Framework to allow untrusted users to perform privileged system tasks.
Project description
A Python framework to allow untrusted users to perform privileged system tasks.
Overview
Regent comes in two parts:
a service which runs as the privileged system user, defines a set of operations it will perform, and listens for requests on a linux socket file
a client library to ask the service to perform the operations
A service is intended for use with clients on a single host. Alternatively its socket can be mounted within a docker container to control its host or other containers.
The authentication system is designed on the assumption that the unprivileged user is untrusted and can be compromised. For non-harmful operations a basic shared key will deter casual attackers, and for more high-risk commands it supports out-of-channel activation, to allow two-factor authentication or administrator approval.
Example
A service which defines a system command (whoami) and returns its output:
import subprocess
from regent.service import Operation, Service
class WhoAmI(Operation):
def perform(self):
value = subprocess.check_output("whoami")
value = value.strip()
return value
service = Service(
socket_path="/tmp/regent-whoami.sock",
socket_secret="123456",
)
service.register("whoami", WhoAmI)
service.listen()
A client which calls the service:
from regent.client import Client
client = Client(
socket_path="/tmp/regent-whoami.sock",
socket_secret="123456",
)
response = client.request("whoami")
print(response["data"])
More complicated examples can be found in the examples dir, including:
make changes to the firewall
restart the server
Implementation
Testing your service manually
Regent uses human-readable JSON, terminated in a newline. Using socat:
socat - UNIX-CONNECT:/tmp/my-regent.sock
send the following, ending in a UNIX-style newline (\n):
{“secret”: “123456”, “op”: “my-op”}
and you’ll receive your response:
{"error": "something failed"}
Internal messaging API
This is the raw API between the client and service. Knowledge of this will not be required in normal Regent use if you’re using a client.
A connection to the service API should send a JSON object with the following key/values:
secret Socket secret op Operation name data Optional: Data for the operation
The service will return either:
error Error message
or
success True uid Unique ID for this operation request, or null if complete data Data from the operation or pending async auth
JSON objects should be terminated with a newline.
If the original operation requires an asynchronous authentication step, the client should send the following JSON object:
secret Socket secret uid UID for a stored operation request (passed from async auth) data Data for authenticating the auth request
Changelog
0.1.0 - 2022-11-19
First release of Python version rewritten from original Perl
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file regent-0.1.0.tar.gz.
File metadata
- Download URL: regent-0.1.0.tar.gz
- Upload date:
- Size: 10.2 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.10.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 7f5c610a6bdcd0506fe1ef2202d233cd4423fff4569b05525961193b2fe7c79d |
|
| MD5 | d2be2160463fc86ca2c432790baf1bf0 |
|
| BLAKE2b-256 | 05606600c0d65a29b01524060cb53f903571e75f4e67fac62b7b209cdf79b4f4 |
File details
Details for the file regent-0.1.0-py3-none-any.whl.
File metadata
- Download URL: regent-0.1.0-py3-none-any.whl
- Upload date:
- Size: 10.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.10.8
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 27578d3ba8deee18276c2553c2ac7fd016cd4dbaffe1cc3d37caa3708a983f85 |
|
| MD5 | 552927f5dee260759edadc8434d7d14b |
|
| BLAKE2b-256 | 99d8f5673555af6480db3cb2827eea863f0ecb76cc6c80683b53115e9028e261 |
