fujin-cli 0.5.0__py3-none-any.whl → 0.7.0__py3-none-any.whl

fujin/__main__.py

@@ -1,3 +1,7 @@
+from gevent import monkey
+
+monkey.patch_all()
+
 import shlex
 import sys
 from pathlib import Path
@@ -16,6 +20,7 @@ from fujin.commands.redeploy import Redeploy
 from fujin.commands.rollback import Rollback
 from fujin.commands.server import Server
 from fujin.commands.up import Up
+from fujin.commands.printenv import Printenv
 
 if sys.version_info >= (3, 11):
     import tomllib
@@ -38,6 +43,7 @@ class Fujin:
         | Down
         | Rollback
         | Prune
+        | Printenv
     ]
 
 

fujin/commands/deploy.py

@@ -7,6 +7,7 @@ import cappa
 
 from fujin.commands import BaseCommand
 from fujin.config import InstallationMode
+from fujin.secrets import resolve_secrets
 from fujin.connection import Connection
 
 
@@ -15,14 +16,16 @@ from fujin.connection import Connection
 )
 class Deploy(BaseCommand):
     def __call__(self):
+        parsed_env = self.parse_envfile()
         self.build_app()
 
         with self.connection() as conn:
             process_manager = self.create_process_manager(conn)
             conn.run(f"mkdir -p {self.app_dir}")
+            conn.run(f"mkdir -p {self.versioned_assets_dir}")
             with conn.cd(self.app_dir):
                 self.create_hook_manager(conn).pre_deploy()
-                self.transfer_files(conn)
+                self.transfer_files(conn, env=parsed_env)
                 self.install_project(conn)
             with self.app_environment() as app_conn:
                 self.release(app_conn)
@@ -48,16 +51,31 @@ class Deploy(BaseCommand):
     def versioned_assets_dir(self) -> str:
         return f"{self.app_dir}/v{self.config.version}"
 
-    def transfer_files(self, conn: Connection):
+    def parse_envfile(self) -> str:
         if not self.config.host.envfile.exists():
             raise cappa.Exit(f"{self.config.host.envfile} not found", code=1)
-        conn.put(str(self.config.host.envfile), f"{self.app_dir}/.env")
-        conn.run(f"mkdir -p {self.versioned_assets_dir}")
+        if self.config.secret_config:
+            self.stdout.output("[blue]Reading secrets....[/blue]")
+            return resolve_secrets(self.config.host.envfile, self.config.secret_config)
+        return self.config.host.envfile.read_text()
+
+    def transfer_files(
+        self, conn: Connection, env: str, skip_requirements: bool = False
+    ):
+        conn.run(f"echo '{env}' > {self.app_dir}/.env")
         distfile_path = self.config.get_distfile_path()
         conn.put(
             str(distfile_path),
             f"{self.versioned_assets_dir}/{distfile_path.name}",
         )
+        if not skip_requirements and self.config.requirements:
+            requirements = Path(self.config.requirements)
+            if not requirements.exists():
+                raise cappa.Exit(f"{self.config.requirements} not found", code=1)
+            conn.put(
+                Path(self.config.requirements).resolve(),
+                f"{self.versioned_assets_dir}/requirements.txt",
+            )
 
     def install_project(
         self, conn: Connection, version: str | None = None, *, skip_setup: bool = False
@@ -71,14 +89,6 @@ class Deploy(BaseCommand):
     def _install_python_package(
         self, conn: Connection, version: str, skip_setup: bool = False
     ):
-        if not skip_setup and self.config.requirements:
-            requirements = Path(self.config.requirements)
-            if not requirements.exists():
-                raise cappa.Exit(f"{self.config.requirements} not found", code=1)
-            conn.put(
-                Path(self.config.requirements).resolve(),
-                f"{self.versioned_assets_dir}/requirements.txt",
-            )
         appenv = f"""
 set -a  # Automatically export all variables
 source .env

