Merge pull request #3010 from actiontech/support_ssh_key

support generate, store and get ssh key

Author: winfredLIN

sqle/api/app.go

@@ -492,6 +492,8 @@ func StartApi(net *gracenet.Net, exitChan chan struct{}, config *config.SqleOpti
 		v1Router.GET("/configurations/drivers", v1.GetDrivers)
 		v2Router.GET("/configurations/drivers", v2.GetDrivers)
 		v1Router.GET("/configurations/workflows/schedule/default_option", v1.GetScheduledTaskDefaultOptionV1)
+		v1Router.GET("/configurations/ssh_key", v1.GetSSHPublicKey, sqleMiddleware.ViewGlobalAllowed())
+		v1Router.POST("/configurations/ssh_key", v1.GenSSHKey, sqleMiddleware.OpGlobalAllowed())
 
 		// audit plan
 		v1Router.GET("/audit_plan_metas", v1.GetAuditPlanMetas)

sqle/api/controller/v1/configuration.go

@@ -1,18 +1,22 @@
 package v1
 
 import (
+	"crypto/rsa"
+	"fmt"
+	"net/http"
+	"strconv"
+
 	"github.com/actiontech/sqle/sqle/utils"
 	"github.com/go-git/go-git/v5/plumbing"
 	"github.com/go-git/go-git/v5/plumbing/storer"
-	"net/http"
-	"strconv"
 
 	"github.com/actiontech/sqle/sqle/api/controller"
 	"github.com/actiontech/sqle/sqle/driver"
 
 	"github.com/actiontech/sqle/sqle/model"
 
 	"github.com/labstack/echo/v4"
+	"golang.org/x/crypto/ssh"
 )
 
 type GetDingTalkConfigurationResV1 struct {
@@ -538,3 +542,94 @@ type ScheduledTaskDefaultOptionV1Rsp struct {
 func GetScheduledTaskDefaultOptionV1(c echo.Context) error {
 	return getScheduledTaskDefaultOptionV1(c)
 }
+
+type SSHPublicKeyInfoV1Rsp struct {
+	controller.BaseRes
+	Data SSHPublicKeyInfo `json:"data"`
+}
+
+type SSHPublicKeyInfo struct {
+	PublicKey string `json:"public_key"`
+}
+
+// GetSSHPublicKey
+// @Summary 获取SSH公钥
+// @Description get ssh public key
+// @Tags configuration
+// @Id getSSHPublicKey
+// @Security ApiKeyAuth
+// @Success 200 {object} v1.SSHPublicKeyInfo
+// @Router /v1/configurations/ssh_key [get]
+func GetSSHPublicKey(c echo.Context) error {
+	storage := model.GetStorage()
+	systemVariables, exists, err := storage.GetSystemVariableByKey(model.SystemVariableSSHPrimaryKey)
+	if err != nil {
+		c.Logger().Errorf("failed to get ssh public key: %v", err)
+		return controller.JSONBaseErrorReq(c, err)
+	}
+	privateKey, err := ssh.ParseRawPrivateKey([]byte(systemVariables.Value))
+	if err != nil {
+		c.Logger().Errorf("failed to parse SSH private key: %v", err)
+		return controller.JSONBaseErrorReq(c, err)
+	}
+	rsaPrivateKey, ok := privateKey.(*rsa.PrivateKey)
+	if !ok {
+		return controller.JSONBaseErrorReq(c, fmt.Errorf("private key is not an RSA key"))
+	}
+	publicKeyStr, err := utils.GeneratePublicKeyFromPrivateKey(rsaPrivateKey)
+	if err != nil {
+		return controller.JSONBaseErrorReq(c, err)
+	}
+
+	return c.JSON(http.StatusOK,
+		SSHPublicKeyInfoV1Rsp{
+			Data: SSHPublicKeyInfo{
+				PublicKey: func() string {
+					if !exists {
+						return ""
+					}
+					return publicKeyStr
+				}(),
+			},
+		})
+}
+
+// GenSSHKey
+// @Summary 生成SSH密钥对
+// @Description gen ssh key
+// @Tags configuration
+// @Id genSSHPublicKey
+// @Security ApiKeyAuth
+// @Success 200 {object} controller.BaseRes
+// @Router /v1/configurations/ssh_key [post]
+func GenSSHKey(c echo.Context) error {
+	storage := model.GetStorage()
+	_, exists, err := storage.GetSystemVariableByKey(model.SystemVariableSSHPrimaryKey)
+	if err != nil {
+		return controller.JSONBaseErrorReq(c, err)
+	}
+
+	// 如果已存在密钥，则不重新生成
+	if exists {
+		return controller.JSONBaseErrorReq(c, nil)
+	}
+
+	// 生成新的SSH密钥对
+	primaryKey, _, err := utils.GenerateSSHKeyPair()
+	if err != nil {
+		return controller.JSONBaseErrorReq(c, err)
+	}
+
+	// 保存密钥到系统变量
+	err = storage.PathSaveSystemVariables([]model.SystemVariable{
+		{
+			Key:   model.SystemVariableSSHPrimaryKey,
+			Value: primaryKey,
+		},
+	})
+	if err != nil {
+		return controller.JSONBaseErrorReq(c, err)
+	}
+
+	return controller.JSONBaseErrorReq(c, nil)
+}

