tljh/configurer.py

"""
Parse YAML config file & update JupyterHub config.

Config should never append or mutate, only set. Functions here could
be called many times per lifetime of a jupyterhub.

Traitlets that modify the startup of JupyterHub should not be here.
FIXME: A strong feeling that JSON Schema should be involved somehow.
"""

import os

from passlib.apache import HtpasswdFile

from .config import CONFIG_FILE, STATE_DIR
from .yaml import yaml

# Default configuration for tljh
# User provided config is merged into this
default = {
    'auth': {
        'type': 'firstuseauthenticator.FirstUseAuthenticator',
        'FirstUseAuthenticator': {
            'create_users': False
        }
    },
    'users': {
        'allowed': [],
        'banned': [],
        'admin': [],
    },
    'limits': {
        'memory': None,
        'cpu': None,
    },
    'http': {
        'port': 80,
    },
    'https': {
        'enabled': False,
        'port': 443,
        'tls': {
            'cert': '',
            'key': '',
        },
        'letsencrypt': {
            'email': '',
            'domains': [],
        },
    },
    'auth_api': {
        'ip': "127.0.0.1",
        'port': 8099,
        'username': 'api_admin',
        'password': '',
        'basic_auth': ''
    },
    'user_environment': {
        'default_app': 'classic',
    },
}

def load_config(config_file=CONFIG_FILE):
    """Load the current config as a dictionary

    merges overrides from config.yaml with default config
    """
    if os.path.exists(config_file):
        with open(config_file) as f:
            config_overrides = yaml.load(f)
    else:
        config_overrides = {}

    generate_traefik_api_credentials()
    return _merge_dictionaries(dict(default), config_overrides)


def apply_config(config_overrides, c):
    """
    Merge config_overrides with config defaults & apply to JupyterHub config c
    """
    tljh_config = _merge_dictionaries(dict(default), config_overrides)

    update_auth(c, tljh_config)
    update_userlists(c, tljh_config)
    update_limits(c, tljh_config)
    update_user_environment(c, tljh_config)
    update_user_account_config(c, tljh_config)
    update_auth_api(c, tljh_config)


def set_if_not_none(parent, key, value):
    """
    Set attribute 'key' on parent if value is not None
    """
    if value is not None:
        setattr(parent, key, value)

def generate_traefik_api_credentials():
    proxy_secret_path = os.path.join(STATE_DIR, 'traefik-api.secret')
    with open(proxy_secret_path,'r') as f:
        password = f.read()

    default['auth_api']['password'] = password
    ht = HtpasswdFile()
    # generate htpassword
    ht.set_password(default['auth_api']['username'], default['auth_api']['password'])
    traefik_api_hashed_password = str(ht.to_string()).split(":")[1][:-3]
    default['auth_api']['basic_auth'] = default['auth_api']['username'] + ":" + traefik_api_hashed_password


def update_auth(c, config):
    """
    Set auth related configuration from YAML config file

    Use auth.type to determine authenticator to use. All parameters
    in the config under auth.{auth.type} will be passed straight to the
    authenticators themselves.
    """
    auth = config.get('auth')

    # FIXME: Make sure this is something importable.
    # FIXME: SECURITY: Class must inherit from Authenticator, to prevent us being
    # used to set arbitrary properties on arbitrary types of objects!
    authenticator_class = auth['type']
    # When specifying fully qualified name, use classname as key for config
    authenticator_configname = authenticator_class.split('.')[-1]
    c.JupyterHub.authenticator_class = authenticator_class
    # Use just class name when setting config. If authenticator is dummyauthenticator.DummyAuthenticator,
    # its config will be set under c.DummyAuthenticator
    authenticator_parent = getattr(c, authenticator_class.split('.')[-1])

    for k, v in auth.get(authenticator_configname, {}).items():
        set_if_not_none(authenticator_parent, k, v)


def update_userlists(c, config):
    """
    Set user whitelists & admin lists
    """
    users = config['users']

    c.Authenticator.whitelist = set(users['allowed'])
    c.Authenticator.blacklist = set(users['banned'])
    c.Authenticator.admin_users = set(users['admin'])


def update_limits(c, config):
    """
    Set user server limits
    """
    limits = config['limits']

    c.SystemdSpawner.mem_limit = limits['memory']
    c.SystemdSpawner.cpu_limit = limits['cpu']


def update_user_environment(c, config):
    """
    Set user environment configuration
    """
    user_env = config['user_environment']

