alox-gandalf 0.0.8 → 0.0.9
Sign up to get free protection for your applications and to get access to all the features.
- data/aloxec/_gandalf +5 -5
- data/aloxec/edit-secrets +58 -0
- data/aloxec/new-key +2 -2
- data/aloxec/new-secrets +6 -2
- data/aloxec/{list-bundle → show-secrets} +1 -1
- metadata +3 -4
- data/aloxec/list-secrets +0 -38
- data/aloxec/new-bundle +0 -39
data/aloxec/_gandalf
CHANGED
@@ -2,13 +2,13 @@
|
|
2
2
|
|
3
3
|
if [[ "$#" > 0 ]]; then
|
4
4
|
GANDALF="$1"; shift
|
5
|
-
|
6
|
-
: ${GANDALF:="$(cd -P -- "$(dirname -- "${BASH_SOURCE}")/.." && pwd -P)"}
|
7
|
-
fi
|
5
|
+
fi
|
8
6
|
|
9
|
-
|
7
|
+
if [[ -z "${GANDALF:-}" ]]; then
|
8
|
+
GANDALF="$(pwd -P)"
|
9
|
+
fi
|
10
10
|
|
11
|
-
|
11
|
+
export GANDALF
|
12
12
|
|
13
13
|
if [[ ! -x "$(type -P gpg 2>&-)" ]]; then
|
14
14
|
echo "ERROR: could not find gpg tool" 1>&2
|
data/aloxec/edit-secrets
ADDED
@@ -0,0 +1,58 @@
|
|
1
|
+
#!/bin/bash
|
2
|
+
|
3
|
+
#/ NAME
|
4
|
+
#/ edit bundle -- edit a password bundle
|
5
|
+
#/
|
6
|
+
#/ SYNOPSIS
|
7
|
+
#/ edit bundle name
|
8
|
+
|
9
|
+
# figure out the project root under which bin, lib live
|
10
|
+
shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
11
|
+
|
12
|
+
# load a jason bourne library
|
13
|
+
source _jason
|
14
|
+
require _gandalf "${GANDALF:-}"
|
15
|
+
require _gandalf_
|
16
|
+
|
17
|
+
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
18
|
+
|
19
|
+
# entry point
|
20
|
+
function main {
|
21
|
+
if [[ "$#" = 0 ]]; then
|
22
|
+
local default_bundle="$(ryaml $cfg_gandalf bundle default)"
|
23
|
+
if [[ -n "$default_bundle" ]]; then
|
24
|
+
set -- "$default_bundle" "$@"
|
25
|
+
fi
|
26
|
+
fi
|
27
|
+
|
28
|
+
if [[ "$#" = 0 ]]; then
|
29
|
+
logger_fatal "missing name of secrets bundle"
|
30
|
+
exit 1
|
31
|
+
fi
|
32
|
+
|
33
|
+
readonly local nm_bundle="$1"; shift
|
34
|
+
readonly local tmp_keyring="$(mktemp -t XXXXXXXXX)"
|
35
|
+
|
36
|
+
set +f
|
37
|
+
gpg --no-default-keyring --keyring "$tmp_keyring" --import "$(keys_path)/"*
|
38
|
+
set -f
|
39
|
+
|
40
|
+
readonly local tmp_container="$(mktemp -d -t XXXXXXXXX)"
|
41
|
+
readonly local tmp_buffer="$(TMPDIR="$tmp_container" mktemp -t XXXXXXXXX)"
|
42
|
+
|
43
|
+
git pull
|
44
|
+
gpg -a -d "$(secrets_path)/${nm_bundle}.gpg" > "$tmp_buffer"
|
45
|
+
"${EDITOR:-vim}" "$tmp_buffer"
|
46
|
+
|
47
|
+
readonly local tmp_bundle="$(mktemp -t XXXXXXXXX)"
|
48
|
+
