penguins-eggs 25.11.29 → 25.12.15

package/dist/commands/produce.js

@@ -144,7 +144,7 @@ export default class Produce extends Command {
             const yolkRenew = flags.yolk;
             const { nointeractive } = flags;
             const { noicon } = flags;
-            // if clone or homecrypt includeRootHome = true
+            // if clone, homecrypt, fullcrypt
             const includeRootHome = flags.includeRootHome || clone || homecrypt;
             let { kernel } = flags;
             if (kernel === undefined) {
@@ -209,14 +209,23 @@ export default class Produce extends Command {
                 let message = "this is a GUI system, calamares is available, but NOT installed\n";
                 Utils.warning(message);
             }
-            if (fullcrypt) {
+            /**
+             * se è appImage e fullcrypt esce
+             */
+            if (Utils.isAppImage() && fullcrypt) {
+                Utils.warning("eggs produce --fullcrypt cannot be used on AppImage");
+                console.log(`\nyou can try: "sudo eggs produce --homecrypt"`);
+                process.exit(9);
+            }
+            if (!Utils.isAppImage() && fullcrypt) {
                 const distro = new Distro();
-                if (distro.familyId === 'debian') {
-                    Utils.info("Use penguins-eggs and this option in particular with extreme caution, and ALWAYS first try it out in a test environment.");
+                if (distro.familyId === 'debian' && (distro.codenameId === 'trixie' || distro.codenameId === 'excalibur')) {
+                    Utils.info("Use eggs --fullcrypt with extreme caution, and ALWAYS first try it out in a test environment.");
                     Utils.sleep(3000);
                 }
                 else {
-                    Utils.warning("This option is still in the experimental phase and can only be tested on Debian trixie");
+                    Utils.warning(`eggs produce --fullcrypt cannot be used on ${distro.distroId}/${distro.codenameId}`);
+                    console.log(`\nyou can try: "sudo eggs produce --homecrypt"`);
                     process.exit(9);
                 }
             }

package/dist/commands/setup/install.js

@@ -10,7 +10,7 @@ import Utils from '../../classes/utils.js';
 import Pacman from '../../classes/pacman.js';
 import { Command } from '@oclif/core';
 import { DependencyManager } from '../../appimage/dependency-manager.js';
-import { execSync } from 'node:child_process';
+import { execSync } from '../../lib/utils.js';
 export default class Install extends Command {
     static description = 'Automatically check and install system prerequisites';
     static examples = [

package/dist/commands/setup/purge.js

@@ -10,7 +10,7 @@ import Utils from '../../classes/utils.js';
 import Pacman from '../../classes/pacman.js';
 import { Command } from '@oclif/core';
 import { DependencyManager } from '../../appimage/dependency-manager.js';
-import { execSync } from 'node:child_process';
+import { execSync } from '../../lib/utils.js';
 export default class Purge extends Command {
     static description = 'Automatically check and install system prerequisites';
     static examples = [

package/dist/commands/tools/yolk.js

@@ -7,7 +7,7 @@
  */
 import { Command, Flags } from '@oclif/core';
 import fs from 'node:fs';
-import shx from 'shelljs';
+import { shx } from '../../lib/utils.js';
 import Utils from '../../classes/utils.js';
 import Yolk from '../../classes/yolk.js';
 /**

package/dist/commands/update.js

@@ -11,8 +11,7 @@ import Distro from '../classes/distro.js';
 import Tools from '../classes/tools.js';
 import Utils from '../classes/utils.js';
 import Diversions from '../classes/diversions.js';
-import { exec } from '../lib/utils.js';
-import { spawn } from 'child_process';
+import { exec, spawn } from '../lib/utils.js';
 import axios from 'axios';
 import https from 'node:https';
 const agent = new https.Agent({

