mirror of
https://github.com/saltstack/salt.git
synced 2025-04-17 10:10:20 +00:00
Adding some code to config gate if auth_events are sent
This commit is contained in:
Gareth J. Greenaway
parent
dab4a8cff3
commit
6a28bddcc9
3 changed files with 29 additions and 13 deletions
|
|
@ -1084,6 +1084,9 @@ VALID_OPTS = {
|
|||
|
||||
# Scheduler should be a dictionary
|
||||
'schedule': dict,
|
||||
|
||||
# Wheter to fire auth events
|
||||
'auth_events': bool,
|
||||
}
|
||||
|
||||
# default configurations
|
||||
|
|
@ -1650,6 +1653,7 @@ DEFAULT_MASTER_OPTS = {
|
|||
'require_minion_sign_messages': False,
|
||||
'drop_messages_signature_fail': False,
|
||||
'schedule': {},
|
||||
'auth_events': True,
|
||||
}
|
||||
|
||||
|
||||
|
|
|
|||
|
|
@ -551,8 +551,9 @@ class AsyncAuth(object):
|
|||
self._crypticle = Crypticle(self.opts, creds['aes'])
|
||||
self._authenticate_future.set_result(True) # mark the sign-in as complete
|
||||
# Notify the bus about creds change
|
||||
event = salt.utils.event.get_event(self.opts.get('__role'), opts=self.opts, listen=False)
|
||||
event.fire_event({'key': key, 'creds': creds}, salt.utils.event.tagify(prefix='auth', suffix='creds'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
event = salt.utils.event.get_event(self.opts.get('__role'), opts=self.opts, listen=False)
|
||||
event.fire_event({'key': key, 'creds': creds}, salt.utils.event.tagify(prefix='auth', suffix='creds'))
|
||||
|
||||
@tornado.gen.coroutine
|
||||
def sign_in(self, timeout=60, safe=True, tries=1, channel=None):
|
||||
|
|
|
|||
|
|
@ -201,7 +201,8 @@ class AESReqServerMixin(object):
|
|||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': 'full'}}
|
||||
|
||||
|
|
@ -232,7 +233,8 @@ class AESReqServerMixin(object):
|
|||
eload = {'result': False,
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
|
||||
|
|
@ -252,7 +254,8 @@ class AESReqServerMixin(object):
|
|||
'id': load['id'],
|
||||
'act': 'denied',
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
|
||||
|
|
@ -266,7 +269,8 @@ class AESReqServerMixin(object):
|
|||
eload = {'result': False,
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
|
||||
|
|
@ -297,7 +301,8 @@ class AESReqServerMixin(object):
|
|||
'act': key_act,
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return ret
|
||||
|
||||
elif os.path.isfile(pubfn_pend):
|
||||
|
|
@ -318,7 +323,8 @@ class AESReqServerMixin(object):
|
|||
'act': 'reject',
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return ret
|
||||
|
||||
elif not auto_sign:
|
||||
|
|
@ -341,7 +347,8 @@ class AESReqServerMixin(object):
|
|||
'id': load['id'],
|
||||
'act': 'denied',
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
else:
|
||||
|
|
@ -354,7 +361,8 @@ class AESReqServerMixin(object):
|
|||
'act': 'pend',
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': True}}
|
||||
else:
|
||||
|
|
@ -376,7 +384,8 @@ class AESReqServerMixin(object):
|
|||
eload = {'result': False,
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
else:
|
||||
|
|
@ -388,7 +397,8 @@ class AESReqServerMixin(object):
|
|||
eload = {'result': False,
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return {'enc': 'clear',
|
||||
'load': {'ret': False}}
|
||||
|
||||
|
|
@ -478,5 +488,6 @@ class AESReqServerMixin(object):
|
|||
'act': 'accept',
|
||||
'id': load['id'],
|
||||
'pub': load['pub']}
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
if self.opts.get('auth_events') is True:
|
||||
self.event.fire_event(eload, salt.utils.event.tagify(prefix='auth'))
|
||||
return ret
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue