codekasten/CryptoBottle/CryptoBottle.py

#!/usr/bin/python
""" CryptoBottle - minimalistic webfrontend for cryptsetup

    prepare your Debian/squeeze:
        aptitude install python-bottle cryptsetup
        modprobe dm_crypt
    set all variables before the first run & create "mntpoint"   
    run this script as root
"""
from bottle import route, run, post, request, template, debug, TEMPLATES, static_file
from subprocess import Popen, PIPE
from os.path import join

serverport = 83
cryptcmd = "/sbin/cryptsetup"
mntcmd = "/bin/mount"
umntcmd = "/bin/umount"
cryptdevice = "/dev/vdc1"
mapperpath = "/dev/mapper/"
mappername = "vdc1"
mntpoint = "/mnt"

@route('/style/default.css')
def server_static():
        return static_file('default.css', root='/data/cryptobottle-dev/style')

@route('/')
def index():
    output = {'passwd':'Datenhafen oeffnen'}
    return template('generic', output=output)

@route('/status')
def cryptstatus():
    shell = Popen([cryptcmd, "status", mappername], stdout=PIPE, stderr=PIPE)
    (cryptsetup, err) = shell.communicate()
    if err:
        return template('generic', output= {'cryptsetup':err})
    if len(cryptsetup) == 0:
        cryptsetup = '"%s%s" is not mapped' % (mapperpath, mappername)

    shell = Popen(["df", "-h"], stdout=PIPE)
    (df, err) = shell.communicate()
    if err:
        return template('generic', output= {'df':err})
    status = '' 
    shell = Popen(["lsof", mntpoint], stdout=PIPE)
    lsof = shell.communicate()[0]
    output = {'cryptsetup': cryptsetup, 'df': df, 'lsof': lsof}
    return template('generic', output=output )

@route('/cryptopen', method='POST')
def cryptopen():
    cryptpw = request.forms.get('passwd')
    mount = ''
    if len(cryptpw) == 0:
        cryptsetup = 'kein Passwort angegeben' 
    else:
        shell = Popen([cryptcmd, "luksOpen", cryptdevice, mappername], stdin=PIPE, stdout=PIPE,stderr=PIPE)
        (cryptsetup, err) = shell.communicate(cryptpw)
        if err:
            cryptsetup = err
        elif len(cryptsetup) == 0:
            cryptsetup = 'erfolgreich entschluesselt'
            shell = Popen([mntcmd, join(mapperpath, mappername), mntpoint], stdout=PIPE,stderr=PIPE)
            (mount, mount_err) = shell.communicate()
            if mount_err:
                mount = mount_err
            elif len(mount) == 0:
                mount = 'erfolgreich eingehangen'

    output = {'cryptsetup': cryptsetup, 'mount': mount}
    return template('generic', output=output )

@route('/cryptclose')
def cryptclose():
    output = {}
    umount = ''
    shell = Popen(["lsof", mntpoint], stdout=PIPE)
    lsof = shell.communicate()[0]
    if lsof:
        lsof += 'Aushaengen nicht moeglich. Verzeichnis wird noch benutzt.' 
        output = {'lsof':lsof}
    else:
        shell = Popen([umntcmd, mntpoint], stdout=PIPE,stderr=PIPE)
        (umount, umount_err) = shell.communicate()
        if umount_err:
            output = {'mount':umount_err}

        elif len(umount) == 0:
            umount = 'erfolgreich ausgehangen'
    #try luksclose in any case
    shell = Popen([cryptcmd, "luksClose", mappername], stdout=PIPE,stderr=PIPE)
    (cryptsetup, err) = shell.communicate()
    if len(err) != 0:
        cryptsetup += err
    if len(cryptsetup) == 0:
        cryptsetup = 'erfolgreich verschluesselt'
    output = {'mount':umount, 'cryptsetup': cryptsetup}
    return template('generic', output=output)

debug(True)
run(host='', port=serverport, reloader=True)
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`#!/usr/bin/python`
			`""" CryptoBottle - minimalistic webfrontend for cryptsetup`

