add msca-openvpn role

[awsible] / roles / msca-openvpn / files / auth.py

diff --git a/roles/msca-openvpn/files/auth.py b/roles/msca-openvpn/files/auth.py
new file mode 100644 (file)
index 0000000..649661e
--- /dev/null
+++ b/roles/msca-openvpn/files/auth.py
@@ -0,0 +1,12 @@
+#!/usr/bin/env python
+
+import os, sys
+from boto.dynamodb2.table import Table
+from passlib.hash import sha512_crypt
+
+try:
+    if sha512_crypt.verify(os.environ['password'], Table('userManager').get_item(userName=os.environ['username'])['passwordHash']):
+        sys.exit(0)
+except:
+    pass
+sys.exit(1)