package/dist/interfaces/calamares/i-calamares-branding.d.ts

@@ -1,46 +1,64 @@
 /**
  * ./src/interfaces/i-calamares-branding.ts
- * penguins-eggs v.25.7.x / ecmascript 2020
+ * penguins-eggs v.25.x / ecmascript 2020
  * author: Piero Proietti
  * email: piero.proietti@gmail.com
  * license: MIT
+ *
+ * Questa interfaccia è allineata con la struttura reale di branding.desc
+ * (basata sull'output 'cat /etc/calamares/branding/eggs/branding.desc').
+ */
+/**
+ * 💡 Interfaccia per la sezione 'strings'
+ * Contiene le informazioni testuali del prodotto.
+ */
+export interface IBrandingStrings {
+    bootloaderEntryName: string;
+    knownIssuesUrl: string;
+    productName: string;
+    productUrl: string;
+    releaseNotesUrl: string;
+    shortProductName: string;
+    shortVersion: string;
+    shortVersionedName: string;
+    supportUrl: string;
+    version: string;
+    versionedName: string;
+}
+/**
+ * 💡 Interfaccia per la sezione 'images'
+ * Contiene i nomi dei file delle risorse grafiche.
+ */
+export interface IBrandingImages {
+    productIcon: string;
+    productLogo: string;
+    productWelcome: string;
+}
+/**
+ * 💡 Interfaccia per la sezione 'style'
+ * Contiene le definizioni dei colori per l'interfaccia.
+ * Nota: Sono incluse sia le varianti con maiuscola che minuscola trovate nel tuo file.
+ */
+export interface IBrandingStyle {
+    SidebarBackground: string;
+    SidebarBackgroundCurrent: string;
+    SidebarText: string;
+    SidebarTextCurrent: string;
+    sidebarBackground: string;
+    sidebarBackgroundCurrent: string;
+    sidebarText: string;
+    sidebarTextCurrent: string;
+}
+/**
+ * 💡 Interfaccia Principale: IBranding
+ * Mappa la struttura radice del file YAML branding.desc.
  */
 export interface IBranding {
-    /** Il nome completo della distribuzione (es. "My Awesome OS"). */
-    string_product_name: string;
-    /** La versione della distribuzione (es. "2025.10"). */
-    string_product_version: string;
-    /** Un URL per il sito web del progetto. */
-    string_product_url?: string;
-    /** Un titolo per le note di rilascio. */
-    string_release_title?: string;
-    /** Il colore principale usato per gli accenti (pulsanti, selezioni). */
-    color_accent?: string;
-    /** Colore del testo principale. */
-    color_text?: string;
-    /** Colore di sfondo principale della finestra. */
-    color_background?: string;
-    /** Colore di sfondo della barra laterale. */
-    color_sidebar_background?: string;
-    /** Colore del testo nella barra laterale. */
-    color_sidebar_text?: string;
-    /** Logo principale mostrato nell'installer. */
-    logo?: string;
-    /** Icona del prodotto. */
-    product_icon?: string;
-    /** Icona della finestra dell'applicazione. */
-    window_icon?: string;
-    /** Larghezza iniziale della finestra in pixel. */
-    window_width?: number;
-    /** Altezza iniziale della finestra in pixel. */
-    window_height?: number;
-    /** Se `true`, posiziona la barra laterale a sinistra (default), altrimenti a destra. */
-    sidebar_on_left?: boolean;
-    /**
-     * L'API da usare per lo slideshow. 'qml' per le slideshow tradizionali,
-     * 'contextual' per quelle basate sul modulo in esecuzione.
-     */
-    slideshow_api?: 'qml' | 'contextual';
-    /** Percorso al file QML principale dello slideshow (se slideshow_api è 'qml'). */
-    slideshow_qml_path?: string;
+    componentName: string;
+    slideshow: string;
+    slideshowAPI: number;
+    welcomeStyleCalamares: boolean;
+    images: IBrandingImages;
+    strings: IBrandingStrings;
+    style: IBrandingStyle;
 }

