2021
04ebd9c
Prompt for SSH passphrase when necessary
simonbru Jul 22, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion {{cookiecutter.project_slug}}/Dockerfile
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ ENV PATH="$VIRTUAL_ENV/bin:$PATH"
RUN set -x; \
groupadd -g $GROUP_ID app && \
useradd --create-home -u $USER_ID -g app -s /bin/bash app && \
install -o app -g app -d /code "$VIRTUAL_ENV"
install -o app -g app -d /code "$VIRTUAL_ENV" /home/app/.ssh
USER app
RUN python -m venv "$VIRTUAL_ENV"
WORKDIR /code
Expand Down
5 changes: 4 additions & 1 deletion {{cookiecutter.project_slug}}/docker-compose.override.example.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@
# ports:
# - 127.0.0.1:8025:8025

# PONTSUN CONFIGURATION
# EXTENDED CONFIGURATION (pontsun, SSH access)
# ~~~~~~~~~~~~~~~~~~~~~
#
# Set up pontsun (https://github.com/liip/pontsun) and start it. Then visit
Expand All @@ -48,6 +48,9 @@
# SSH_AUTH_SOCK: /ssh-agent
# volumes:
# - $SSH_AUTH_SOCK:/ssh-agent
# # SSH agent forwarding only works with Linux hosts
# # On Windows and macOS, you have to mount the private key directly:
# # - ~/.ssh/id_rsa:/home/app/.ssh/id_rsa
# build:
# args:
# <<: *x-build-args
Expand Down
24 changes: 19 additions & 5 deletions {{cookiecutter.project_slug}}/fabfile.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
import functools
import getpass
import inspect
import os
import random
Expand All @@ -12,6 +13,7 @@
from fabric.connection import Connection
from invoke import Exit
from invoke.exceptions import UnexpectedExit
from paramiko.ssh_exception import PasswordRequiredException

ENVIRONMENTS = {
"prod": {
Expand Down Expand Up @@ -62,9 +64,19 @@ def ensure_absolute_path(path):

class CustomConnection(Connection):
"""
Add helpers function on Connection
Add helpers function on Connection.
Also automatically prompt for password on connection (when necessary).
"""

def open(self):
try:
super().open()
except PasswordRequiredException:
# Prompt for passphrase and try again
prompt = "Enter passphrase for unlocking SSH keys: "
self.connect_kwargs["passphrase"] = getpass.getpass(prompt)
super().open()

@property
def site_root(self):
return self.config.root
Expand Down Expand Up @@ -552,10 +564,12 @@ def load_environment(ctx):
conf["environment"] = name
# So now conf is the ENVIRONMENTS[env] dict plus "environment" pointing to the name
# Push them in the context config dict
ctx.config.load_overrides(conf)
# Add the common_settings in there
ctx.conn = CustomConnection(host=conf["host"], inline_ssh_env=True)
ctx.conn.config.load_overrides(conf)
ctx.config.update(conf)
# Create a connection for this environment,
# sharing most of the configuration with the root context
ctx.conn = CustomConnection(
config=ctx.config.clone(), host=conf["host"], inline_ssh_env=True
)

load_environment.__doc__ = (
"""Prepare connection and load config for %s environment""" % name
Expand Down