Page MenuHomePhabricator
Differential D14823

Provide a more straightforward way to revoke SSH keys by finding and destroying the objects
ClosedPublic
Actions

Authored by nickz on Dec 19 2015, 7:20 AM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Dec 11, 1:42 PM
Unknown Object (File)
Fri, Dec 6, 6:36 PM
Unknown Object (File)
Thu, Nov 28, 12:29 AM
Unknown Object (File)
Wed, Nov 27, 8:38 PM
Unknown Object (File)
Tue, Nov 26, 12:34 PM
Unknown Object (File)
Fri, Nov 22, 4:51 AM
Unknown Object (File)
Wed, Nov 20, 9:35 AM
Unknown Object (File)
Nov 15 2024, 6:53 PM
View All Files
Subscribers
Korvin
Tokens
"Piece of Eight" token, awarded by epriestley.

Details

Reviewers
epriestley
Group Reviewers
Blessed Reviewers
Maniphest Tasks
T9967: Provide a more straightforward way to revoke SSH keys by finding and destroying the objects
Commits
Restricted Diffusion Commit
rP8eec9e2c0ef2: Provide a more straightforward way to revoke SSH keys by finding and…
Required Signatures
L28 Phacility Individual Contributor License Agreement
Summary

Ref T9967

Test Plan

Ran migrations.
Verified database populated properly with PHIDs (SELECT * FROM auth_sshkey;).
Ran auth.querypublickeys conduit method to see phids show up
Ran bin/remove destroy <phid>.
Viewed the test key was gone.

Diff Detail

Repository
rP Phabricator
Branch
master
Lint
Lint Passed
Unit
Tests Skipped
Build Status
Buildable 9656
Build 11566: arc lint + arc unit

Event Timeline

nickz updated this revision to Diff 35838.Dec 19 2015, 7:20 AM
nickz retitled this revision from to Provide a more straightforward way to revoke SSH keys by finding and destroying the objects.
nickz updated this object.
nickz edited the test plan for this revision. (Show Details)
nickz added a reviewer: epriestley.
nickz added a task: T9967: Provide a more straightforward way to revoke SSH keys by finding and destroying the objects.
Herald added a reviewer: Blessed Reviewers. · View Herald TranscriptDec 19 2015, 7:20 AM
Herald added a required legal document: L28 Phacility Individual Contributor License Agreement. · View Herald Transcript
Herald added a subscriber: Korvin. · View Herald Transcript
nickz edited the test plan for this revision. (Show Details)Dec 19 2015, 7:20 AM
nickz edited edge metadata.
epriestley requested changes to this revision.Dec 19 2015, 11:37 AM
epriestley edited edge metadata.

This is great, thanks! Couple of minor inlines.

src/applications/auth/phid/PhabricatorAuthSSHKeyPHIDType.php
34–35

SSH keys don't really have any interesting properties (like name or URL), but you could maybe do something like this:

$handle->setName(pht('SSH Key %d', $key->getID()));

For example, I think that will make bin/remove destroy render things a little more cleanly. As-is, it will render something like this:

...
This object will be destroyed forever:

    - PHID-AKEY-irxjvgxviobklieu2677 (PhabricatorAuthSSHKey) Unknown Object (SSH Key)

    Are you absolutely certain you want to destroy this object? [y/N]

...but if you use setName() it should render something a little nicer, more like this:

This object will be destroyed forever:

    - PHID-AKEY-irxjvgxviobklieu2677 (PhabricatorAuthSSHKey) SSH Key 234

    Are you absolutely certain you want to destroy this object? [y/N]
src/applications/auth/storage/PhabricatorAuthSSHKey.php
105

Stray debugging print.

106–110

You don't need to do this, since we're only deleting the object itself (SSH Keys don't have any sub-objects or sub-rows, like Owners do), and the $this->delete() call on line 112 will take care of deleting the object.

So the body should be fine as just this:

$this->openTransaction();
  $this->delete();
$this->saveTransaction();
This revision now requires changes to proceed.Dec 19 2015, 11:37 AM
epriestley awarded a token.Dec 19 2015, 11:37 AM
nickz updated this revision to Diff 35845.Dec 19 2015, 5:44 PM
nickz edited edge metadata.

Updated based on Evan's comments.

nickz marked 2 inline comments as done.Dec 19 2015, 5:45 PM
epriestley accepted this revision.Dec 19 2015, 5:58 PM
epriestley edited edge metadata.

Thanks! I added you to Blessed Committers, so you should be able to land this yourself.

(The project page also has some instructions on how to get access configured, now.)

This revision is now accepted and ready to land.Dec 19 2015, 5:58 PM
Closed by commit rP8eec9e2c0ef2: Provide a more straightforward way to revoke SSH keys by finding and… (authored by nickz, committed by nickz). · Explain WhyDec 19 2015, 7:52 PM
This revision was automatically updated to reflect the committed changes.
nickz added a comment.Dec 19 2015, 7:53 PM
In D14823#168810, @epriestley wrote:

Thanks! I added you to Blessed Committers, so you should be able to land this yourself.

(The project page also has some instructions on how to get access configured, now.)

Thank you! Happy to be a blessed_committer!!!

epriestley mentioned this in T9967: Provide a more straightforward way to revoke SSH keys by finding and destroying the objects.Dec 25 2015, 3:40 PM

Revision Contents
Changeset List

Diff 35838

View Options

resources/sql/autopatches/20151218.key.1.keyphid.sql

Loading...
View Options

resources/sql/autopatches/20151218.key.2.keyphid.php

Loading...
View Options

src/__phutil_library_map__.php

Loading...
View Options

src/applications/auth/conduit/PhabricatorAuthQueryPublicKeysConduitAPIMethod.php

Loading...
View Options

src/applications/auth/phid/PhabricatorAuthSSHKeyPHIDType.php

Loading...
View Options

src/applications/auth/query/PhabricatorAuthSSHKeyQuery.php

Loading...
View Options

src/applications/auth/storage/PhabricatorAuthSSHKey.php

Loading...
Phabricator · Built by Phacility