package/dist/interfaces/calamares/i-calamares-branding.js

@@ -1 +1,11 @@
+/**
+ * ./src/interfaces/i-calamares-branding.ts
+ * penguins-eggs v.25.x / ecmascript 2020
+ * author: Piero Proietti
+ * email: piero.proietti@gmail.com
+ * license: MIT
+ *
+ * Questa interfaccia è allineata con la struttura reale di branding.desc
+ * (basata sull'output 'cat /etc/calamares/branding/eggs/branding.desc').
+ */
 export {};

package/dist/interfaces/i-exec.d.ts

@@ -8,4 +8,5 @@
 export interface IExec {
     code: number;
     data: string;
+    error?: string;
 }

package/dist/krill/classes/prepare.d/location.js

@@ -12,7 +12,7 @@ import Location from '../../components/location.js';
 import selectRegions from '../../lib/select_regions.js';
 import selectZones from '../../lib/select_zones.js';
 import axios from 'axios';
-import shx from 'shelljs';
+import { shx } from '../../../lib/utils.js';
 /**
  *
  * @param this

package/dist/krill/classes/prepare.d/partitions.js

@@ -14,7 +14,7 @@ import selectFileSystemType from '../../lib/select_filesystem_type.js';
 import selectInstallationDevice from '../../lib/select_installation_device.js';
 import selectReplacedPartition from '../../lib/select_replaced_partition.js';
 import selectUserSwapChoice from '../../lib/select_user_swap_choice.js';
-import shx from 'shelljs';
+import { shx } from '../../../lib/utils.js';
 import selectInstallationMode from '../../lib/select_installation_mode.js';
 /**
  * PARTITIONS

package/dist/krill/classes/prepare.d/users.js

@@ -13,7 +13,7 @@ import getUsername from '../../lib/get_username.js';
 import getUserfullname from '../../lib/get_userfullname.js';
 import getPassword from '../../lib/get_password.js';
 import getHostname from '../../lib/get_hostname.js';
-import shx from 'shelljs';
+import { shx } from '../../../lib/utils.js';
 /**
  * USERS
  */
@@ -36,7 +36,7 @@ export async function users() {
     }
     let hostname = this.krillConfig.hostname;
     if (hostname === '' || hostname === undefined) {
-        hostname = shx.exec('cat /etc/hostname').trim();
+        hostname = shx.exec('cat /etc/hostname', { silent: true }).stdout.trim();
     }
     let autologin = true;
     let sameUserPassword = true;

package/dist/krill/classes/prepare.js

@@ -8,7 +8,7 @@
  */
 import os from 'os';
 import fs from 'fs';
-import shx from 'shelljs';
+import { shx } from '../../lib/utils.js';
 import axios from 'axios';
 import { SwapChoice, InstallationMode, FsType } from './krill_enums.js';
 import Keyboards from '../../classes/keyboards.js';
@@ -199,15 +199,15 @@ export default class Krill {
     generateHostname(ip, random) {
         let hostname = this.krillConfig.hostname;
         if (hostname === '') {
-            hostname = shx.exec('cat /etc/hostname', { silent: true }).trim();
+            hostname = shx.exec('cat /etc/hostname', { silent: true }).stdout.trim();
         }
         if (ip) {
             hostname = 'ip-' + Utils.address().replaceAll('.', '-');
         }
         if (random) {
-            const fl = shx.exec(`tr -dc a-z </dev/urandom | head -c 2 ; echo ''`, { silent: true }).trim();
-            const n = shx.exec(`tr -dc 0-9 </dev/urandom | head -c 3 ; echo ''`, { silent: true }).trim();
-            const sl = shx.exec(`tr -dc a-z </dev/urandom | head -c 2 ; echo ''`, { silent: true }).trim();
+            const fl = shx.exec(`tr -dc a-z </dev/urandom | head -c 2 ; echo ''`, { silent: true }).stdout.trim();
+            const n = shx.exec(`tr -dc 0-9 </dev/urandom | head -c 3 ; echo ''`, { silent: true }).stdout.trim();
+            const sl = shx.exec(`tr -dc a-z </dev/urandom | head -c 2 ; echo ''`, { silent: true }).stdout.trim();
             hostname = `${os.hostname()}-${fl}${n}${sl}`;
         }
         return hostname;

