#!/bin/bash
export PATH="/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:/opt/bin:$PATH"

SSH_LOG_FILE="/var/log/ssh-logins.log"

DATE="$(date)"

HOSTNAME="$(hostname)"
USERIP="$(echo "$SSH_CONNECTION" | cut -d " " -f 1)"
#RDNS="$(dig -x "$USERIP" +short)"

PAGERDUTY_URL="https://events.pagerduty.com/v2/enqueue"

log_ssh_login() {
	echo "$DATE - User $USER logged in via SSH using ip address of $USERIP" >> "$SSH_LOG_FILE"
}

pagerduty() {
	/usr/bin/curl -s -X POST -H "content-type: application/json" -d '{"routing_key":"1969ec3d30b74608d0135d6321275bb7","event_action":"trigger","payload":{"summary":"User '"$USER"' has logged in via SSH!!","source":"/etc/ssh/sshrc","severity":"critical","component":"exploratory-stats","group":"prod-datapipe","class":"deploy"}}' "$PAGERDUTY_URL" >/dev/null 2>&1
}

if [[ "$USER" == "laser" || "$USER" == "madalin" || "$USER" == "smiti" ]]
then
	pagerduty
	log_ssh_login
else
	log_ssh_login
	exit 0
fi