CVE-2022-4719: Send notification on new SSH Key · ikus060/rdiffweb@bc4bed8

@@ -45,6 +45,7 @@ def start(self): self.bus.log(‘Start Notification plugin’) self.bus.publish('schedule_job’, self.execution_time, self.notification_job) self.bus.subscribe('access_token_added’, self.access_token_added) self.bus.subscribe('authorizedkey_added’, self.authorizedkey_added) self.bus.subscribe('user_attr_changed’, self.user_attr_changed) self.bus.subscribe('user_password_changed’, self.user_password_changed)
@@ -54,6 +55,7 @@ def stop(self): self.bus.log(‘Stop Notification plugin’) self.bus.publish('unschedule_job’, self.notification_job) self.bus.unsubscribe('access_token_added’, self.access_token_added) self.bus.unsubscribe('authorizedkey_added’, self.authorizedkey_added) self.bus.unsubscribe('user_attr_changed’, self.user_attr_changed) self.bus.unsubscribe('user_password_changed’, self.user_password_changed)
@@ -77,6 +79,21 @@ def access_token_added(self, userobj, name): ) self.bus.publish('queue_mail’, to=userobj.email, subject=_(“A new access token has been created”), message=body)
def authorizedkey_added(self, userobj, fingerprint, comment, **kwargs): if not self.send_changed: return
if not userobj.email: logger.info("can’t sent mail to user [%s] without an email", userobj.username) return
# If the email attributes was changed, send a mail notification. body = self.app.templates.compile_template( "email_authorizedkey_added.html", **{"header_name": self.app.cfg.header_name, 'user’: userobj, 'comment’: comment, 'fingerprint’: fingerprint} ) self.bus.publish('queue_mail’, to=userobj.email, subject=_(“A new SSH Key has been added”), message=body)
def user_attr_changed(self, userobj, attrs={}): if not self.send_changed: return