seasharp/anvil
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
6a0c9f27df
anvil/tools/anvil-change-password

255 lines
9.8 KiB
Plaintext
Raw Normal View History

* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
#!/usr/bin/perl
#
# This program sets/changes passwords on the Anvil! platform (nodes and dashboards).
#
# Exit codes;
# 0 = Normal exit.
# 1 = The program is not running as root.
# 2 = Failed to connect to database(s).
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
# 3 = User didn't enter a password or the passwords didn't match.
# 4 = The password file doesn't exist, wasn't readable or was empty.
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
#
use strict;
use warnings;
use Data::Dumper;
use Anvil::Tools;
my $THIS_FILE = ($0 =~ /^.*\/(.*)$/)[0];
my $running_directory = ($0 =~ /^(.*?)\/$THIS_FILE$/)[0];
if (($running_directory =~ /^\./) && ($ENV{PWD}))
{
$running_directory =~ s/^\./$ENV{PWD}/;
}
# Turn off buffering so that the pinwheel will display while waiting for the SSH call(s) to complete.
$| = 1;
# Prevent a discrepency between UID/GID and EUID/EGID from throwing an error.
$< = $>;
$( = $);
* Improved infinite loop handling in Log->entry, but broke the Striker UI in the process. To be fixed next... * Added a 'test' parameter to Log->entry, Storage->make_directory and Words->key to help debug in places that Log->x may not be usable. * Converted many $anvil->Log->x calls to print if $test to help prevent recursive loops, but not all fixed yet. * Added the new 'host_keys' database table to the schema for a possible new feature of removing passwords in favour if machines adding peers' public keys to their authorized_hosts file. * Cleaned up the opening calls to $anvil->Tools->new() in most tools. * Cleaned up some variables in tools/anvil-update-states after reading their values from files (clean trailing newlines). Signed-off-by: Digimer <digimer@alteeve.ca>
2019-01-18 08:19:36 +00:00
my $anvil = Anvil::Tools->new();
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
# Make sure we're running as 'root'
# $< == real UID, $> == effective UID
if (($< != 0) && ($> != 0))
{
# Not root
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "error_0005"});
* Fixed a bug where $anvil->nice_exit() was being passed 'exit' instead of 'exit_code' as a parameter. * Update striker manifest run to add an entry into the 'anvils' table, and pass the anvil_uuid to the jobs rather than the various host_uuid's. * Fixed a bug in the 'anvils' SQL procedure that copied data into the history schema (a few columns were missing). * Updated anvil-configure-host to reboot when finished to be certain network changes have taken effect. Also updated the handling of virsh bridges to delete the autostart symlinks if libvirtd daemon isn't running. * Added some logic to anvil-daemon to call 'anvil-update-states' with the -v{1,3} flag depending on the active debug level. Signed-off-by: Digimer <digimer@alteeve.ca>
2020-06-24 04:39:56 +00:00
$anvil->nice_exit({exit_code => 1});
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
}
* Adds the anvil-boot-server man page. Signed-off-by: Digimer <digimer@alteeve.ca>
2022-08-02 23:09:57 +00:00
$anvil->Get->switches({list => ["anvil", "new-password", "password-file", "y", "yes"], man => $THIS_FILE});
$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, list => $anvil->data->{switches}});
* Cleaned up a lot of logging in anvil-daemon and tools it calls. * Deleted anvil-jobs as it never ended up being used. Signed-off-by: Digimer <digimer@alteeve.ca>
2021-02-08 18:39:34 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 3, secure => 0, key => "log_0115", variables => { program => $THIS_FILE }});
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
# Connect
* Fixed a bug where setting the debug level to 3 caused a deep recursion and a system hang. * Update Anvil::Tools->new() to access the parameters 'log_level', 'log_secure' and 'debug', streamlining the frequent calls to $anvil->Log->level and ->secure in program startup, and allowing the values to take effect during the ->new constructor. * Passed 'debug' to child method calls in more places (still more to do though). * Fixed a bug where 'test_table' wasn't set in the right place, causing the database to try to initialize repeatedly. * Made Database->archive_database only run if called with root access. * Now the number of database connections are stored in 'sys::db_connections' instead of checking the returned number, and that is cleared on disconnect. * Started working more on 'anvil-daemon', including adding support for System->call being taking 'background', 'stderr_file' and 'stdout_file' paramters which, when set, used Proc::Simple to background the process. * Did some more work on database archiving, though still far from done. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-08-01 06:06:16 +00:00
$anvil->Database->connect();
* Finished the initial version of tools/anvil-update-system. * Updated the RPM to .13 to disable postun's disabling of postgres, which breaks Anvil! software using the database during RPM updates. * Fixed a logging bug where the number of DB connections was not inserting the number properly. * Fixed exits in tools/anvil-prep-database. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-08-14 07:45:36 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 2, secure => 0, key => "log_0132"});
* Updated Database->_test_access() to use the DBD 'ping' method, and attempt a reconnect of failure. * Updated Database->connect to take a specific UUID to attempt a connection to. * Renamed some old 'sys::x' variables related to the database to 'sys::database::x' to conform better to coding standards. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-08-15 20:57:57 +00:00
if (not $anvil->data->{sys}{database}{connections})