package/dist/krill/classes/sequence.d/add_user.d.ts

@@ -1,20 +1,8 @@
 /**
- * ./src/krill/modules/add-user.ts
+ * ./src/krill/classes/secquence.d/add-user.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Replaces chroot/binary dependencies with pure Node.js manipulation.
  */
 import Sequence from '../sequence.js';
-/**
- *
- * @param this
- * @param username
- * @param password
- * @param fullusername
- * @param roomNumber
- * @param workPhone
- * @param homePhone
- */
 export default function addUser(this: Sequence, username?: string, password?: string, fullusername?: string, roomNumber?: string, workPhone?: string, homePhone?: string): Promise<void>;

package/dist/krill/classes/sequence.d/add_user.js

@@ -1,77 +1,107 @@
 /**
- * ./src/krill/modules/add-user.ts
+ * ./src/krill/classes/secquence.d/add-user.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Replaces chroot/binary dependencies with pure Node.js manipulation.
  */
-import Utils from '../../../classes/utils.js';
+import SysUsers from '../../../classes/sys-users.js';
+import { exec } from '../../../lib/utils.js';
 import fs from 'fs';
+import path from 'path';
 import yaml from 'js-yaml';
-import { exec } from '../../../lib/utils.js';
-/**
- *
- * @param this
- * @param username
- * @param password
- * @param fullusername
- * @param roomNumber
- * @param workPhone
- * @param homePhone
- */
 export default async function addUser(username = 'live', password = 'evolution', fullusername = '', roomNumber = '', workPhone = '', homePhone = '') {
-    // adduser user
-    let cmd = `chroot ${this.installTarget} adduser ${username} --home /home/${username} --shell /bin/bash --disabled-password --gecos "${fullusername},${roomNumber},${workPhone},${homePhone}" ${this.toNull}`;
-    if (this.distro.familyId === 'archlinux') {
-        cmd = `chroot ${this.installTarget} useradd --create-home --shell /bin/bash ${username} ${this.toNull}`;
-    }
-    else if (this.distro.familyId === 'fedora') {
-        cmd = `chroot ${this.installTarget} adduser ${username} --create-home --shell /bin/bash --comment "${fullusername},${roomNumber},${workPhone},${homePhone}" ${this.toNull}`;
-    }
-    else if (this.distro.familyId === 'openmamba') {
-        cmd = `chroot ${this.installTarget} useradd ${username} --create-home --shell /bin/bash --comment "${fullusername},${roomNumber},${workPhone},${homePhone}" ${this.toNull}`;
-    }
-    else if (this.distro.familyId === 'opensuse') {
-        cmd = `chroot ${this.installTarget} useradd ${username} --create-home --shell /bin/bash --comment "${fullusername},${roomNumber},${workPhone},${homePhone}" ${this.toNull}`;
+    const target = this.installTarget;
+    const familyId = this.distro.familyId;
+    // --- 1. INIZIALIZZAZIONE SYSUSERS ---
+    const sysUsers = new SysUsers(target, familyId);
+    sysUsers.load(); // Carica passwd, shadow, group in memoria
+    console.log(`Creating user ${username} via SysUsers (Safe Mode)...`);
+    // --- 2. PREPARAZIONE DATI ---
+    // Shell detection (Fallback per Alpine/Minimal)
+    let shell = '/bin/bash';
+    if (!fs.existsSync(path.join(target, 'bin/bash')) && fs.existsSync(path.join(target, 'bin/ash'))) {
+        shell = '/bin/ash';
     }
-    await exec(cmd, this.echo);
-    cmd = `echo ${username}:${password} | chroot ${this.installTarget} /usr/sbin/chpasswd ${this.toNull}`;
-    await exec(cmd, this.echo);
-    let group = 'wheel';
-    if (this.distro.familyId === 'debian') {
-        group = 'sudo';
+    // Definizione oggetto utente
+    const newUser = {
+        username: username,
+        password: 'x',
+        uid: '1000', // Hardcoded per il primo utente (standard installer)
+        gid: '1000',
+        gecos: `${fullusername},${roomNumber},${workPhone},${homePhone}`,
+        home: `/home/${username}`,
+        shell: shell
+    };
+    // --- 3. MODIFICHE LOGICHE (IN MEMORIA) ---
+    // Aggiunge l'utente (gestisce passwd, shadow, group primario, subuid)
+    sysUsers.addUser(newUser, password);