    # Set default application users are launched into
    if user_env['default_app'] == 'jupyterlab':
        c.Spawner.default_url = '/lab'
    elif user_env['default_app'] == 'nteract':
        c.Spawner.default_url = '/nteract'


def update_user_account_config(c, config):
    c.SystemdSpawner.username_template = 'jupyter-{USERNAME}'


def update_auth_api(c, config):
    """
    Set traefik api endpoint credentials
    """
    c.TraefikTomlProxy.traefik_api_username = config['auth_api']['username']
    c.TraefikTomlProxy.traefik_api_password = config['auth_api']['password']


def _merge_dictionaries(a, b, path=None, update=True):
    """
    Merge two dictionaries recursively.

    From https://stackoverflow.com/a/7205107
    """
    if path is None:
        path = []
    for key in b:
        if key in a:
            if isinstance(a[key], dict) and isinstance(b[key], dict):
                _merge_dictionaries(a[key], b[key], path + [str(key)])
            elif a[key] == b[key]:
                pass  # same leaf value
            elif update:
                a[key] = b[key]
            else:
                raise Exception('Conflict at %s' % '.'.join(path + [str(key)]))
        else:
            a[key] = b[key]
    return a
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`"""`
			`Parse YAML config file & update JupyterHub config.`

			`Config should never append or mutate, only set. Functions here could`
			`be called many times per lifetime of a jupyterhub.`

			`Traitlets that modify the startup of JupyterHub should not be here.`
			`FIXME: A strong feeling that JSON Schema should be involved somehow.`
			`"""`
add load_config top-level function to configurer for easy loading of the full config 2018-07-21 00:18:58 -07:00
			`import os`

Generate random traefik api password 2019-02-13 14:10:28 +02:00			`from passlib.apache import HtpasswdFile`

			`from .config import CONFIG_FILE, STATE_DIR`
single yaml implementation consolidate to a single yaml implementation, removing pyyaml 2019-02-11 13:27:08 +01:00			`from .yaml import yaml`
add load_config top-level function to configurer for easy loading of the full config 2018-07-21 00:18:58 -07:00
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`# Default configuration for tljh`
			`# User provided config is merged into this`
			`default = {`
			`'auth': {`
Do not special case any authenticator No two ways to set authenticator options - just one way. It's slightly 'ugly' because of the mixing of camel case & snake case, but is worth the massive reductions in complexity! 2018-07-16 16:05:44 -07:00			`'type': 'firstuseauthenticator.FirstUseAuthenticator',`
			`'FirstUseAuthenticator': {`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`'create_users': False`
Disable user creation by default With firstuseauthenticator, users need to be manually created in the admin console before they can log in. This makes for a far more secure default experience. 2018-07-03 16:28:20 -07:00			`}`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`},`
			`'users': {`
			`'allowed': [],`
			`'banned': [],`
Add traefik in front of CHP introduces configuration for manual tls and letsencrypt 2018-07-21 00:20:29 -07:00			`'admin': [],`
Support user resource limits Set default limit to 1G. Possibly controversial! 2018-06-27 01:30:34 -07:00			`},`
			`'limits': {`
Don't set a memory limit by default Users should set up their own memory limits after install. Better than a surprise when they try using more than 1G. 2018-08-23 07:12:07 -04:00			`'memory': None,`
Add traefik in front of CHP introduces configuration for manual tls and letsencrypt 2018-07-21 00:20:29 -07:00			`'cpu': None,`
			`},`
			`'http': {`
			`'port': 80,`
			`},`
			`'https': {`
			`'enabled': False,`
			`'port': 443,`
			`'tls': {`
			`'cert': '',`
			`'key': '',`
			`},`
			`'letsencrypt': {`
			`'email': '',`
			`'domains': [],`
			`},`
Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00			`},`
Fixed some issues 2019-02-11 09:24:16 +02:00			`'auth_api': {`
			`'ip': "127.0.0.1",`
			`'port': 8099,`
			`'username': 'api_admin',`
Generate random traefik api password 2019-02-13 14:10:28 +02:00			`'password': '',`
Fixed some issues 2019-02-11 09:24:16 +02:00			`'basic_auth': ''`
			`},`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`'user_environment': {`
Add traefik in front of CHP introduces configuration for manual tls and letsencrypt 2018-07-21 00:20:29 -07:00			`'default_app': 'classic',`
			`},`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`}`

add load_config top-level function to configurer for easy loading of the full config 2018-07-21 00:18:58 -07:00			`def load_config(config_file=CONFIG_FILE):`
			`"""Load the current config as a dictionary`