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
{
# No databases, exit.
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "error_0003"});
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
$anvil->nice_exit({exit_code => 2});
}
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
# The order that we pick up the new password is;
# 1. If we've been told of a password file, read it
# 2. If the user passed the password with --new-password <secret>, use that.
# 3. Ask the user for the new password.
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
if ($anvil->data->{switches}{'password-file'})
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
{
# Read the password in from the file.
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, secure => 0, list => { "switches::password-file" => $anvil->data->{switches}{'password-file'} }});
if (-e $anvil->data->{switches}{'password-file'})
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
{
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
# Read it in and remove the new-line(s), if it(they) exist.
$anvil->data->{switches}{'new-password'} = $anvil->Storage->read_file({file => $anvil->data->{switches}{'password-file'}});
$anvil->data->{switches}{'new-password'} =~ s/\n//gs;
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
else
{
# The file doesn't exist.
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "error_0008", variables => { file => $anvil->data->{switches}{'password-file'} }});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
$anvil->nice_exit({exit_code => 4});
}
}
elsif (not $anvil->data->{switches}{'new-password'})
{
print $anvil->Words->string({key => "message_0018"})."\n";
# Turn off echo
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->System->stty_echo({set => "off"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
my $password1 = <STDIN>;
chomp($password1);
$password1 =~ s/^\s+//;
$password1 =~ s/\s+$//;
# Turn echo on
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->System->stty_echo({set => "on"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
if (not $password1)
{
print $anvil->Words->string({key => "error_0006"})."\n";
* Fixed a bug where $anvil->nice_exit() was being passed 'exit' instead of 'exit_code' as a parameter. * Update striker manifest run to add an entry into the 'anvils' table, and pass the anvil_uuid to the jobs rather than the various host_uuid's. * Fixed a bug in the 'anvils' SQL procedure that copied data into the history schema (a few columns were missing). * Updated anvil-configure-host to reboot when finished to be certain network changes have taken effect. Also updated the handling of virsh bridges to delete the autostart symlinks if libvirtd daemon isn't running. * Added some logic to anvil-daemon to call 'anvil-update-states' with the -v{1,3} flag depending on the active debug level. Signed-off-by: Digimer <digimer@alteeve.ca>
2020-06-24 04:39:56 +00:00
$anvil->nice_exit({exit_code => 3});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
print $anvil->Words->string({key => "message_0019"})."\n";
# Turn off echo
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->System->stty_echo({set => "off"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
my $password2 = <STDIN>;
chomp($password2);
$password2 =~ s/^\s+//;
$password2 =~ s/\s+$//;
# Turn echo on
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->System->stty_echo({set => "on"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
if ($password1 eq $password2)
{
$anvil->data->{switches}{'new-password'} = $password1;
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, secure => 1, list => { "switches::new-password" => $anvil->data->{switches}{'new-password'} }});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
else
{
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "error_0007"});
* Fixed a bug where $anvil->nice_exit() was being passed 'exit' instead of 'exit_code' as a parameter. * Update striker manifest run to add an entry into the 'anvils' table, and pass the anvil_uuid to the jobs rather than the various host_uuid's. * Fixed a bug in the 'anvils' SQL procedure that copied data into the history schema (a few columns were missing). * Updated anvil-configure-host to reboot when finished to be certain network changes have taken effect. Also updated the handling of virsh bridges to delete the autostart symlinks if libvirtd daemon isn't running. * Added some logic to anvil-daemon to call 'anvil-update-states' with the -v{1,3} flag depending on the active debug level. Signed-off-by: Digimer <digimer@alteeve.ca>
2020-06-24 04:39:56 +00:00
$anvil->nice_exit({exit_code => 3});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
}
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
### TODO: Check for access to all known Anvil! nodes and warn the user that they will have to manually update
### the password for us on any node we can't access
### NOTE: 'anvil' can be a name or UUID
# If we're called without an '--anvil' switch, then change the local password only.
if ($anvil->data->{switches}{anvil})
