106 lines
3.1 KiB
Python
106 lines
3.1 KiB
Python
import requests
|
|
import json
|
|
import argparse
|
|
import sys
|
|
import os
|
|
import urllib3
|
|
from dotenv import load_dotenv
|
|
import io
|
|
|
|
load_dotenv(override=True)
|
|
|
|
def authenticate(base_url):
|
|
"""
|
|
Authenticate with the CUBE API using username, password and certificate.
|
|
Returns the JWT token if successful.
|
|
"""
|
|
auth_url = f"{base_url}/api/auth"
|
|
|
|
username = os.getenv("DEFAULT_CUBE_WEB_ADMIN_USER")
|
|
password = os.getenv("DEFAULT_CUBE_WEB_ADMIN_PASSWORD")
|
|
certificate = os.getenv("DEFAULT_CERTIFICATE").encode("utf-8")
|
|
|
|
# Prepare the multipart form data
|
|
auth_params = {
|
|
"login": username,
|
|
"password": password
|
|
}
|
|
files = {
|
|
"params": (None, json.dumps(auth_params), "application/json"),
|
|
"certificate": ("certificate.pem", certificate, "application/octet-stream")
|
|
}
|
|
|
|
try:
|
|
print(f"Authenticating as {username}...")
|
|
response = requests.post(auth_url, files=files, verify=False)
|
|
response.raise_for_status() # Raise exception for 4XX/5XX responses
|
|
|
|
# Extract token from response
|
|
auth_data = response.json()
|
|
token = auth_data.get("token")
|
|
|
|
if not token:
|
|
print("Error: No token received in authentication response")
|
|
|
|
print("Authentication successful.")
|
|
return token
|
|
|
|
except requests.exceptions.RequestException as e:
|
|
print(f"Authentication failed: {e}")
|
|
if hasattr(e, 'response') and e.response:
|
|
print(f"Response: {e.response.text}")
|
|
raise
|
|
|
|
def set_ssh_status(base_url, token):
|
|
"""
|
|
Set SSH status (enable) using the provided JWT token.
|
|
"""
|
|
ssh_url = f"{base_url}/api/ssh"
|
|
|
|
headers = {
|
|
"Content-Type": "application/json",
|
|
"Authorization": f"Bearer {token}"
|
|
}
|
|
|
|
# Set new SSH status
|
|
payload = { "currentStatus": True }
|
|
|
|
try:
|
|
print(f"Sending request to enable SSH...")
|
|
response = requests.post(ssh_url, headers=headers, json=payload, verify=False)
|
|
response.raise_for_status()
|
|
|
|
print(f"SSH enabled successfully!")
|
|
|
|
return True
|
|
|
|
except requests.exceptions.RequestException as e:
|
|
print(f"SSH activation failed: {e}")
|
|
if hasattr(e, 'response') and e.response:
|
|
print(f"Response: {e.response.text}")
|
|
return False
|
|
|
|
def activate_ssh(ip_address):
|
|
|
|
# Ensure the URL uses HTTPS
|
|
url = ip_address
|
|
if not url.startswith("https://"):
|
|
# Convert http:// to https:// or add https:// if no protocol specified
|
|
if url.startswith("http://"):
|
|
url = "https://" + url[7:]
|
|
print(f"Converting to HTTPS: {url}")
|
|
else:
|
|
url = "https://" + url
|
|
print(f"Adding HTTPS protocol: {url}")
|
|
if not url.endswith(":9080"):
|
|
url = url + ":9080"
|
|
|
|
verify_ssl = False
|
|
if not verify_ssl:
|
|
urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
|
|
|
|
token = authenticate(url)
|
|
if not token:
|
|
return
|
|
|
|
set_ssh_status(url, token) |