149 lines
4.2 KiB
Bash
149 lines
4.2 KiB
Bash
wx-login() {
|
|
echo -n "$wxItalic"
|
|
echo " >> Login << "
|
|
echo -n "$wxNormal";
|
|
echo "------------------------------"
|
|
|
|
ORG=$2
|
|
|
|
if [[ -z "$HOSTNAME" || ${#HOSTNAME} -lt 5 ]]; then
|
|
wx-stop
|
|
fi
|
|
|
|
if [[ $(hostname -d) == "devices.waren.io" ]]
|
|
then
|
|
ORG=warengroup
|
|
elif [[ $(hostname -d) == "devices.cwinfo.net" ]]
|
|
then
|
|
ORG=cwinfo
|
|
elif [[ $(hostname -d) == "devices.christerwaren.fi" ]]
|
|
then
|
|
ORG=cwchristerw
|
|
elif [[ -z $ORG ]]
|
|
then
|
|
echo "Organization: Required"
|
|
wx-stop
|
|
fi
|
|
|
|
if [[ $ORG == "warengroup" ]]
|
|
then
|
|
DOMAIN=waren.io
|
|
elif [[ $ORG == "cwinfo" ]]
|
|
then
|
|
DOMAIN=cwinfo.net
|
|
elif [[ $ORG == "cwchristerw" ]]
|
|
then
|
|
DOMAIN=christerwaren.fi
|
|
else
|
|
echo "Organization: Unsupported"
|
|
wx-stop
|
|
fi
|
|
|
|
FOLDER=$ORG
|
|
DEVICE_DOMAIN="devices.$DOMAIN"
|
|
IDM_DOMAIN="idm.cwinfo.net"
|
|
VAULT_DOMAIN="vault.cwinfo.net"
|
|
GIT_DOMAIN="git.cwinfo.net"
|
|
|
|
if [[ $(hostname -d) ]]
|
|
then
|
|
HOSTNAME=$(hostname --fqdn)
|
|
elif [[ -z $(hostname -d) ]] && [[ ! -z $2 ]]
|
|
then
|
|
HOSTNAME="$2.$DEVICE_DOMAIN"
|
|
else
|
|
echo "Hostname: Required"
|
|
wx-stop
|
|
fi
|
|
|
|
if [[ -z $USER ]]
|
|
then
|
|
if [[ -z $SUDO_USER ]]
|
|
then
|
|
if [[ -z LOGNAME ]]
|
|
then
|
|
echo "Username: Required"
|
|
wx-stop
|
|
else
|
|
USER=$LOGNAME
|
|
fi
|
|
else
|
|
USER=$SUDO_USER
|
|
fi
|
|
fi
|
|
|
|
VAULT_STATUS=$(curl -s -o /dev/null -w "%{http_code}" https://$VAULT_DOMAIN/v1/sys/health)
|
|
if [[ $VAULT_STATUS -eq 200 ]]
|
|
then
|
|
IDM_STATUS=$(curl -s -o /dev/null -w "%{http_code}" https://$IDM_DOMAIN)
|
|
if [[ $IDM_STATUS -eq 301 ]]
|
|
then
|
|
echo "Organization: $ORG"
|
|
if [[ -z $USER || $USER == "root" || $USER == "local" ]]
|
|
then
|
|
echo -n "Username: "
|
|
read USERNAME
|
|
else
|
|
echo "Username: $USER"
|
|
USERNAME=$USER
|
|
fi
|
|
|
|
echo -n "Password: "
|
|
read -s PASSWORD
|
|
echo "****************"
|
|
VAULT_LOGIN=$(curl https://$VAULT_DOMAIN/v1/auth/ldap/login/$USERNAME -X POST -d '{ "password": "'$PASSWORD'" }' -s | jq -r '.auth.client_token')
|
|
if [[ -z $VAULT_LOGIN || ${#VAULT_LOGIN} -lt 95 || ${#VAULT_LOGIN} -gt 95 ]]; then
|
|
echo "Status: Login Failed"
|
|
wx-stop
|
|
fi
|
|
echo ""
|
|
wx-start
|
|
else
|
|
echo "Organization: $ORG"
|
|
echo "Status: IDM Offline"
|
|
wx-stop
|
|
fi
|
|
else
|
|
echo "Organization: $ORG"
|
|
echo "Status: Vault Offline"
|
|
wx-stop
|
|
fi
|
|
|
|
|
|
|
|
# VAULT_STATUS=$(curl -s -o /dev/null -w "%{http_code}" https://vault.$DOMAIN/v1/sys/health)
|
|
# if [[ $VAULT_STATUS -eq 200 ]]; then
|
|
# export VAULT_ADDR="https://vault.$DOMAIN"
|
|
# VAULT_LOGIN=$(vault token lookup -address=https://vault.$DOMAIN 2> /dev/null)
|
|
# if [[ -z $VAULT_LOGIN ]]; then
|
|
# IDM_STATUS=$(curl -s -o /dev/null -w "%{http_code}" https://idm.$DOMAIN)
|
|
# if [[ $IDM_STATUS -eq 301 ]]; then
|
|
# echo "vault.$DOMAIN - Login"
|
|
# echo "Username: $USER"
|
|
# echo -n "Password: "
|
|
# export VAULT_ADDR="https://vault.$DOMAIN"
|
|
# VAULT_LOGIN=$(vault login -address=https://vault.$DOMAIN -method=ldap username=$USER 2> /dev/null)
|
|
# echo ""
|
|
# if [[ -z $VAULT_LOGIN ]]; then
|
|
# wx-stop
|
|
# fi
|
|
# else
|
|
# echo "vault.$DOMAIN - Login"
|
|
# echo -n "Token: "
|
|
# export VAULT_ADDR="https://vault.$DOMAIN"
|
|
# VAULT_LOGIN=$(vault login -address=https://vault.$DOMAIN -method=token 2> /dev/null)
|
|
# echo ""
|
|
# if [[ -z $VAULT_LOGIN || ${#VAULT_TOKEN} -lt 95 || ${#VAULT_TOKEN} -gt 95 ]]; then
|
|
# wx-stop
|
|
# fi
|
|
# fi
|
|
# fi
|
|
# fi
|
|
|
|
|
|
# if [[ $USER == "root" || $USER == "local" ]]
|
|
# then
|
|
# echo "Status: Login Failed"
|
|
# fi
|
|
}
|