Yubikey, Smart Cards, OpenSC and GnuPG are pain in the ass to get working. Those snippets here sould help alleviate pain.
To reset and disable not used modes on Yubikey you need the ykman program
You can install it using those commands
Yiannis d3flex
d3flex
/ results.txt
Created
December 13, 2021 21:22
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ============================= test session starts ============================== | |
| platform linux -- Python 3.8.12, pytest-6.2.5, py-1.11.0, pluggy-1.0.0 -- /home/iob/Envs/pcwenv/bin/python | |
| cachedir: .pytest_cache | |
| django: settings: webui.settings (from ini) | |
| rootdir: /home/iob/suserepos/pcw, configfile: pytest.ini | |
| plugins: django-4.5.1, cov-2.5.0, Faker-9.9.0 | |
| collecting ... collected 3 items | |
| tests/test_gce.py::test_parse_image_name PASSED [ 33%] | |
| tests/test_gce.py::test_cleanup_all PASSED [ 66%] |
d3flex
/ test_gce.py
Created
December 13, 2021 21:04
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from ocw.lib.gce import GCE | |
| from webui.settings import PCWConfig | |
| from tests.generators import min_image_age_hours, max_image_age_hours, gce_max_service_account_age_hours, gce_min_service_account_age_hours | |
| from tests.generators import mock_get_feature_property | |
| from tests import generators | |
| from datetime import datetime, timezone, timedelta | |
| import googleapiclient.discovery | |
| from googleapiclient.http import HttpMock | |
| from googleapiclient.http import HttpMockSequence | |
| from googleapiclient.discovery import build |
d3flex
/ service_account_discovery.json
Created
December 13, 2021 15:09
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {'accounts': [{'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role3-1111@suse-sle-qa.iam.test.com', 'email': 'vaultopenqa-role3-1111@suse-sle-qa.iam.test.com'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role3-2222@suse-sle-qa.iam.test.com', 'email': 'vaultopenqa-role3-2222@suse-sle-qa.iam.test.com'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role3-3333@suse-sle-qa.iam.test.com', 'email': 'vaultopenqa-role3-3333@suse-sle-qa.iam.test.com'}]} |
d3flex
/ iam_accounts.json
Created
December 13, 2021 15:08
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| {'keys': [{'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role-1111@suse-sle-qa.iam.gserviceaccount.com/keys/c718317203fdacf1833db761b45c0a8beb6f7bbd', 'validAfterTime': '2021-12-12T11:25:04.835862+00:00'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role-1111@suse-sle-qa.iam.gserviceaccount.com/keys/c718317203fdacf1833db761b45c0a8beb6f7bbd', 'validAfterTime': '2021-12-12T11:25:04.835862+00:00'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role-1111@suse-sle-qa.iam.gserviceaccount.com/keys/c718317203fdacf1833db761b45c0a8beb6f7bbd', 'validAfterTime': '2021-12-13T08:25:04.835889+00:00'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role-2222@suse-sle-qa.iam.gserviceaccount.com/keys/c718317203fdacf1833db761b45c0a8beb6f7bbd', 'validAfterTime': '2021-12-12T11:25:04.835862+00:00'}, {'name': 'projects/suse-sle-qa/serviceAccounts/vaultopenqa-role-2222@suse-sle-qa.iam.gserviceaccount.com/keys/c718317203fdacf1833db761b45c0a8beb6f7bbd', 'validAfterTime': '2021-12-12 |
d3flex
/ gce_src.py
Created
December 13, 2021 14:13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from .vault import GCECredential | |
| from .provider import Provider, Image | |
| import googleapiclient.discovery | |
| from google.oauth2 import service_account | |
| from dateutil.parser import parse | |
| from .decorators import filterService | |
| from googleapiclient.errors import HttpError | |
| import re | |
d3flex
/ test_gce.py
Created
December 10, 2021 12:51
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| from ocw.lib.gce import GCE | |
| from webui.settings import PCWConfig | |
| from tests.generators import min_image_age_hours, max_image_age_hours, gce_max_service_account_age_hours, gce_min_service_account_age_hours | |
| from tests.generators import mock_get_feature_property | |
| from tests import generators | |
| from datetime import datetime, timezone, timedelta | |
| import googleapiclient.discovery | |
| from googleapiclient.http import HttpMock | |
| from googleapiclient.http import HttpMockSequence | |
| import json |
d3flex
/ gnupg_scdaemon.md
Created
December 7, 2021 08:33
— forked from artizirk/gnupg_scdaemon.md
OpenPGP SSH access with Yubikey and GnuPG
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| export ZYPP_MEDIANETWORK=1 | |
| export ZYPP_SINGLE_RPMTRANS=1 | |
| zypper ref && zypper dup |
d3flex
/ get-image-config.sh
Created
November 3, 2021 18:28
— forked from cirocosta/get-image-config.sh
Retrieves the configuration of images pushed to Docker registries - see https://ops.tips/blog/inspecting-docker-image-without-pull/ for more information
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Retrieves image configuration using | |
| # private registries without authentication | |
| set -o errexit | |
| # Address of the registry that we'll be | |
| # performing the inspections against. | |
| # This is necessary as the arguments we |
d3flex
/ zypper_up_i3_module
Created
March 15, 2021 21:54
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| """ | |
| * name file something like zypper_up.py | |
| * copy into ~/.config/py3status/modules/ | |
| * edit i3status conf file | |
| *Ctl+Shift+r | |
| """ | |
| import subprocess | |
| import re | |