			`merges overrides from config.yaml with default config`
			`"""`
			`if os.path.exists(config_file):`
			`with open(config_file) as f:`
single yaml implementation consolidate to a single yaml implementation, removing pyyaml 2019-02-11 13:27:08 +01:00			`config_overrides = yaml.load(f)`
add load_config top-level function to configurer for easy loading of the full config 2018-07-21 00:18:58 -07:00			`else:`
			`config_overrides = {}`
Fixed some issues 2019-02-11 09:24:16 +02:00
			`generate_traefik_api_credentials()`
add load_config top-level function to configurer for easy loading of the full config 2018-07-21 00:18:58 -07:00			`return _merge_dictionaries(dict(default), config_overrides)`


Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`def apply_config(config_overrides, c):`
			`"""`
			`Merge config_overrides with config defaults & apply to JupyterHub config c`
			`"""`
			`tljh_config = _merge_dictionaries(dict(default), config_overrides)`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00
Support user resource limits Set default limit to 1G. Possibly controversial! 2018-06-27 01:30:34 -07:00			`update_auth(c, tljh_config)`
			`update_userlists(c, tljh_config)`
			`update_limits(c, tljh_config)`
Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00			`update_user_environment(c, tljh_config)`
Prefix user accounts we create - Helps protect against users named 'root' - Makes it clearer that you should not rely on these users for general PAM work, because they are prefixed. Fixes #9 2018-07-12 13:33:24 -07:00			`update_user_account_config(c, tljh_config)`
Fixed some issues 2019-02-11 09:24:16 +02:00			`update_auth_api(c, tljh_config)`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00

Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`def set_if_not_none(parent, key, value):`
			`"""`
			`Set attribute 'key' on parent if value is not None`
			`"""`
			`if value is not None:`
			`setattr(parent, key, value)`

Fixed some issues 2019-02-11 09:24:16 +02:00			`def generate_traefik_api_credentials():`
Generate random traefik api password 2019-02-13 14:10:28 +02:00			`proxy_secret_path = os.path.join(STATE_DIR, 'traefik-api.secret')`
			`with open(proxy_secret_path,'r') as f:`
			`password = f.read()`
Fixed some issues 2019-02-11 09:24:16 +02:00
Generate random traefik api password 2019-02-13 14:10:28 +02:00			`default['auth_api']['password'] = password`
Fixed some issues 2019-02-11 09:24:16 +02:00			`ht = HtpasswdFile()`
Generate random traefik api password 2019-02-13 14:10:28 +02:00			`# generate htpassword`
Fixed some issues 2019-02-11 09:24:16 +02:00			`ht.set_password(default['auth_api']['username'], default['auth_api']['password'])`
			`traefik_api_hashed_password = str(ht.to_string()).split(":")[1][:-3]`
			`default['auth_api']['basic_auth'] = default['auth_api']['username'] + ":" + traefik_api_hashed_password`

Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`def update_auth(c, config):`
			`"""`
			`Set auth related configuration from YAML config file`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00
			`Use auth.type to determine authenticator to use. All parameters`
			`in the config under auth.{auth.type} will be passed straight to the`
			`authenticators themselves.`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`"""`
			`auth = config.get('auth')`