if gpg --yes --trust-model always --no-default-keyring --keyring "$tmp_keyring" -a -e -o "$tmp_bundle" $(recipients) "$tmp_buffer"; then
|
49
|
+
mv -f "$tmp_bundle" "$(secrets_path)/$nm_bundle.gpg"
|
50
|
+
else
|
51
|
+
rm -f "$tmp_bundle"
|
52
|
+
fi
|
53
|
+
|
54
|
+
rm -f "$tmp_keyring" "$tmp_buffer"
|
55
|
+
rmdir "$tmp_container"
|
56
|
+
}
|
57
|
+
|
58
|
+
require _sub "$BASH_SOURCE" "$@"
|
data/aloxec/new-key
CHANGED
@@ -11,7 +11,7 @@ shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
|
11
11
|
|
12
12
|
# load a jason bourne library
|
13
13
|
source _jason
|
14
|
-
require _gandalf "${GANDALF
|
14
|
+
require _gandalf "${GANDALF:-}"
|
15
15
|
require _gandalf_
|
16
16
|
|
17
17
|
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
@@ -40,7 +40,7 @@ EOF
|
|
40
40
|
rm -f "$tmp_genkey"
|
41
41
|
gpg --edit-key "$email" passwd save
|
42
42
|
|
43
|
-
gpg --export -a "$email" > "$(keys_path)
|
43
|
+
gpg --export -a "$email" > "$(keys_path)/$email"
|
44
44
|
}
|
45
45
|
|
46
46
|
require _sub "$BASH_SOURCE" "$@"
|
data/aloxec/new-secrets
CHANGED
@@ -11,7 +11,7 @@ shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
|
11
11
|
|
12
12
|
# load a jason bourne library
|
13
13
|
source _jason
|
14
|
-
require _gandalf "${GANDALF
|
14
|
+
require _gandalf "${GANDALF:-}"
|
15
15
|
require _gandalf_
|
16
16
|
|
17
17
|
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
@@ -26,9 +26,13 @@ function main {
|
|
26
26
|
readonly local nm_bundle="$1"; shift
|
27
27
|
readonly local tmp_keyring="$(mktemp -t XXXXXXXXX)"
|
28
28
|
|
29
|
+
set -x
|
30
|
+
keys
|
31
|
+
set +x
|
32
|
+
|
29
33
|
local _rcpt
|
30
34
|
for _rcpt in $(keys); do
|
31
|
-
gpg --no-default-keyring --keyring "$tmp_keyring" --import "$(keys_path)
|
35
|
+
gpg --no-default-keyring --keyring "$tmp_keyring" --import "$(keys_path)/$_rcpt"
|
32
36
|
done
|
33
37
|
|
34
38
|
echo "---" | gpg --no-default-keyring --keyring "$tmp_keyring" -a -e -o "$(secrets_path)/$nm_bundle.gpg" $(recipients)
|
@@ -11,7 +11,7 @@ shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
|
11
11
|
|
12
12
|
# load a jason bourne library
|
13
13
|
source _jason
|
14
|
-
require _gandalf "${GANDALF
|
14
|
+
require _gandalf "${GANDALF:-}"
|
15
15
|
require _gandalf_
|
16
16
|
|
17
17
|
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
metadata
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: alox-gandalf
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 0.0.
