duse 0.0.2

data/lib/duse/cli/login.rb

@@ -0,0 +1,27 @@
+require 'duse/cli'
+require 'duse/cli/key_helper'
+
+module Duse
+  module CLI
+    class Login < ApiCommand
+      include KeyHelper
+
+      description 'login to access and save secrets'
+
+      skip :authenticate
+
+      def run
+        username = terminal.ask('Username: ')
+        password = terminal.ask('Password: ') { |q| q.echo = 'x' }
+        response = Duse.session.post('/users/token', { username: username, password: password })
+        config.token = response['api_token']
+        CLIConfig.save(config)
+        user = Duse::User.find 'me'
+        ensure_matching_keys_for user
+        success 'Successfully logged in!'
+      rescue Duse::Client::NotLoggedIn => e
+        error e.message.empty? ? 'Wrong username or password!' : e.message
+      end
+    end
+  end
+end

data/lib/duse/cli/meta_command.rb

@@ -0,0 +1,12 @@
+module Duse
+  module CLI
+    class MetaCommand < Command
+      abstract
+
+      def run(*sub_commands)
+        say help
+      end
+    end
+  end
+end
+

data/lib/duse/cli/parser.rb

@@ -0,0 +1,43 @@
+require 'duse/cli'
+require 'optparse'
+
+module Duse
+  module CLI
+    module Parser
+      def on_initialize(&block)
+        @on_initialize ||= []
+        @on_initialize << block if block
+        if superclass.respond_to? :on_initialize
+          superclass.on_initialize + @on_initialize
+        else
+          @on_initialize
+        end
+      end
+
+      def on(*args, &block)
+        block ||= begin
+          full_arg = args.detect { |a| a.start_with? '--' }
+          name = full_arg.gsub(/^--(\[no-\])?(\S+).*$/, '\2').gsub('-', '_')
+          attr_reader(name)               unless method_defined? name
+          attr_writer(name)               unless method_defined? "#{name}="
+          alias_method("#{name}?", name)  unless method_defined? "#{name}?"
+          proc { |instance, value| instance.public_send("#{name}=", value) }
+        end
+
+        on_initialize do |instance|
+          instance.parser.on(*args) do |value|
+            block.call(instance, value)
+          end
+        end
+      end
+
+      def new(*)
+        attr_accessor :parser unless method_defined? :parser
+        result        = super
+        result.parser = OptionParser.new
+        on_initialize.each { |b| b[result] }
+        result
+      end
+    end
+  end
+end

data/lib/duse/cli/password_helper.rb

@@ -0,0 +1,17 @@
+module Duse
+  module PasswordHelper
+    def ask_for_password
+      loop do
+        password = terminal.ask('Password: ') { |q| q.echo = 'x' }
+        password_confirmation = terminal.ask('Confirm password: ') { |q| q.echo = 'x' }
+        return password if password == password_confirmation
+        warn 'Password and password confirmation do not match. Try again.'
+      end
+    end
+
+    def ask_for_current_password
+      terminal.ask('Current password (to confirm): ') { |q| q.echo = 'x' }
+    end
+  end
+end
+

data/lib/duse/cli/register.rb

@@ -0,0 +1,45 @@
+require 'duse/cli'
+require 'duse/cli/key_helper'
+require 'duse/cli/password_helper'
+
+module Duse
+  module CLI
+    class Register < ApiCommand
+      include KeyHelper
+      include PasswordHelper
+
+      description 'Register a new account'
+
+      skip :authenticate
+
+      def run
+        ask_for_user_input
+        user = Duse::User.create(
+          username: @username,
+          email: @email,
+          password: @password,
+          public_key: @key.public_key.to_pem
+        )
+        Duse::CLIConfig.new.save_private_key_for user, @key.to_pem
+        success 'Successfully created your account! You can now login with "duse login"'
+      end
+
+      private
+
+      def ask_for_user_input
+        @username = choose_username
+        @email = choose_email
+        @password = ask_for_password
+        @key = choose_key
+      end
+
+      def choose_username
+        terminal.ask('Username: ')
+      end
+
+      def choose_email
+        terminal.ask('Email: ')
+      end
+    end
+  end
+end

