Elgato_dark/fleet
1
0
Fork 0
mirror of https://github.com/fleetdm/fleet synced 2026-05-24 01:18:42 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 84

Add small improvements to mdm assets tool (#21161)

Browse source 
Hopefully my last MDM setup (until expiration) thanks to this tool.
Adding a few improvements.
This commit is contained in:
Lucas Manuel Rodriguez 2024-08-07 18:36:59 -03:00 committed by GitHub
parent baa799466b
commit e4070e8f75
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 31 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
tools/mdm/assets/main.go
View file

@ -114,6 +114,12 @@ func main() {
log.Fatal("parsing import flags", err)
}
if len(flagKey) > 32 {
// We truncate to 32 bytes because AES-256 requires a 32 byte (256 bit) PK, but some
// infra setups generate keys that are longer than 32 bytes.
flagKey = flagKey[:32]
}
ds := setupDS(flagKey, flagDBUser, flagDBPass, flagDBAddress, flagDBName)
defer ds.Close()
@ -146,14 +152,20 @@ func main() {
log.Fatal("parsing export flags", err)
}
ds := setupDS(flagKey, flagDBUser, flagDBPass, flagDBAddress, flagDBName)
defer ds.Close()
// Check required flags
if flagKey == "" {
log.Fatal("-key flag is required")
}
if len(flagKey) > 32 {
// We truncate to 32 bytes because AES-256 requires a 32 byte (256 bit) PK, but some
// infra setups generate keys that are longer than 32 bytes.
flagKey = flagKey[:32]
}
ds := setupDS(flagKey, flagDBUser, flagDBPass, flagDBAddress, flagDBName)
defer ds.Close()
if flagDir != "" {
if err := os.MkdirAll(flagDir, os.ModePerm); err != nil {
log.Fatal("ensuring directory: ", err)
@ -199,6 +211,22 @@ func main() {
log.Printf("wrote %s in %s", asset.Name, path)
}
flagDir, err = filepath.Abs(flagDir)
if err != nil {
log.Fatalf("abs path: %s", err)
}
fmt.Printf(`You can set the following on your Fleet configuration:
export FLEET_MDM_APPLE_APNS_CERT=%[1]s/apns_cert.crt
export FLEET_MDM_APPLE_APNS_KEY=%[1]s/apns_key.key
export FLEET_MDM_APPLE_SCEP_CERT=%[1]s/ca_cert.crt
export FLEET_MDM_APPLE_SCEP_KEY=%[1]s/ca_key.key
export FLEET_MDM_APPLE_SCEP_CHALLENGE=$(cat %[1]s/scep_challenge)
export FLEET_MDM_APPLE_BM_SERVER_TOKEN=%[1]s/abm_token
export FLEET_MDM_APPLE_BM_CERT=%[1]s/abm_cert.crt
export FLEET_MDM_APPLE_BM_KEY=%[1]s/abm_key.key
`, flagDir)
default:
log.Fatalf("invalid subcommand %s, valid subcommands: import, export", os.Args[1])
}