+    // Aggiungi ai gruppi amministrativi (logica distro)
+    let adminGroup = 'wheel';
+    if (['debian', 'ubuntu', 'linuxmint', 'pop', 'neon'].includes(familyId)) {
+        adminGroup = 'sudo';
     }
-    else if (this.distro.familyId === 'openmamba') {
-        group = 'sysadmin';
+    else if (familyId === 'openmamba') {
+        adminGroup = 'sysadmin';
     }
-    cmd = `chroot ${this.installTarget} usermod -aG ${group} ${username} ${this.toNull}`;
-    await exec(cmd, this.echo);
-    // add autologin group in archlinux
-    await exec(cmd, this.echo);
-    if (this.distro.familyId === 'archlinux') {
-        await exec(`chroot ${this.installTarget} getent group autologin || groupadd autologin`);
-        await exec(`chroot ${this.installTarget} usermod -aG autologin ${username}`);
-    }
-    /**
-     * look to calamares/modules/users.conf for groups
-     */
+    sysUsers.addUserToGroup(username, adminGroup);
+    // Aggiungi ai gruppi definiti in Calamares/Eggs config
     let usersConf = '/etc/calamares/modules/users.conf';
     if (!fs.existsSync(usersConf)) {
         usersConf = '/etc/penguins-eggs.d/krill/modules/users.conf';
     }
     if (fs.existsSync(usersConf)) {
-        const o = yaml.load(fs.readFileSync(usersConf, 'utf8'));
-        for (const group of o.defaultGroups) {
-            const groupExists = await exec(`getent group ${group}`);
-            if (groupExists.code == 0) {
-                let addGroup = `chroot ${this.installTarget} usermod -aG ${group} ${username}`;
-                await exec(addGroup);
+        try {
+            const content = fs.readFileSync(usersConf, 'utf8');
+            const o = yaml.load(content);
+            if (o && o.defaultGroups) {
+                for (const grp of o.defaultGroups) {
+                    sysUsers.addUserToGroup(username, grp);
+                }
             }
         }
+        catch (e) {
+            console.error('Warning: Error parsing users.conf, skipping extra groups.', e);
+        }
+    }
+    // Fix specifico Archlinux (Autologin)
+    if (familyId === 'archlinux') {
+        sysUsers.addUserToGroup(username, 'autologin');
+    }
+    // --- 4. SALVATAGGIO ATOMICO SU DISCO ---
+    // Scrive tutti i file di config e applica chcon (SELinux) se necessario
+    await sysUsers.save();
+    // --- 5. CREAZIONE FISICA HOME DIRECTORY ---
+    // Queste operazioni toccano il filesystem reale, quindi usiamo exec/fs
+    const homeDir = path.join(target, newUser.home);
+    // Cleanup preventivo
+    await exec(`rm -rf ${homeDir}`, this.echo);
+    // Creazione da /etc/skel
+    const skelPath = path.join(target, 'etc', 'skel');
+    if (fs.existsSync(skelPath)) {
+        await exec(`mkdir -p ${homeDir}`, this.echo);
+        await exec(`cp -rT ${skelPath} ${homeDir}`, this.echo);
     }
     else {
-        console.log(`cannot find: ${usersConf}!`);
-        await Utils.pressKeyToExit();
+        await exec(`mkdir -p ${homeDir}`, this.echo);
+    }
+    // Permessi e Proprietario
+    await exec(`chown -R ${newUser.uid}:${newUser.gid} ${homeDir}`, this.echo);
+    // Privacy: 700 è meglio di 755 per la home utente
+    await exec(`chmod 700 ${homeDir}`, this.echo);
+    // --- 6. FIX SELINUX FINALE (HOME & RELABEL) ---
+    // SysUsers ha sistemato /etc/*, ma la home directory è appena stata creata
+    // e potrebbe avere contesti errati.
+    if (['fedora', 'rhel', 'centos', 'almalinux', 'rocky'].includes(familyId)) {
+        try {
+            console.log('Applying SELinux contexts to home directory...');
+            // Fix contesto home
+            await exec(`chcon -R -t user_home_t ${homeDir}`, { echo: false }).catch(() => { });
+            // Fix "Nuclear Option": forza relabel al boot se qualcosa fosse sfuggito
+            await exec(`touch ${target}/.autorelabel`, { echo: false });
+        }
+        catch (e) {
+            console.error('SELinux home fix warning:', e);
+        }
     }
+    console.log(`User ${username} successfully configured via SysUser Master.`);
 }

