从java(netbeans)执行需要root权限的bash脚本

时间:2013-09-22 09:32:46

标签: java bash shell

我的新问题是在java中请求sudo权限的执行bash shell脚本。我想要做什么我使用命令行将ds-389数据库导出为ldif格式,这是使用ns-slapd db2ldif命令完成的。这是我的主要用于执行此操作的java简单代码:

ProcessBuilder p = new ProcessBuilder("/bin/bash", "example.sh");
final Process process = p.start();

其中example.sh位于项目目录中,访问它没有问题。我还添加脚本权限以使用chmod 777执行以确保。 Example.sh只有这个:

#!/bin/bash
ns-slapd db2ldif -D /etc/dirsrv/slapd-localhost -n userRoot -s "ou=Group,dc=localdomain" -a /tmp/file.ldif

到目前为止我尝试添加visudo这一行:

nobody ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
myUSER ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd
root ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd 
bin ALL=(ALL) NOPASSWD: /usr/sbin/ns-slapd 
myUSER ALL = NOPASSWD: /usr/bin/java 
root ALL= NOPASSWD: /usr/bin/java 
nobody ALL= NOPASSWD: /usr/bin/java 
bin ALL= NOPASSWD: /usr/bin/java

但没有结果..是的,这个更改允许我执行example.sh而不询问密码,但是在命令行中。当我从java尝试这个时,它不起作用,并且/ tmp中没有创建的file.ldif。欢迎各方面的帮助。 谢谢你的时间:))

2 个答案:

答案 0 :(得分:0)

尝试使用sudo -S -p

其他方式我使用位于JSch的{​​{1}}类。

我们的想法是将jsch-0.1.38.jar输入从控制台重定向到java代码。

SudoExec课程

sudo

SSHObserverItf界面

public abstract class SudoExec {

private String mHost;
private static String passwd;
private SSHObserverItf mObserver = null;
protected boolean isForceStop = false;
protected boolean isAsIs = false;
protected Timer mTimer = null;



//default constructor
public SudoExec(String hostName,String userName,String password){
    setHost(userName+"@"+hostName);
    setPassword(password);
}

public void init(int timeToWait) {

    mTimer = new Timer();


    new Thread(){       
        public  void run(){
            execCMD();
        }           
    }.start();

    mTimer.doWait(timeToWait);

    isForceStop = true;
}


private void execCMD (){

    isForceStop = false;        

    try{
        JSch jsch=new JSch();  

        String host=getHost();


        String user=host.substring(0, host.indexOf('@'));
        host=host.substring(host.indexOf('@')+1);

        Session session=jsch.getSession(user, host, 22);



        // username and password will be given via UserInfo interface.
        UserInfo ui=new MyUserInfo();
        session.setUserInfo(ui);
        session.connect();

        String command=getCmd();

        Channel channel=session.openChannel("exec");

        ((ChannelExec)channel).setPty(true);

        if(isAsIs == true){
            ((ChannelExec)channel).setCommand(command);
            }
        else{
            ((ChannelExec)channel).setCommand("sudo -S -p '' " + command);
        }

        InputStream in=channel.getInputStream();
          OutputStream out=channel.getOutputStream();
          ((ChannelExec)channel).setErrStream(System.err);

          channel.connect();

          out.write((passwd+"\n").getBytes());
          out.flush();

        byte[] tmp=new byte[1024];
        while(true && isForceStop == false){                
            while(in.available()>0 ){
                int i=in.read(tmp, 0, 1024);
                if(i<0)break;

                mObserver.onResponse((new String(tmp, 0, i)));

            }
            if(channel.isClosed()){
                mObserver.onResponse("exit-status: "+channel.getExitStatus());
                mTimer.doNotify();
                break;
            }


            try{Thread.sleep(100);}catch(Exception ee){}
        }

        mObserver.onResponse("close channel ... ");         
        channel.disconnect();
        mObserver.onResponse("close session ... ");
        session.disconnect();
    }
    catch(Exception e){
        System.out.println(e);
        mObserver.onErrorResponse(e.getMessage());
    }



}



public static class MyUserInfo implements UserInfo, UIKeyboardInteractive{
    public String getPassword(){
        return passwd;
    }

    public boolean promptYesNo(String str){
        return true;
    }



    public String getPassphrase(){ return null; }
    public boolean promptPassphrase(String message){ return true; }
    public boolean promptPassword(String message){
        return true;
    }

    public void showMessage(String message){
    }

    @Override
    public String[] promptKeyboardInteractive(String arg0, String arg1,
            String arg2, String[] arg3, boolean[] arg4) {
        return null;
    }
}

public void setPassword(String password){
    passwd=password;
}

public void setHost(String hostname){
    mHost=hostname;
}

public String getPassword(){
    return passwd;
}


public String getHost(){
    return mHost;
}

protected abstract String getCmd();

public void setObserver(SSHObserverItf observer) {
    mObserver = observer;
}   
} 

<强> SomeTask

public interface SSHObserverItf {
public void onResponse(String line);
public void onErrorResponse(String line);
}

public class SomeTask extends SudoExec implements SSHObserverItf{ private static String command = ""; private static String hostname = ""; private static String user = ""; private static String pass = ""; private static Boolean isError=false; private static String wait = "300"; static public void main(String args[]) throws IOException, ParseException, NoSuchFieldException, SecurityException, IllegalArgumentException, IllegalAccessException { new SomeTask(hostname,user,pass); if (isError == true){ System.out.println("Test failed"); } else{ System.out.println("\nSucceeded to invoke command : " + command); } } public CopyPeriodMergeToExternal(String hostName, String userName, String password) throws IOException, ParseException { super(hostName, userName, password); SSHObserverItf observer = this; super.setObserver(observer); super.init(Integer.parseInt(wait) * 1000); } @Override protected String getCmd() { isAsIs = true; command="rm -f somescript.sh"; System.out.println("Run followed command : " + command); return command; } @Override public void onResponse(String line) { System.out.println(line); } @Override public void onErrorResponse(String line) { System.out.println(line); System.out.println("Error has occured"); isError = true; } } 课程的主要部分是:

SudoExec

希望它能解决你的问题

答案 1 :(得分:0)

我用评论线解决问题

  

默认requiretty

使用visudo。