2014-11-11 17:18:26 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
final class PhabricatorAuthSSHKeyGenerateController
|
|
|
|
|
extends PhabricatorAuthSSHKeyController {
|
|
|
|
|
|
|
|
|
|
public function handleRequest(AphrontRequest $request) {
|
|
|
|
|
$viewer = $this->getViewer();
|
|
|
|
|
|
|
|
|
|
$key = $this->newKeyForObjectPHID($request->getStr('objectPHID'));
|
|
|
|
|
if (!$key) {
|
|
|
|
|
return new Aphront404Response();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$cancel_uri = $key->getObject()->getSSHPublicKeyManagementURI($viewer);
|
|
|
|
|
|
|
|
|
|
$token = id(new PhabricatorAuthSessionEngine())->requireHighSecuritySession(
|
|
|
|
|
$viewer,
|
|
|
|
|
$request,
|
|
|
|
|
$cancel_uri);
|
|
|
|
|
|
|
|
|
|
if ($request->isFormPost()) {
|
2014-11-21 02:33:30 +01:00
|
|
|
$default_name = $key->getObject()->getSSHKeyDefaultName();
|
|
|
|
|
|
2014-11-11 17:18:26 +01:00
|
|
|
$keys = PhabricatorSSHKeyGenerator::generateKeypair();
|
|
|
|
|
list($public_key, $private_key) = $keys;
|
|
|
|
|
|
|
|
|
|
$file = PhabricatorFile::buildFromFileDataOrHash(
|
|
|
|
|
$private_key,
|
|
|
|
|
array(
|
2014-11-21 02:33:30 +01:00
|
|
|
'name' => $default_name.'.key',
|
2014-11-11 17:18:26 +01:00
|
|
|
'ttl' => time() + (60 * 10),
|
|
|
|
|
'viewPolicy' => $viewer->getPHID(),
|
|
|
|
|
));
|
|
|
|
|
|
|
|
|
|
$public_key = PhabricatorAuthSSHPublicKey::newFromRawKey($public_key);
|
|
|
|
|
|
|
|
|
|
$type = $public_key->getType();
|
|
|
|
|
$body = $public_key->getBody();
|
|
|
|
|
|
|
|
|
|
$key
|
2014-11-21 02:33:30 +01:00
|
|
|
->setName($default_name)
|
2014-11-11 17:18:26 +01:00
|
|
|
->setKeyType($type)
|
|
|
|
|
->setKeyBody($body)
|
|
|
|
|
->setKeyComment(pht('Generated'))
|
|
|
|
|
->save();
|
|
|
|
|
|
|
|
|
|
// NOTE: We're disabling workflow on submit so the download works. We're
|
|
|
|
|
// disabling workflow on cancel so the page reloads, showing the new
|
|
|
|
|
// key.
|
|
|
|
|
|
|
|
|
|
return $this->newDialog()
|
|
|
|
|
->setTitle(pht('Download Private Key'))
|
|
|
|
|
->setDisableWorkflowOnCancel(true)
|
|
|
|
|
->setDisableWorkflowOnSubmit(true)
|
|
|
|
|
->setSubmitURI($file->getDownloadURI())
|
|
|
|
|
->appendParagraph(
|
|
|
|
|
pht(
|
|
|
|
|
'A keypair has been generated, and the public key has been '.
|
|
|
|
|
'added as a recognized key. Use the button below to download '.
|
|
|
|
|
'the private key.'))
|
|
|
|
|
->appendParagraph(
|
|
|
|
|
pht(
|
|
|
|
|
'After you download the private key, it will be destroyed. '.
|
|
|
|
|
'You will not be able to retrieve it if you lose your copy.'))
|
|
|
|
|
->addSubmitButton(pht('Download Private Key'))
|
|
|
|
|
->addCancelButton($cancel_uri, pht('Done'));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
PhabricatorSSHKeyGenerator::assertCanGenerateKeypair();
|
|
|
|
|
|
|
|
|
|
return $this->newDialog()
|
|
|
|
|
->setTitle(pht('Generate New Keypair'))
|
|
|
|
|
->addHiddenInput('objectPHID', $key->getObject()->getPHID())
|
|
|
|
|
->appendParagraph(
|
|
|
|
|
pht(
|
|
|
|
|
'This workflow will generate a new SSH keypair, add the public '.
|
|
|
|
|
'key, and let you download the private key.'))
|
|
|
|
|
->appendParagraph(
|
|
|
|
|
pht(
|
|
|
|
|
'Phabricator will not retain a copy of the private key.'))
|
|
|
|
|
->addSubmitButton(pht('Generate New Keypair'))
|
|
|
|
|
->addCancelButton($cancel_uri);
|
|
|
|
|
} catch (Exception $ex) {
|
|
|
|
|
return $this->newDialog()
|
|
|
|
|
->setTitle(pht('Unable to Generate Keys'))
|
|
|
|
|
->appendParagraph($ex->getMessage())
|
|
|
|
|
->addCancelButton($cancel_uri);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