Do not special case any authenticator No two ways to set authenticator options - just one way. It's slightly 'ugly' because of the mixing of camel case & snake case, but is worth the massive reductions in complexity! 2018-07-16 16:05:44 -07:00			`# FIXME: Make sure this is something importable.`
			`# FIXME: SECURITY: Class must inherit from Authenticator, to prevent us being`
			`# used to set arbitrary properties on arbitrary types of objects!`
			`authenticator_class = auth['type']`
			`# When specifying fully qualified name, use classname as key for config`
			`authenticator_configname = authenticator_class.split('.')[-1]`
Support arbitrary authenticators - Removes all need for special casing authenticators. - Install them in hub environment, directly start using them. - Consider if we should special case any at all 2018-07-16 12:03:45 -07:00			`c.JupyterHub.authenticator_class = authenticator_class`
Make authenticator class assigning code more generic 2018-07-16 01:19:24 -07:00			`# Use just class name when setting config. If authenticator is dummyauthenticator.DummyAuthenticator,`
			`# its config will be set under c.DummyAuthenticator`
Support arbitrary authenticators - Removes all need for special casing authenticators. - Install them in hub environment, directly start using them. - Consider if we should special case any at all 2018-07-16 12:03:45 -07:00			`authenticator_parent = getattr(c, authenticator_class.split('.')[-1])`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00
Support arbitrary authenticators - Removes all need for special casing authenticators. - Install them in hub environment, directly start using them. - Consider if we should special case any at all 2018-07-16 12:03:45 -07:00			`for k, v in auth.get(authenticator_configname, {}).items():`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`set_if_not_none(authenticator_parent, k, v)`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00

			`def update_userlists(c, config):`
			`"""`
			`Set user whitelists & admin lists`
			`"""`
			`users = config['users']`

			`c.Authenticator.whitelist = set(users['allowed'])`
			`c.Authenticator.blacklist = set(users['banned'])`
			`c.Authenticator.admin_users = set(users['admin'])`


Support user resource limits Set default limit to 1G. Possibly controversial! 2018-06-27 01:30:34 -07:00			`def update_limits(c, config):`
			`"""`
			`Set user server limits`
			`"""`
			`limits = config['limits']`

			`c.SystemdSpawner.mem_limit = limits['memory']`
			`c.SystemdSpawner.cpu_limit = limits['cpu']`


Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00			`def update_user_environment(c, config):`
			`"""`
			`Set user environment configuration`
			`"""`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`user_env = config['user_environment']`
Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00
			`# Set default application users are launched into`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`if user_env['default_app'] == 'jupyterlab':`
Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00			`c.Spawner.default_url = '/lab'`
Dynamically set authenticator properties from YAML We don't wanna explicitly map keys from the YAML to traitlet config for the authentication - that's a lot of busywork for no gain. We instead switch to using snake_case everywhere, and dynamically set traitlet config from YAML config! 2018-07-15 13:40:17 -07:00			`elif user_env['default_app'] == 'nteract':`
Allow configuring default notebook interface from config.yaml Also fix bug in how overrides were being done in config.yaml 2018-06-29 00:47:08 -07:00			`c.Spawner.default_url = '/nteract'`


Prefix user accounts we create - Helps protect against users named 'root' - Makes it clearer that you should not rely on these users for general PAM work, because they are prefixed. Fixes #9 2018-07-12 13:33:24 -07:00			`def update_user_account_config(c, config):`
			`c.SystemdSpawner.username_template = 'jupyter-{USERNAME}'`


Fixed some issues 2019-02-11 09:24:16 +02:00			`def update_auth_api(c, config):`
			`"""`
			`Set traefik api endpoint credentials`
			`"""`
			`c.TraefikTomlProxy.traefik_api_username = config['auth_api']['username']`
			`c.TraefikTomlProxy.traefik_api_password = config['auth_api']['password']`


Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`def _merge_dictionaries(a, b, path=None, update=True):`
			`"""`
			`Merge two dictionaries recursively.`

Don't handle merging lists Doesn't work clearly 2018-07-10 11:45:07 -07:00			`From https://stackoverflow.com/a/7205107`
Load user lists & auth config from a YAML file - Load config only once at startup. A lot of jupyterhub config (like user lists) take effect only at startup, so live reload is not super useful. It will make the software more complex, so let's not do it. - Add pyyaml as a dependency of tljh. - Remove escapism dependency since it is not actually used 2018-06-27 01:18:07 -07:00			`"""`
			`if path is None:`
			`path = []`
			`for key in b:`
			`if key in a:`
			`if isinstance(a[key], dict) and isinstance(b[key], dict):`
			`_merge_dictionaries(a[key], b[key], path + [str(key)])`
			`elif a[key] == b[key]:`
			`pass # same leaf value`
			`elif update:`
			`a[key] = b[key]`
			`else:`
			`raise Exception('Conflict at %s' % '.'.join(path + [str(key)]))`
			`else:`
			`a[key] = b[key]`
			`return a`