data/lib/duse/cli/secret.rb

@@ -0,0 +1,19 @@
+require 'duse/cli/secret_add'
+require 'duse/cli/secret_get'
+require 'duse/cli/secret_list'
+require 'duse/cli/secret_remove'
+require 'duse/cli/secret_update'
+
+module Duse
+  module CLI
+    class Secret < MetaCommand
+      subcommand SecretAdd
+      subcommand SecretGet
+      subcommand SecretList
+      subcommand SecretRemove
+      subcommand SecretUpdate
+
+      description 'Save, retrieve and delete secrets'
+    end
+  end
+end

data/lib/duse/cli/secret_add.rb

@@ -0,0 +1,38 @@
+require 'duse/cli'
+require 'openssl'
+require 'duse/cli/key_helper'
+require 'duse/cli/share_with_user'
+require 'duse/cli/secret_generator'
+
+module Duse
+  module CLI
+    class SecretAdd < ApiCommand
+      include KeyHelper
+      include ShareWithUser
+
+      description 'Save a new secret'
+
+      on('-t', '--title [TITLE]',   'The title for the secret to save')
+      on('-s', '--secret [SECRET]', 'The secret to save')
+      on('-g', '--generate-secret', 'Automatically generate the secret')
+      on('-f', '--file [FILE]',     'Read the secret to save from this file')
+
+      def run
+        self.title  ||= terminal.ask 'What do you want to call this secret? '
+        self.secret = File.read(self.file) if file?
+        self.secret = SecretGenerator.new.generated_password if generate_secret?
+        self.secret ||= terminal.ask 'Secret to save: '
+        users       = who_to_share_with
+
+        user = Duse::User.current
+        ensure_matching_keys_for user
+        private_key = config.private_key_for user
+        secret      = Duse::Client::Secret.new title: self.title, secret_text: self.secret, users: users
+        secret_hash = Duse::Client::SecretMarshaller.new(secret, private_key).to_h
+
+        response = Duse::Secret.create secret_hash
+        success 'Secret successfully created!'
+      end
+    end
+  end
+end

data/lib/duse/cli/secret_generator.rb

@@ -0,0 +1,10 @@
+require 'securerandom'
+
+module Duse
+  class SecretGenerator
+    def generated_password
+      SecureRandom.base64(32)
+    end
+  end
+end
+

data/lib/duse/cli/secret_get.rb

@@ -0,0 +1,40 @@
+require 'duse/cli'
+require 'openssl'
+require 'duse/cli/key_helper'
+
+module Duse
+  module CLI
+    class SecretGet < ApiCommand
+      include KeyHelper
+      description 'Retrieve a secret'
+
+      on('-p', '--plain', 'Print the decrypted secret plain, without additional information.')
+
+      def run(secret_id = nil)
+        secret_id ||= terminal.ask('Secret to retrieve: ').to_i
+
+        secret = Duse::Secret.find secret_id
+        print_secret(secret)
+      end
+
+      def print_secret(secret)
+        user = Duse::User.current
+        ensure_matching_keys_for user
+        private_key = config.private_key_for user
+        plain_secret = secret.decrypt(private_key)
+
+        if plain?
+          print plain_secret
+          $stdout.flush
+          return
+        end
+
+        say "
+          Name:   #{secret.title}
+          Secret: #{plain_secret}
+          Access: #{secret.users.map(&:username).join(', ')}
+        ".gsub(/^( |\t)+/, "")
+      end
+    end
+  end
+end

data/lib/duse/cli/secret_list.rb

@@ -0,0 +1,20 @@
+require 'duse/cli'
+
+module Duse
+  module CLI
+    class SecretList < ApiCommand
+      description 'List all secrets you have access to'
+
+      def run
+        secrets = Duse::Secret.all
+        secrets.each do |s|
+          puts "#{s.id}: #{s.title}"
+        end
+        if secrets.empty?
+          say 'You have not yet saved any secrets, ' \
+            'you can do so with "duse secret save".'
+        end
+      end
+    end
+  end
+end

data/lib/duse/cli/secret_remove.rb

@@ -0,0 +1,19 @@
+require 'duse/cli'
+
+module Duse
+  module CLI
+    class SecretRemove < ApiCommand
+      description 'Delete a secret'
+
+      def run(secret_id = nil)
+        secret_id ||= terminal.ask('Secret to delete: ').to_i
+
+        Duse::Secret.delete secret_id
+
+        success 'Successfully deleted'
+      rescue Duse::Client::Error => e
+        error e.message
+      end
+    end
+  end
+end

