initial commit

Author: Heliosmaster

.gitignore

@@ -0,0 +1,2 @@
+config.edn
+.idea/

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2020 nextjournal
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,19 @@
+# SSH Auth Github
+
+This is a small [Babashka](https://github.com/borkdude/babashka/) script that retrieves public keys from a specific team under a specific organization on Github.
+
+You need a `config.edn` next to the script with
+
+```clojure
+{:token ""
+ :organization ""
+ :team ""}
+
+```
+
+Keep in mind that the token **must have** the following permissions: `read:org`, `read:user`, `user:email`
+
+
+# Acknowledgements
+
+This library was inspired by the [Rust analogous](https://github.com/dalen/ssh-auth-github)

config.edn.template

@@ -0,0 +1,3 @@
+{:token ""
+ :organization ""
+ :team ""}

ssh-auth-github

@@ -0,0 +1,64 @@
+#! /usr/bin/env bb
+
+(require '[babashka.curl :as curl])
+(require '[cheshire.core :as json])
+
+(defn read-config []
+      (read-string (slurp "config.edn")))
+
+(defn query [organization team]
+      (format "{organization(login: \"%s\") {
+                  team(slug: \"%s\") {
+                    members {
+                      nodes {
+                        login
+                        publicKeys(first: 100) {
+                          nodes {
+                            key
+                          }
+                        }
+                      }
+                    }
+                  }
+                }
+              }"
+              organization team))
+
+
+(defn retrieve-keys [config]
+      (let [resp (curl/post "https://api.github.com/graphql"
+                            {:body    (json/generate-string {"query" (query (:organization config)
+                                                                            (:team config))})
+                             :throw false
+                             :headers {"Authorization" (format "bearer %s" (:token config))}})
+            body (-> resp
+                (:body)
+                (json/parse-string true))]
+
+           (cond
+             (not= 200 (:status resp))
+             (do (clojure.pprint/pprint body)
+                 (System/exit 1))
+
+             (:errors body)
+             (do
+               (clojure.pprint/pprint (:errors body))
+               (System/exit 1))
+
+             :else
+             body)))
+
+
+(defn parse-response [data]
+      (when-not (seq (get-in data [:data :organization :team]))
+                (println "Error: Team is empty!")
+                (System/exit 1))
+      (->> (get-in data [:data :organization :team :members :nodes])
+           (mapcat (fn [n] (map #(str (:key %) " " (:login n))
+                                (get-in n [:publicKeys :nodes])))))
+      )
+
+(doseq [l (->> (read-config)
+               (retrieve-keys)
+               (parse-response))]
+       (println l))