{
# Find the Anvil! and verify access to both nodes. If neither are accessible, abort.
}
else
{
### TODO: Support '--peers' to also update the peer dashboards.
# Updating just ourself
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
$anvil->Log->variables({source => $THIS_FILE, line => __LINE__, level => 2, secure => 1, list => { "switches::new-password" => $anvil->data->{switches}{'new-password'} }});
if (($anvil->data->{switches}{y}) or ($anvil->data->{switches}{yes}))
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
{
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, secure => 0, key => "message_0023"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
update_local_passwords($anvil);
}
else
{
* Fixed a couple bugs to get System->change_shell_user_password() working. * Made logging between journald and a traditional file configurable via 'sys::log_file'. Also made the file handle unbuffered when logging to a file. * Fixed a bug with loading the anvil.conf config file in a few locations. * Created System->stty_echo() to handle enabling/disabling shell echo, and added restoring the echo to Tools->catch_sig. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-26 16:41:03 +00:00
print $anvil->Words->string({key => "message_0020"})."\n";
print $anvil->Words->string({key => "message_0021"})." ";
my $answer = <STDIN>;
chomp($answer);
if ($answer =~ /^y/)
{
update_local_passwords($anvil);
}
else
{
# Abort.
print $anvil->Words->string({key => "message_0022"})."\n";
}
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
}
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "log_0750"});
* Fixed a bug where $anvil->nice_exit() was being passed 'exit' instead of 'exit_code' as a parameter. * Update striker manifest run to add an entry into the 'anvils' table, and pass the anvil_uuid to the jobs rather than the various host_uuid's. * Fixed a bug in the 'anvils' SQL procedure that copied data into the history schema (a few columns were missing). * Updated anvil-configure-host to reboot when finished to be certain network changes have taken effect. Also updated the handling of virsh bridges to delete the autostart symlinks if libvirtd daemon isn't running. * Added some logic to anvil-daemon to call 'anvil-update-states' with the -v{1,3} flag depending on the active debug level. Signed-off-by: Digimer <digimer@alteeve.ca>
2020-06-24 04:39:56 +00:00
$anvil->nice_exit({exit_code => 0});
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
#############################################################################################################
# Functions #
#############################################################################################################
# This updates the local passwords.
sub update_local_passwords
{
my ($anvil) = @_;
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
# Update the 'admin' user password in the database.
my $user = "admin";
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0024", variables => { user => $user }});
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
my $user_uuid = $anvil->Database->insert_or_update_users({
debug => 2,
user_name => $user,
user_password_hash => $anvil->data->{switches}{'new-password'},
user_is_admin => 1,
user_is_experienced => 1,
user_is_trusted => 1,
});
* Started working on moving user sessions to the new 'sessions' table. This is still a work in progress. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-09-17 19:34:43 +00:00
# Log out any Striker sessions.
* Finished adding the 'sessions' database table and associated code. * Added a check to all 'Database->insert_or_update_*' methods to check if the passed-in reference UUID was found and return an empty string if not. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-09-21 17:49:28 +00:00
$anvil->Account->logout({host_uuid => "all"});
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0025"});
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
# Validate
my $valid = $anvil->Account->validate_password({
debug => 2,
user => $user,
password => $anvil->data->{switches}{'new-password'},
});
### NOTE: We directly connect to the local 'template1' database as
# Update the database passwords
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
my $host_uuid = $anvil->data->{sys}{host_uuid};
my $old_password = $anvil->data->{database}{$host_uuid}{password};
my $dbh = DBI->connect("DBI:Pg:dbname=template1;host=localhost;port=5432", "postgres", $old_password, {
RaiseError => 1,
AutoCommit => 1,
pg_enable_utf8 => 1
});
my $query = "SELECT a.datname, b.usename FROM pg_catalog.pg_database a, pg_catalog.pg_user b WHERE a.datdba = b.usesysid AND a.datistemplate IS NOT TRUE AND a.datname != 'postgres'";
my $DBreq = $dbh->prepare($query) or $anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 0, priority => "err", key => "log_0075", variables => {
query => $query,
server => "localhost",
db_error => $DBI::errstr,
}});
# Execute on the query
$DBreq->execute() or $anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 0, priority => "err", key => "log_0076", variables => {
query => $query,
server => "localhost",
db_error => $DBI::errstr,
}});
# Return the array
my $results = $DBreq->fetchall_arrayref();
my $database_name = $results->[0]->[0];
my $owner_name = $results->[0]->[1];
foreach my $user ("postgres", $owner_name)
{
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0026", variables => { user => $user }});
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
