forked from ibuler/jms
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathconnect.py
216 lines (179 loc) · 6.4 KB
/
connect.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
#!/usr/bin/env python
# coding: utf-8
"""
connect.py
~~~~~~~~~~~
This script is the jms endpoint for ssh connect.
User login the server may first running.
1. Use SSH Authentication. So not achieve socket and self authentication method.
2. Use paramiko module as a proxy for your ssh connection
3. Use ...
:copyright: (c) 2016 by Jumpserver Team.
:licence: BSD, see LICENSE for more details.
"""
from __future__ import unicode_literals
import os
import sys
import paramiko
import select
import socket
import time
import datetime
import textwrap
import django
import getpass
os.environ['DJANGO_SETTINGS_MODULE'] = 'jms.settings'
django.setup()
from perms.perm_api import get_user_asset
from users.models import User
from assets.models import Asset
try:
import termios
import tty
except ImportError:
print('\033[1;31m仅支持类Unix系统 Only unix like supported.\033[0m')
time.sleep(3)
sys.exit()
username_login = getpass.getuser()
BASE_DIR = os.path.dirname(os.path.abspath(__file__))
LOG_DIR = os.path.join(BASE_DIR, 'logs')
def color_print(msg, color='red', exit=False):
"""
Print colorful string.
颜色打印字符或者退出
"""
color_msg = {'blue': '\033[1;36m{0}\033[0m',
'green': '\033[1;32m{0}\033[0m',
'yellow': '\033[1;33m{0}\033[0m',
'red': '\033[1;31m{0}\033[0m',
'title': '\033[30;42m{0}\033[0m',
'info': '\033[32m{0}\033[0m'}
msg = color_msg.get(color, 'red').format(msg)
print(msg)
if exit:
time.sleep(2)
sys.exit()
return msg
class TTY:
def __init__(self, host='127.0.0.1', port=22, username='root', password=''):
self.host = host
self.port = port
self.username = username
self.password = password
self.ssh = None
self.chan = None
self.__get_chan()
def __get_chan(self):
"""
使用paramiko模块与后端ssh建立channel
paramiko的channel其实是与后面ssh server建立了一个tcp长连接,输入都会发送到后面的主机上
:return: None
"""
ssh = paramiko.SSHClient()
ssh.set_missing_host_key_policy(paramiko.AutoAddPolicy())
try:
ssh.connect(self.host,
port=self.port,
username=self.username,
password=self.password)
except (paramiko.ssh_exception.AuthenticationException, paramiko.ssh_exception.SSHException):
color_print('连接服务器失败', exit=True)
self.ssh = ssh
self.chan = ssh.invoke_shell(term='xterm')
def __get_log_f(self):
now = datetime.datetime.now()
date_today = now.strftime('%Y%m%d')
time_now = now.strftime('%H%M%S')
log_today_dir = os.path.join(LOG_DIR, date_today)
log_filename = os.path.join(log_today_dir, '{host}-{port}-{username}-{date}{time}.log'.format(
host=self.host, port=self.port, username=self.username, date=date_today, time=time_now,
))
if not os.path.isdir(log_today_dir):
os.mkdir(log_today_dir, mode=0o777)
log_f = open(log_filename, 'a')
return log_f
def posix_shell(self):
log_f = self.__get_log_f()
old_tty = termios.tcgetattr(sys.stdin)
try:
# 设置tty为raw模式, 不再使用已经设置好的tty, tty需要由我们来重新控制
tty.setraw(sys.stdin.fileno())
tty.setcbreak(sys.stdin.fileno())
self.chan.settimeout(0.0)
while True:
try:
r, w, e = select.select([self.chan, sys.stdin], [], [])
except:
pass
if self.chan in r:
try:
recv_data = self.chan.recv(1024).decode('utf8')
if len(recv_data) == 0:
break
sys.stdout.write(recv_data)
sys.stdout.flush()
# 记录输入输出到日志
log_f.write(recv_data)
except socket.timeout:
print('Timeout')
if sys.stdin in r:
x = os.read(sys.stdin.fileno(), 1024)
if len(x) == 0:
break
self.chan.send(x)
finally:
# 最终将原来的tty返回给用户
termios.tcsetattr(sys.stdin, termios.TCSADRAIN, old_tty)
log_f.close()
class TTYNav:
def __init__(self, username=username_login):
self.username = username
@property
def user(self):
try:
user = User.objects.get(username=self.username)
return user
except User.DoesNotExist:
return None
def print_nav(self):
nav_string = """\n\033[1;32m### 欢迎使用JMS开源跳板机系统 ### \033[0m
1) 输入 \033[32mIP\033[0m 登录设备
2) 按 \033[32mp\033[0m 查看有权限的设备
3) 按 \033[32mq\033[0m 退出
"""
if self.user:
print(textwrap.dedent(nav_string))
else:
color_print('没有该用户,默默的退出', exit=True)
@staticmethod
def get_input():
input_ = input('\n请输入: ')
return input_
def print_user_assets(self):
print('%-16s\t%-16s\t%s' % ('Hostname', 'IP', 'User'))
for asset in get_user_asset(self.user):
print('%-16s\t%-16s\t%s' % (asset.hostname, asset.ip, asset.username))
@staticmethod
def connect(ip):
try:
asset = Asset.objects.get(ip=ip)
except Asset.DoesNotExist:
print('输入ip有误请重新输入')
return
print('{0} {1} {2} {3}'.format(asset.ip, asset.port, asset.username, asset.password,))
tty_ = TTY(host=asset.ip, port=asset.port, username=asset.username, password=asset.password)
tty_.posix_shell()
def dispatch(self):
while True:
input_ = self.get_input()
if input_ == 'p':
self.print_user_assets()
continue
elif input_ == 'q':
sys.exit(1)
else:
self.connect(input_)
if __name__ == '__main__':
nav = TTYNav(username=username_login)
nav.print_nav()
nav.dispatch()