			`prepare your Debian/squeeze:`
			`aptitude install python-bottle cryptsetup`
			`modprobe dm_crypt`
			`set all variables before the first run & create "mntpoint"`
			`run this script as root`
			`"""`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`from bottle import route, run, post, request, template, debug, TEMPLATES, static_file`
Lars' Anmerkungen eingepflegt 2012-07-20 10:22:08 +02:00			`from subprocess import Popen, PIPE`
			`from os.path import join`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`serverport = 83`
			`cryptcmd = "/sbin/cryptsetup"`
			`mntcmd = "/bin/mount"`
			`umntcmd = "/bin/umount"`
			`cryptdevice = "/dev/vdc1"`
			`mapperpath = "/dev/mapper/"`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`mappername = "vdc1"`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`mntpoint = "/mnt"`

nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`@route('/style/default.css')`
			`def server_static():`
			`return static_file('default.css', root='/data/cryptobottle-dev/style')`

CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`@route('/')`
			`def index():`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`output = {'passwd':'Datenhafen oeffnen'}`
			`return template('generic', output=output)`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`@route('/status')`
			`def cryptstatus():`
			`shell = Popen([cryptcmd, "status", mappername], stdout=PIPE, stderr=PIPE)`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`(cryptsetup, err) = shell.communicate()`
Lars' Anmerkungen eingepflegt 2012-07-20 10:22:08 +02:00			`if err:`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`return template('generic', output= {'cryptsetup':err})`
			`if len(cryptsetup) == 0:`
			`cryptsetup = '"%s%s" is not mapped' % (mapperpath, mappername)`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`shell = Popen(["df", "-h"], stdout=PIPE)`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`(df, err) = shell.communicate()`
			`if err:`
			`return template('generic', output= {'df':err})`
			`status = ''`
			`shell = Popen(["lsof", mntpoint], stdout=PIPE)`
			`lsof = shell.communicate()[0]`
			`output = {'cryptsetup': cryptsetup, 'df': df, 'lsof': lsof}`
			`return template('generic', output=output )`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`@route('/cryptopen', method='POST')`
			`def cryptopen():`
			`cryptpw = request.forms.get('passwd')`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`mount = ''`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`if len(cryptpw) == 0:`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`cryptsetup = 'kein Passwort angegeben'`
			`else:`
			`shell = Popen([cryptcmd, "luksOpen", cryptdevice, mappername], stdin=PIPE, stdout=PIPE,stderr=PIPE)`
			`(cryptsetup, err) = shell.communicate(cryptpw)`
			`if err:`
			`cryptsetup = err`
			`elif len(cryptsetup) == 0:`
			`cryptsetup = 'erfolgreich entschluesselt'`
			`shell = Popen([mntcmd, join(mapperpath, mappername), mntpoint], stdout=PIPE,stderr=PIPE)`
			`(mount, mount_err) = shell.communicate()`
			`if mount_err:`
			`mount = mount_err`
			`elif len(mount) == 0:`
			`mount = 'erfolgreich eingehangen'`

			`output = {'cryptsetup': cryptsetup, 'mount': mount}`
			`return template('generic', output=output )`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`@route('/cryptclose')`
			`def cryptclose():`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`output = {}`
			`umount = ''`
Lars' Anmerkungen eingepflegt 2012-07-20 10:22:08 +02:00			`shell = Popen(["lsof", mntpoint], stdout=PIPE)`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`lsof = shell.communicate()[0]`
			`if lsof:`
			`lsof += 'Aushaengen nicht moeglich. Verzeichnis wird noch benutzt.'`
			`output = {'lsof':lsof}`
			`else:`
			`shell = Popen([umntcmd, mntpoint], stdout=PIPE,stderr=PIPE)`
			`(umount, umount_err) = shell.communicate()`
			`if umount_err:`
			`output = {'mount':umount_err}`

			`elif len(umount) == 0:`
			`umount = 'erfolgreich ausgehangen'`
			`#try luksclose in any case`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`shell = Popen([cryptcmd, "luksClose", mappername], stdout=PIPE,stderr=PIPE)`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`(cryptsetup, err) = shell.communicate()`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00			`if len(err) != 0:`
nu doch mit template verstyled 2012-07-21 22:49:48 +02:00			`cryptsetup += err`
			`if len(cryptsetup) == 0:`
			`cryptsetup = 'erfolgreich verschluesselt'`
			`output = {'mount':umount, 'cryptsetup': cryptsetup}`
			`return template('generic', output=output)`
CryptoBox rewrite in 100 Zeilen ;) 2012-07-20 00:22:12 +02:00
			`debug(True)`
			`run(host='', port=serverport, reloader=True)`