From 86371934d0c6869a2b65bd68e203b24dccab908e Mon Sep 17 00:00:00 2001
From: Luke Shumaker <lukeshu@sbcglobal.net>
Date: Sat, 20 Dec 2014 00:34:57 -0500
Subject: rethink how ssh-list-authorized-keys groups work

---
 bin/ssh-list-authorized-keys | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

(limited to 'bin')

diff --git a/bin/ssh-list-authorized-keys b/bin/ssh-list-authorized-keys
index fc329f2..bb153e1 100755
--- a/bin/ssh-list-authorized-keys
+++ b/bin/ssh-list-authorized-keys
@@ -1,18 +1,23 @@
 #!/usr/bin/env ruby
 # Usage: ssh-list-authorized-keys [username]
-cfg_groups = [ "hackers", "bots" ]
+cfg_groups = [ "repo", "git" ]
 
 ######################################################################
+require 'set'
 require 'yaml'
 
-users = Dir.glob("users/*.yml").map{|f|YAML::load(open(f))}
+all_users = Dir.glob("users/*.yml").map{|f|YAML::load(open(f))}
+users = Set.new
 
-if ARGV[0]
-	users = users.find_all{|u|u["username"] == ARGV[0]}
-else
-	users = users.find_all{|u|u["groups"] and not (u["groups"] & cfg_groups).empty?}
+groupnames = ARGV & cfg_groups
+usernames = ARGV & all_users.map{|u|u["username"]}
+
+unless groupnames.empty?
+	groupnames.push("hackers")
 end
 
+users = all_users.find_all{|u| usernames.include?(u["username"]) or not ((u["groups"]||[]) & groupnames).empty?}
+
 users.each do |user|
 	if user["ssh_keys"]
 		user["ssh_keys"].each do |addr,key|
-- 
cgit v1.2.2