开源web终端gateone

GateOne 是一款 使用 HTML5 技术编写的网页版 SSH 终端模拟器 。

· 基于现代的 HTML5 技术， 无需任何浏览器插件 。

· 支持 多个 SSH 进程 。

· 可以嵌入到其他任意应用程序中。

· 支持 使用 JavaScript ， Python 甚至纯 CSS 编写的插件 。

· 支持 SSH 进程副本，打开多个进程而无需重复输入密码。

· 支持各种 服务器端的日志功能 ，支持 Keberos-based 单点登录甚至活动目录。

· 支持操作日志记录，具有操作记录回放功能

项目地址 https://github.com/liftoff/GateOne

开发语言 python

当前版本 1.1

wget https://github.com/downloads/liftoff/GateOne/tornado-2.4-1.noarch.rpm

wget https://github.com/downloads/liftoff/GateOne/gateone-1.1-1.noarch.rpm

yum install -y python-ordereddict

rpm -ivh tornado-2.4-1.noarch.rpm

rpm -ivh gateone-1.1-1.noarch.rpm

默认安装在/opt/gateone/目录

cd /opt/gateone/

生成配置文件，并启动
./gateone.py

[W 150507 11:37:40 terminal:181] Could not import the Python Imaging Library (PIL) so images will not be displayed in the terminal

[I 150507 11:37:40 gateone:2748] /opt/gateone/server.conf not found or missing cookie_secret.  A new one will be generated.

[W 150507 11:37:40 gateone:2893] dtach command not found.  dtach support has been disabled.

[I 150507 11:37:40 gateone:2917] Connections to this server will be allowed from the following origins: ‘http://localhost https://localhost http://127.0.0.1 https://127.0.0.1 https://localhost https://localhost.localdomain https://localhost4 https://localhost4.localdomain4 https://localhost.localdomain https://localhost6 https://localhost6.localdomain6 https://127.0.0.1 https://127.0.0.1‘

[I 150507 11:37:40 gateone:2957] No SSL private key found.  One will be generated.

[I 150507 11:37:41 gateone:2307] No authentication method configured. All users will be ANONYMOUS

[I 150507 11:37:41 gateone:2404] Loaded plugins: bookmarks, convenience, example, help, logging, logging_plugin, mobile, notice, playback, ssh

[I 150507 11:37:41 gateone:3054] Listening on https://*:443/

[I 150507 11:37:41 gateone:3060] Process running with pid 20653

然后使用CRTL+C结束掉。

cp server.conf server.conf.bak

编辑配置文件，注意红色部分，只允许域名访问，如果需要IP地址，再加一个访问地址就可以了。

vi server.conf

# -*- coding: utf-8 -*- 
locale = "en_US" 
pam_service = "login" 
syslog_facility = "daemon" 
syslog_host = None 
enable_unix_socket = False 
port = 443 
uid = "0" 
url_prefix = "/" 
user_dir = "/opt/gateone/users" 
dtach = True 
certificate = "certificate.pem" 
log_to_stderr = False 
session_logs_max_age = "30d" 
gid = "0" 
pid_file = "/var/run/gateone.pid" 
sso_realm = None 
cookie_secret = "ZmNiNmI3ZDFlMWYzNDkxMmJmYTRkOTNkMzRmODk4ZmVjN" 
pam_realm = "localhost.localdomain" 
sso_service = "HTTP" 
https_redirect = False 
syslog_session_logging = False 
disable_ssl = False 
debug = False 
session_dir = "/tmp/gateone" 
auth = "none" 
address = "" 
api_timestamp_window = "30s" 
log_file_num_backups = 10 
logging = "info" 
embedded = False 
origins = "https://admin.xx.com" 
session_logging = True 
unix_socket_path = "/var/run/gateone.sock" 
ssl_auth = "none" 
log_file_max_size = 104857600 
session_timeout = "5d" 
command = "/opt/gateone/plugins/ssh/scripts/ssh_connect.py -S ‘/tmp/gateone/%SES                                                                                                                     SION%/%SHORT_SOCKET%‘ --sshfp -a ‘-oUserKnownHostsFile=%USERDIR%/%USER%/ssh/know                                                                                                                     n_hosts‘" 
ca_certs = None 
js_init = "" 
keyfile = "keyfile.pem" 
log_file_prefix = "/opt/gateone/logs/webserver.log"

以后台方式启动

/etc/init.d/gateone start

访问网页

https://admin.xx.com

提示输入IP地址，因为我是访问本机，所以直接回车了。如果是别的主机，可以输入IP地址

输入用户名和密码就可以登录了。

之后就可以操作Linux了。

为了不让别人知道这是一个web ssh工具，做了一个登录页面，验证成功之后，调整到页面https://admin.xx.com