我的新问题是在java中请求sudo权限的执行bash shell脚本。我想要做什么我使用命令行将ds-389数据库导出为ldif格式,这是使用ns-slapd db2ldif命令完成的。这是我的主要用于执行此操作的java简单代码:
ProcessBuilder p = new ProcessBuilder("/bin/bash", "example.sh");
final Process process = p.start();
其中example.sh位于项目目录中,访问它没有问题。我还添加脚本权限以使用chmod 777执行以确保。 Example.sh只有这个:
#!/bin/bash
ns-slapd db2ldif -D /etc/dirsrv/slapd-localhost -n userRoot -s "ou=Group,dc=localdomain" -a /tmp/file.ldif
到目前为止我尝试添加visudo这一行:
nobody ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
myUSER ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
root ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
bin ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
myUSER ALL = NOPASSWD: /usr/bin/java
root ALL= NOPASSWD: /usr/bin/java
nobody ALL= NOPASSWD: /usr/bin/java
bin ALL= NOPASSWD: /usr/bin/java
但没有结果..是的,这个更改允许我执行example.sh而不询问密码,但是在命令行中。当我从java尝试这个时,它不起作用,并且/ tmp中没有创建的file.ldif。欢迎各方面的帮助。 谢谢你的时间:))
答案 0 :(得分:0)
尝试使用sudo -S -p
。
其他方式我使用位于JSch
的{{1}}类。
我们的想法是将jsch-0.1.38.jar
输入从控制台重定向到java代码。
SudoExec课程
sudo
SSHObserverItf界面
public abstract class SudoExec {
private String mHost;
private static String passwd;
private SSHObserverItf mObserver = null;
protected boolean isForceStop = false;
protected boolean isAsIs = false;
protected Timer mTimer = null;
//default constructor
public SudoExec(String hostName,String userName,String password){
setHost(userName+"@"+hostName);
setPassword(password);
}
public void init(int timeToWait) {
mTimer = new Timer();
new Thread(){
public void run(){
execCMD();
}
}.start();
mTimer.doWait(timeToWait);
isForceStop = true;
}
private void execCMD (){
isForceStop = false;
try{
JSch jsch=new JSch();
String host=getHost();
String user=host.substring(0, host.indexOf('@'));
host=host.substring(host.indexOf('@')+1);
Session session=jsch.getSession(user, host, 22);
// username and password will be given via UserInfo interface.
UserInfo ui=new MyUserInfo();
session.setUserInfo(ui);
session.connect();
String command=getCmd();
Channel channel=session.openChannel("exec");
((ChannelExec)channel).setPty(true);
if(isAsIs == true){
((ChannelExec)channel).setCommand(command);
}
else{
((ChannelExec)channel).setCommand("sudo -S -p '' " + command);
}
InputStream in=channel.getInputStream();
OutputStream out=channel.getOutputStream();
((ChannelExec)channel).setErrStream(System.err);
channel.connect();
out.write((passwd+"\n").getBytes());
out.flush();
byte[] tmp=new byte[1024];
while(true && isForceStop == false){
while(in.available()>0 ){
int i=in.read(tmp, 0, 1024);
if(i<0)break;
mObserver.onResponse((new String(tmp, 0, i)));
}
if(channel.isClosed()){
mObserver.onResponse("exit-status: "+channel.getExitStatus());
mTimer.doNotify();
break;
}
try{Thread.sleep(100);}catch(Exception ee){}
}
mObserver.onResponse("close channel ... ");
channel.disconnect();
mObserver.onResponse("close session ... ");
session.disconnect();
}
catch(Exception e){
System.out.println(e);
mObserver.onErrorResponse(e.getMessage());
}
}
public static class MyUserInfo implements UserInfo, UIKeyboardInteractive{
public String getPassword(){
return passwd;
}
public boolean promptYesNo(String str){
return true;
}
public String getPassphrase(){ return null; }
public boolean promptPassphrase(String message){ return true; }
public boolean promptPassword(String message){
return true;
}
public void showMessage(String message){
}
@Override
public String[] promptKeyboardInteractive(String arg0, String arg1,
String arg2, String[] arg3, boolean[] arg4) {
return null;
}
}
public void setPassword(String password){
passwd=password;
}
public void setHost(String hostname){
mHost=hostname;
}
public String getPassword(){
return passwd;
}
public String getHost(){
return mHost;
}
protected abstract String getCmd();
public void setObserver(SSHObserverItf observer) {
mObserver = observer;
}
}
<强> SomeTask 强>
public interface SSHObserverItf {
public void onResponse(String line);
public void onErrorResponse(String line);
}
public class SomeTask extends SudoExec implements SSHObserverItf{
private static String command = "";
private static String hostname = "";
private static String user = "";
private static String pass = "";
private static Boolean isError=false;
private static String wait = "300";
static public void main(String args[]) throws IOException, ParseException, NoSuchFieldException, SecurityException, IllegalArgumentException, IllegalAccessException {
new SomeTask(hostname,user,pass);
if (isError == true){
System.out.println("Test failed");
}
else{
System.out.println("\nSucceeded to invoke command : " + command);
}
}
public CopyPeriodMergeToExternal(String hostName, String userName, String password) throws IOException, ParseException {
super(hostName, userName, password);
SSHObserverItf observer = this;
super.setObserver(observer);
super.init(Integer.parseInt(wait) * 1000);
}
@Override
protected String getCmd() {
isAsIs = true;
command="rm -f somescript.sh";
System.out.println("Run followed command : " + command);
return command;
}
@Override
public void onResponse(String line) {
System.out.println(line);
}
@Override
public void onErrorResponse(String line) {
System.out.println(line);
System.out.println("Error has occured");
isError = true;
}
}
课程的主要部分是:
SudoExec
希望它能解决你的问题
答案 1 :(得分:0)
我用评论线解决问题
默认requiretty
使用visudo。