package/dist/krill/classes/sequence.d/change_password.d.ts

@@ -1,15 +1,13 @@
 /**
- * ./src/krill/modules/change-password.ts
+ * src/krill/modules/change-password.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Changes user password directly in /etc/shadow safely (No binaries, SELinux safe).
  */
 import Sequence from '../sequence.js';
 /**
  * changePassword
- * @param name
- * @param newPassword
+ * @param name - Username to update
+ * @param newPassword - New plain text password
  */
 export default function changePassword(this: Sequence, name?: string, newPassword?: string): Promise<void>;

package/dist/krill/classes/sequence.d/change_password.js

@@ -1,18 +1,33 @@
 /**
- * ./src/krill/modules/change-password.ts
+ * src/krill/modules/change-password.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Changes user password directly in /etc/shadow safely (No binaries, SELinux safe).
  */
-import { exec } from '../../../lib/utils.js';
+import SysUsers from '../../../classes/sys-users.js';
+import fs from 'fs';
 /**
  * changePassword
- * @param name
- * @param newPassword
+ * @param name - Username to update
+ * @param newPassword - New plain text password
  */
 export default async function changePassword(name = 'live', newPassword = 'evolution') {
-    const cmd = `echo ${name}:${newPassword} | chroot ${this.installTarget} /usr/sbin/chpasswd ${this.toNull}`;
-    await exec(cmd, this.echo);
+    const target = this.installTarget;
+    const familyId = this.distro.familyId;
+    console.log(`Changing password for user '${name}' via SysUsers...`);
+    // 1. CARICAMENTO
+    // Se non esiste il target (caso strano), usciamo
+    if (!fs.existsSync(target)) {
+        console.error(`Error: Target ${target} not found for password change.`);
+        return;
+    }
+    const sysUsers = new SysUsers(target, familyId);
+    sysUsers.load();
+    // 2. MODIFICA (In Memoria)
+    // La classe SysUsers ha già il metodo setPassword che usa bcryptjs
+    // e aggiorna il timestamp di lastChange.
+    sysUsers.setPassword(name, newPassword);
+    // 3. SALVATAGGIO (Atomico + SELinux Fix)
+    await sysUsers.save();
+    console.log(`Password updated for '${name}'.`);
 }

package/dist/krill/classes/sequence.d/del_live_user.d.ts

@@ -1,14 +1,12 @@
 /**
- * ./src/krill/modules/del-live-user.ts
+ * src/krill/classes/sequence.d/del_live_user.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Removes the live user from the installed target safely (SELinux friendly).
  */
 import Sequence from '../sequence.js';
 /**
- * delUser
- * va corretto con users.conf di calamares
+ * delLiveUser
+ * Rimuove l'utente live dal sistema installato (target)
  */
 export default function delLiveUser(this: Sequence): Promise<void>;