my $query = "ALTER ROLE ".$user." WITH PASSWORD ".$dbh->quote($anvil->data->{switches}{'new-password'});
$dbh->do($query) or $anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 0, priority => "err", key => "log_0090", variables => {
* Created Log->is_secure() to more cleanly handle conditional logging of strings with passwords or passwords directly. Updated log entries that could benefit from this method to use it. * Cleaned up the striker->add_sync_peer() function to more clearly differentiate the ssh port from the pgsql port. * Improved the HTML form to not have the browser treat host login fields as credentials to autofill or save. Signed-off-by: Digimer <digimer@alteeve.ca>
2019-09-09 02:54:47 +00:00
query => $anvil->Log->is_secure($query),
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
server => "localhost",
db_error => $DBI::errstr,
}});
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0025"});
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
}
# Update our database password in anvil.conf
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0027", variables => { file => $anvil->data->{switches}{'new-password'} }});
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
$anvil->Storage->update_config({
debug => 2,
secure => 1,
variable => "database::${host_uuid}::password",
value => $anvil->data->{switches}{'new-password'},
});
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0025"});
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
### TODO: Loop through any other dashboards and nodes we know about and call the above with 'target'
### (and password, port and remote_user) set.
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
# Update the local users.
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
foreach my $user ("admin", "root")
{
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0028", variables => { user => $user }});
* Created Storage->update_config that will update a variable in anvil.conf (locally or remotely). * Finished (for now) tools/anvil-change-password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-21 07:11:47 +00:00
$anvil->System->change_shell_user_password({debug => 2, user => $user, new_password => $anvil->data->{switches}{'new-password'}});
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0025"});
* Created the new Remote module, and in it, moved System->remote_call to Remote->call() and created the new add_target_to_known_hosts() method (and two private helper methods). These are adapted from the m2 code. * Updated Storage->read_file and Storage->write_file to support reading and writing on remote systems (untested though) * Created System->change_shell_user_password() that changes a shell user's password by manually generating an sha512 salted hash of the given password and uses the resulting hash to modify the target user's password, so the password should never be visible in the process list. Works on both local and remote systems, though it still needs testing. * Created Storage->rsync() to handle moving files between the local and a remote system. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-23 02:16:10 +00:00
}
* Created System->change_apache_password() to update (and enable) Striker's apache user. For now, it simply enables it in httpd.conf, it doesn't actually set/update the password. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-10 05:41:45 +00:00
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
# All done!
More logging to debug apparent hang * Added an explicit 'sync' call when writing to logs. TO BE REMOVED! * Disabled anvil-monitor-daemons and anvil-monitor-performance in case this is somehow trigging program exits. * Converted prints to Log->entry calls in anvil-change-password * Added PID state info logging for running jobs. Signed-off-by: digimer <mkelly@alteeve.ca>
2024-05-29 17:40:57 +00:00
$anvil->Log->entry({source => $THIS_FILE, line => __LINE__, level => 1, 'print' => 1, key => "message_0029"});
* Updated Log->variables to add dots when printing a variable/value pair per line so that variables line up vertically. * Renamed tools/anvil-configure-network to tools/anvil-configure-striker given that it will also now update system passwords. * Started working on tools/anvil-update-states to properly handle a Striker with already-configured networking. * Cleaned up tools/anvil-change-password. * Fixed a bug in Storage->update_config to set the ownership of anvil.conf to 'apache:apache' so that the web server can read it. Signed-off-by: Digimer <digimer@alteeve.ca>
2018-05-22 02:02:45 +00:00
* Updated the database components to use the name 'anvil' and the user 'admin'. The 'database::x::user' and 'database::x::name' variables are still supported, but now hidden. * Fixed a bug where some '$anvil->{}' variables should have been '$anvil->data->{}'. * Started merging message keys on 'error_xxxx', 'warning_xxxx', etc. * The anvil-configure-network now configures the network. Commented out, the tool can reconfigure the entire network without a reboot, but a current issue with the post-configured system refusing to use the allocated interface as the default gateway is to be reviewed at a future time. For now, a closing reboot will be issued. * Started creating 'anvil-change-password' that will update passwords, including apache (and configure .htpasswd when needed). Signed-off-by: Digimer <digimer@alteeve.ca>
2018-04-13 23:55:34 +00:00
return(0);
}
Reference in New Issue Copy Permalink