Contextualize SSH user with $USERNAME variable

Make sure to retrieve ${HOME} location from getent.
9 years ago · 0d8ae8d848
parent 731361e752
commit 0d8ae8d848
1 changed files with 19 additions and 1 deletions
--- a/base/etc/one-context.d/02-ssh_public_key
+++ b/base/etc/one-context.d/02-ssh_public_key
@ -16,7 +16,24 @@
 # limitations under the License.                                             #
 #--------------------------------------------------------------------------- #

-AUTH_DIR="/root/.ssh"
+[ -z "${SSH_PUBLIC_KEY}${EC2_PUBLIC_KEY}" ] && exit 0
+
+if [ -z "${USERNAME}" ]
+then
+    USERNAME=root
+fi
+
+# Get user $HOME directory
+USER_HOME=$(getent passwd "${USERNAME}" | awk -F':' '{print $6}')
+
+if [ -n "${USER_HOME}" ]
+then
+    AUTH_DIR="${USER_HOME}/.ssh"
+else
+    # Fallback on root
+    AUTH_DIR="/root/.ssh"
+fi
+
 AUTH_FILE="$AUTH_DIR/authorized_keys"

 function add_keys {
@ -41,4 +58,5 @@ if [ -n "$EC2_PUBLIC_KEY" ]; then
    echo "$EC2_PUBLIC_KEY" | add_keys
 fi

+chown "${USERNAME}": ${AUTH_DIR} ${AUTH_FILE}
 chmod 600 $AUTH_FILE