package/dist/krill/classes/sequence.d/del_live_user.js

@@ -1,39 +1,53 @@
 /**
- * ./src/krill/modules/del-live-user.ts
+ * src/krill/classes/sequence.d/del_live_user.ts
  * penguins-eggs v.25.7.x / ecmascript 2020
- * author: Piero Proietti
- * email: piero.proietti@gmail.com
- * license: MIT
- * https://stackoverflow.com/questions/23876782/how-do-i-split-a-typescript-class-into-multiple-files
+ * * REFACTORED: Uses "The SysUser Master" class.
+ * Removes the live user from the installed target safely (SELinux friendly).
  */
+import SysUsers from '../../../classes/sys-users.js';
 import Utils from '../../../classes/utils.js';
 import { exec } from '../../../lib/utils.js';
+import fs from 'fs';
+import path from 'path';
 /**
- * delUser
- * va corretto con users.conf di calamares
+ * delLiveUser
+ * Rimuove l'utente live dal sistema installato (target)
  */
 export default async function delLiveUser() {
+    // Eseguiamo solo se siamo in modalità live (ovvero stiamo installando da una ISO)
     if (Utils.isLive()) {
-        const user = this.settings.config.user_opt;
-        let userExists = false;
-        try {
-            const cmd = `#!/bin/sh\ngetent passwd "${user}"  > /dev/null`;
-            await exec(cmd, Utils.setEcho(this.verbose));
-            userExists = true;
+        // Recuperiamo il nome utente live (default: 'live' o quello impostato in build)
+        const liveUsername = this.settings.config.user_opt || 'live';
+        const target = this.installTarget;
+        const familyId = this.distro.familyId;
+        console.log(`Removing live user '${liveUsername}' from target via SysUsers...`);
+        // --- 1. CARICAMENTO CONFIGURAZIONE ---
+        // Istanziamo il nostro "Master" puntando alla root del sistema installato
+        const sysUsers = new SysUsers(target, familyId);
+        sysUsers.load();
+        // --- 2. RIMOZIONE LOGICA (IN MEMORIA) ---
+        // Rimuove l'utente da passwd, shadow, group e dai membri dei gruppi extra
+        sysUsers.removeUser(liveUsername);
+        // --- 3. SALVATAGGIO ATOMICO ---
+        // Scrive i file fisici e ripristina i contesti SELinux in un colpo solo
+        await sysUsers.save();
+        // --- 4. PULIZIA FILESYSTEM (File non gestiti da SysUsers) ---
+        // a) Home Directory
+        const homeDir = path.join(target, 'home', liveUsername);
+        if (fs.existsSync(homeDir)) {
+            await exec(`rm -rf ${homeDir}`, this.echo);
         }
-        catch (error) {
-            console.log(error);
+        // b) File Sudoers (spesso creato in /etc/sudoers.d/)
+        const sudoersFile = path.join(target, 'etc', 'sudoers.d', liveUsername);
+        if (fs.existsSync(sudoersFile)) {
+            fs.unlinkSync(sudoersFile);
+            console.log(`Removed sudoers file: ${sudoersFile}`);
         }
-        finally {
-            if (userExists) {
-                let cmd = `chroot ${this.installTarget} deluser --remove-home ${user} ${this.toNull}`;
-                if (this.distro.familyId === 'archlinux' ||
-                    this.distro.familyId === 'fedora' ||
-                    this.distro.familyId === 'opensuse') {
-                    cmd = `chroot ${this.installTarget} sudo userdel -r ${user} ${this.toNull}`;
-                }
-                await exec(cmd, this.echo);
-            }
+        // c) Mail spool
+        const mailFile = path.join(target, 'var', 'mail', liveUsername);
+        if (fs.existsSync(mailFile)) {
+            fs.unlinkSync(mailFile);
         }
+        console.log(`Live user '${liveUsername}' removed successfully via SysUser Master.`);
     }
 }