sqle/docs/docs.go

@@ -628,6 +628,50 @@ var doc = `{
                 }
             }
         },
+        "/v1/configurations/ssh_key": {
+            "get": {
+                "security": [
+                    {
+                        "ApiKeyAuth": []
+                    }
+                ],
+                "description": "get ssh public key",
+                "tags": [
+                    "configuration"
+                ],
+                "summary": "获取SSH公钥",
+                "operationId": "getSSHPublicKey",
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/v1.SSHPublicKeyInfo"
+                        }
+                    }
+                }
+            },
+            "post": {
+                "security": [
+                    {
+                        "ApiKeyAuth": []
+                    }
+                ],
+                "description": "gen ssh key",
+                "tags": [
+                    "configuration"
+                ],
+                "summary": "生成SSH密钥对",
+                "operationId": "genSSHPublicKey",
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/controller.BaseRes"
+                        }
+                    }
+                }
+            }
+        },
         "/v1/configurations/system_variables": {
             "get": {
                 "security": [
@@ -18189,6 +18233,14 @@ var doc = `{
                 }
             }
         },
+        "v1.SSHPublicKeyInfo": {
+            "type": "object",
+            "properties": {
+                "public_key": {
+                    "type": "string"
+                }
+            }
+        },
         "v1.ScheduleTaskDefaultOption": {
             "type": "object",
             "properties": {

sqle/docs/swagger.json

@@ -612,6 +612,50 @@
                 }
             }
         },
+        "/v1/configurations/ssh_key": {
+            "get": {
+                "security": [
+                    {
+                        "ApiKeyAuth": []
+                    }
+                ],
+                "description": "get ssh public key",
+                "tags": [
+                    "configuration"
+                ],
+                "summary": "获取SSH公钥",
+                "operationId": "getSSHPublicKey",
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/v1.SSHPublicKeyInfo"
+                        }
+                    }
+                }
+            },
+            "post": {
+                "security": [
+                    {
+                        "ApiKeyAuth": []
+                    }
+                ],
+                "description": "gen ssh key",
+                "tags": [
+                    "configuration"
+                ],
+                "summary": "生成SSH密钥对",
+                "operationId": "genSSHPublicKey",
+                "responses": {
+                    "200": {
+                        "description": "OK",
+                        "schema": {
+                            "$ref": "#/definitions/controller.BaseRes"
+                        }
+                    }
+                }
+            }
+        },
         "/v1/configurations/system_variables": {
             "get": {
                 "security": [
@@ -18173,6 +18217,14 @@
                 }
             }
         },
+        "v1.SSHPublicKeyInfo": {
+            "type": "object",
+            "properties": {
+                "public_key": {
+                    "type": "string"
+                }
+            }
+        },
         "v1.ScheduleTaskDefaultOption": {
             "type": "object",
             "properties": {

sqle/docs/swagger.yaml

@@ -4202,6 +4202,11 @@ definitions:
       sql_statement:
         type: string
     type: object
+  v1.SSHPublicKeyInfo:
+    properties:
+      public_key:
+        type: string
+    type: object
   v1.ScheduleTaskDefaultOption:
     properties:
       default_selector:
@@ -6951,6 +6956,33 @@ paths:
       summary: 获取生成 sqle license需要的的信息
       tags:
       - configuration
+  /v1/configurations/ssh_key:
+    get:
+      description: get ssh public key
+      operationId: getSSHPublicKey
+      responses:
+        "200":
+          description: OK
+          schema:
+            $ref: '#/definitions/v1.SSHPublicKeyInfo'
+      security:
+      - ApiKeyAuth: []
+      summary: 获取SSH公钥
+      tags:
+      - configuration
+    post:
+      description: gen ssh key
+      operationId: genSSHPublicKey
+      responses:
+        "200":
+          description: OK
+          schema:
+            $ref: '#/definitions/controller.BaseRes'
+      security:
+      - ApiKeyAuth: []
+      summary: 生成SSH密钥对
+      tags:
+      - configuration
   /v1/configurations/system_variables:
     get:
       description: get system variables

sqle/model/configuration.go

@@ -18,6 +18,7 @@ const (
 	SystemVariableSqleUrl                     = "system_variable_sqle_url"
 	SystemVariableOperationRecordExpiredHours = "system_variable_operation_record_expired_hours"
 	SystemVariableCbOperationLogsExpiredHours = "system_variable_cb_operation_logs_expired_hours"
+	SystemVariableSSHPrimaryKey               = "system_variable_ssh_primary_key"
 )
 
 const (
@@ -28,7 +29,7 @@ const (
 // SystemVariable store misc K-V.
 type SystemVariable struct {
 	Key   string `gorm:"primary_key"`
-	Value string `gorm:"not null;type:varchar(255)"`
+	Value string `gorm:"not null;type:text"`
 }
 
 func (s *Storage) PathSaveSystemVariables(systemVariables []SystemVariable) error {
@@ -77,6 +78,23 @@ func (s *Storage) GetAllSystemVariables() (map[string]SystemVariable, error) {
 	return sysVariables, nil
 }
 
+// GetSystemVariableByKey retrieves a system variable by its key.
+// Returns the system variable, a boolean indicating if it was found, and any error that occurred.
+func (s *Storage) GetSystemVariableByKey(key string) (SystemVariable, bool, error) {
+	var systemVariable SystemVariable
+
+	err := s.db.Where("`key` = ?", key).First(&systemVariable).Error
+
+	if err == gorm.ErrRecordNotFound {
+		return systemVariable, false, nil
+	}
+	if err != nil {
+		return systemVariable, false, errors.New(errors.ConnectStorageError, err)
+	}
+
+	return systemVariable, true, nil
+}
+
 func (s *Storage) GetSqleUrl() (string, error) {
 	sys, err := s.GetAllSystemVariables()
 	if err != nil {