|
4
|
+
version: 0.0.9
|
5
5
|
prerelease:
|
6
6
|
platform: ruby
|
7
7
|
authors:
|
@@ -22,11 +22,10 @@ extra_rdoc_files: []
|
|
22
22
|
files:
|
23
23
|
- aloxec/_gandalf
|
24
24
|
- aloxec/_gandalf_
|
25
|
-
- aloxec/
|
26
|
-
- aloxec/list-secrets
|
27
|
-
- aloxec/new-bundle
|
25
|
+
- aloxec/edit-secrets
|
28
26
|
- aloxec/new-key
|
29
27
|
- aloxec/new-secrets
|
28
|
+
- aloxec/show-secrets
|
30
29
|
homepage: https://github.com/destructuring/gandalf
|
31
30
|
licenses: []
|
32
31
|
post_install_message:
|
data/aloxec/list-secrets
DELETED
@@ -1,38 +0,0 @@
|
|
1
|
-
#!/bin/bash
|
2
|
-
|
3
|
-
#/ NAME
|
4
|
-
#/ list bundle -- list the bundle for a bundle
|
5
|
-
#/
|
6
|
-
#/ SYNOPSIS
|
7
|
-
#/ list bundle name
|
8
|
-
|
9
|
-
# figure out the project root under which bin, lib live
|
10
|
-
shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
11
|
-
|
12
|
-
# load a jason bourne library
|
13
|
-
source _jason
|
14
|
-
require _gandalf "${GANDALF:-$shome}"
|
15
|
-
require _gandalf_
|
16
|
-
|
17
|
-
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
18
|
-
|
19
|
-
# entry point
|
20
|
-
function main {
|
21
|
-
if [[ "$#" = 0 ]]; then
|
22
|
-
local default_bundle="$(ryaml $cfg_gandalf bundle default)"
|
23
|
-
if [[ -n "$default_bundle" ]]; then
|
24
|
-
set -- "$default_bundle" "$@"
|
25
|
-
fi
|
26
|
-
fi
|
27
|
-
|
28
|
-
if [[ "$#" = 0 ]]; then
|
29
|
-
logger_fatal "missing name of secrets bundle"
|
30
|
-
exit 1
|
31
|
-
fi
|
32
|
-
|
33
|
-
readonly local nm_bundle="$1"; shift
|
34
|
-
|
35
|
-
gpg -a -d "$(secrets_path)/${nm_bundle}.gpg"
|
36
|
-
}
|
37
|
-
|
38
|
-
require _sub "$BASH_SOURCE" "$@"
|
data/aloxec/new-bundle
DELETED
@@ -1,39 +0,0 @@
|
|
1
|
-
#!/bin/bash
|
2
|
-
|
3
|
-
#/ NAME
|
4
|
-
#/ new bundle -- create a new password bundle
|
5
|
-
#/
|
6
|
-
#/ SYNOPSIS
|
7
|
-
#/ new bundle name
|
8
|
-
|
9
|
-
# figure out the project root under which bin, lib live
|
10
|
-
shome="$(cd -P -- "$(dirname -- "$BASH_SOURCE")/.." && pwd -P)"
|
11
|
-
|
12
|
-
# load a jason bourne library
|
13
|
-
source _jason
|
14
|
-
require _gandalf "${GANDALF:-$shome}"
|
15
|
-
require _gandalf_
|
16
|
-
|
17
|
-
readonly cfg_gandalf="$GANDALF/config/gandalf.yml"
|
18
|
-
|
19
|
-
# entry point
|
20
|
-
function main {
|
21
|
-
if [[ "$#" = 0 ]]; then
|
22
|
-
logger_fatal "missing name of secrets bundle"
|
23
|
-
exit 1
|
24
|
-
fi
|
25
|
-
|
26
|
-
readonly local nm_bundle="$1"; shift
|
27
|
-
readonly local tmp_keyring="$(mktemp -t XXXXXXXXX)"
|
28
|
-
|
29
|
-
local _rcpt
|
30
|
-
for _rcpt in $(keys); do
|
31
|
-
gpg --no-default-keyring --keyring "$tmp_keyring" --import "$(keys_path)/gpg/$_rcpt"
|
32
|
-
done
|
33
|
-
|
34
|
-
echo "---" | gpg --no-default-keyring --keyring "$tmp_keyring" -a -e -o "$(secrets_path)/$nm_bundle.gpg" $(recipients)
|
35
|
-
|
36
|
-
rm -f "$tmp_keyring"
|
37
|
-
}
|
38
|
-
|
39
|
-
require _sub "$BASH_SOURCE" "$@"
|