UnixSshScript.java

/*******************************************************************************
 * Copyright (c) 2012-2017 Codenvy, S.A.
 * All rights reserved. This program and the accompanying materials
 * are made available under the terms of the Eclipse Public License v1.0
 * which accompanies this distribution, and is available at
 * http://www.eclipse.org/legal/epl-v10.html
 *
 * Contributors:
 *   Codenvy, S.A. - initial API and implementation
 *******************************************************************************/
package org.eclipse.che.plugin.ssh.key.script;

import org.eclipse.che.api.core.ServerException;

import java.io.File;
import java.io.IOException;
import java.nio.file.Files;
import java.nio.file.attribute.PosixFilePermission;
import java.util.EnumSet;
import java.util.Set;

import static java.nio.file.attribute.PosixFilePermission.OWNER_READ;
import static java.nio.file.attribute.PosixFilePermission.OWNER_WRITE;

/**
 * Implementation of script that provide ssh connection on Unix
 *
 * @author Anton Korneta
 * @author Alexander Andrienko
 */
public class UnixSshScript extends SshScript {

    public UnixSshScript(String host, byte[] sshKey) throws ServerException {
        super(host, sshKey);
    }

    @Override
    protected String getSshKeyFileName() {
        return "ssh_script";
    }

    @Override
    protected String getSshScriptTemplate() {
        return "exec ssh -o IdentitiesOnly=yes -o StrictHostKeyChecking=no -o UserKnownHostsFile=/dev/null -i \"$ssh_key\" $@";
    }

    @Override
    protected void protectPrivateKeyFile(File sshKey) throws ServerException {
        try {
            //set permission to -rw-------
            Set<PosixFilePermission> permissions = EnumSet.of(OWNER_READ, OWNER_WRITE);
            Files.setPosixFilePermissions(sshKey.toPath(), permissions);
        } catch (IOException e) {
            throw new ServerException("Failed to set file permissions");
        }
    }
}