data/lib/duse/cli/secret_update.rb

@@ -0,0 +1,44 @@
+require 'duse/cli'
+require 'openssl'
+require 'duse/cli/key_helper'
+require 'duse/cli/share_with_user'
+
+module Duse
+  module CLI
+    class SecretUpdate < ApiCommand
+      include KeyHelper
+      include ShareWithUser
+
+      description 'Save a new secret'
+
+      def run(secret_id = nil)
+        secret_id ||= terminal.ask('Secret to update: ').to_i
+
+        user = Duse::User.current
+        ensure_matching_keys_for user
+        private_key = config.private_key_for user
+        secret = Duse::Secret.find secret_id
+        print_secret secret, private_key
+        secret = update_secret(secret)
+        secret_hash  = Duse::Client::SecretMarshaller.new(secret, private_key).to_h
+
+        response = Duse::Secret.update secret_id, secret_hash
+        success 'Secret successfully updated!'
+      end
+
+      private
+
+      def print_secret(secret, private_key)
+        puts "\nName:   #{secret.title}"
+        puts "Secret: #{secret.decrypt(private_key)}\n"
+      end
+
+      def update_secret(secret)
+        title       = terminal.ask 'What do you want to call this secret? ' if terminal.agree 'Change the title? '
+        secret_text = terminal.ask 'Secret to save: ' if terminal.agree 'Change the secret? '
+        users       = who_to_share_with if terminal.agree 'Change accessible users? '
+        Duse::Client::Secret.new title: title, secret_text: secret_text, users: users
+      end
+    end
+  end
+end

data/lib/duse/cli/share_with_user.rb

@@ -0,0 +1,53 @@
+class CommaSeparatedIntegerList
+  def initialize(string)
+    @list = string.split(',').map(&:strip).delete_if(&:empty?).map(&:to_i)
+  end
+
+  def map(&block)
+    @list.map(&block)
+  end
+end
+
+module Duse
+  module CLI
+    module ShareWithUser
+      class InvalidSelection < StandardError; end
+
+      private
+
+      def who_to_share_with
+        required_users = [Duse::User.find('me'), Duse::User.find('server')]
+        wants_to_share = terminal.agree 'Do you want to share this secret?[Y/n] '
+        return required_users unless wants_to_share
+        required_users + select_users(required_users)
+      end
+
+      def select_users(ignored_users = [])
+        users = Duse::User.all
+        users = users.delete_if { |u| ignored_users.map(&:id).include? u.id }
+        return [] if users.empty?
+        terminal.say 'Who do you want to share this secret with?'
+        select_from_list(users, :username)
+      end
+
+      def select_from_list(subjects, method = :to_s)
+        print_list(subjects, method)
+        selection = terminal.ask 'Separate with commas, to select multiple'
+        CommaSeparatedIntegerList.new(selection).map do |i|
+          fail InvalidSelection if subjects[i-1].nil?
+          subjects[i-1]
+        end
+      rescue InvalidSelection
+        warn 'One or more of your selections are invalid. Please try again'
+        select_from_list(subjects, method)
+      end
+
+      def print_list(items, method = :to_s)
+        items.each_with_index do |item, index|
+          terminal.say "#{index+1}: #{item.public_send(method)}"
+        end
+      end
+    end
+  end
+end
+

data/lib/duse/cli/version.rb

@@ -0,0 +1,12 @@
+module Duse
+  module CLI
+    class Version < Command
+      description 'print the client version'
+
+      def run
+        say Duse::VERSION
+      end
+    end
+  end
+end
+

data/lib/duse/client/config.rb

@@ -0,0 +1,36 @@
+require 'uri'
+
+module Duse
+  module Client
+    class Config
+      attr_reader :settings
+
+      def initialize(settings = {})
+        @settings = settings
+      end
+
+      def uri=(uri)
+        fail ArgumentError, 'Not an uri' unless uri =~ URI.regexp
+        settings['uri'] = uri
+      end
+
+      def uri
+        settings['uri']
+      end
+
+      def token=(token)
+        fail ArgumentError, 'Token must be a string'  unless token.is_a? String
+        fail ArgumentError, 'Token must not be empty' if token.empty?
+        settings['token'] = token
+      end
+
+      def token
+        settings['token']
+      end
+
+      def to_h
+        settings.clone
+      end
+    end
+  end
+end