fujin/commands/init.py

@@ -54,7 +54,6 @@ def simple_config(app_name) -> dict:
         },
         "aliases": {"shell": "server exec --appenv -i bash"},
         "host": {
-            "ip": "127.0.0.1",
             "user": "root",
             "domain_name": f"{app_name}.com",
             "envfile": ".env.prod",
@@ -111,7 +110,6 @@ def binary_config(app_name: str) -> dict:
         "processes": {"web": f"{app_name} prodserver"},
         "aliases": {"shell": "server exec --appenv -i bash"},
         "host": {
-            "ip": "127.0.0.1",
             "user": "root",
             "domain_name": f"{app_name}.com",
             "envfile": ".env.prod",

fujin/commands/printenv.py

@@ -0,0 +1,16 @@
+import cappa
+
+from fujin.commands import BaseCommand
+from fujin.secrets import resolve_secrets
+
+
+@cappa.command(
+    help="Print the content of the envfile with extracted secrets (for debugging)"
+)
+class Printenv(BaseCommand):
+    def __call__(self):
+        if self.config.secret_config:
+            result = resolve_secrets(self.config.host.envfile, self.config.secret_config)
+        else:
+            result = self.config.host.envfile.read_text()
+        self.stdout.output(result)

fujin/commands/redeploy.py

@@ -15,13 +15,17 @@ from fujin.connection import Connection
 class Redeploy(BaseCommand):
     def __call__(self):
         deploy = Deploy()
+        parsed_env = deploy.parse_envfile()
         deploy.build_app()
 
         with self.app_environment() as conn:
             hook_manager = self.create_hook_manager(conn)
             hook_manager.pre_deploy()
-            deploy.transfer_files(conn)
+            conn.run(f"mkdir -p {deploy.versioned_assets_dir}")
             requirements_copied = self._copy_requirements_if_needed(conn)
+            deploy.transfer_files(
+                conn, env=parsed_env, skip_requirements=requirements_copied
+            )
             deploy.install_project(conn, skip_setup=requirements_copied)
             deploy.release(conn)
             self.create_process_manager(conn).restart_services()

fujin/config.py

@@ -14,6 +14,10 @@ python_version
 The Python version for your virtualenv. If not specified, automatically parsed from ``.python-version`` file. This is only
 required if the installation mode is set to ``python-package``
 
+requirements
+------------
+Optional path to your requirements file. This will only be used when the installation mode is set to ``python-package``
+
 versions_to_keep
 ----------------
 The number of versions to keep on the host. After each deploy, older versions are pruned based on this setting. By default, it keeps the latest 5 versions,
@@ -39,9 +43,22 @@ release_command
 ---------------
 Optional command to run at the end of deployment (e.g., database migrations).
 
-requirements
-------------
-Optional path to your requirements file. This will only be used when the installation mode is set to ``python-package``
+secrets
+-------
+
+Optional secrets configuration. If set, Fujin will load secrets from the specified secret management service.
+Check out the `secrets </secrets.html>`_ page for more information.
+
+adapter
+~~~~~~~
+The secret management service to use. Available options:
+
+- ``bitwarden``
+- ``1password``
+
+password_env
+~~~~~~~~~~~~
+Environment variable containing the password for the service account. This is only required for certain adapters.
 
 Webserver
 ---------
@@ -61,6 +78,10 @@ The address where your web application listens for requests. Supports any value
 - HTTP address (e.g., ``localhost:8000``)
 - Unix socket (e.g., ``unix//run/project.sock``)
 
+certbot_email
+~~~~~~~~~~~~~
+Required when Nginx is used as a proxy, to obtain SSL certificates.
+
 statics
 ~~~~~~~
 
@@ -101,7 +122,7 @@ Host Configuration
 
 ip
 ~~
-The IP address or hostname of the remote host.
+The IP address or anything that resolves to the remote host IP's. This is use to communicate via ssh with the server, if omitted it's value will default to the one of the ``domain_name``.
 
 domain_name
 ~~~~~~~~~~~
@@ -162,7 +183,6 @@ from __future__ import annotations
 
 import os
 import sys
-from functools import cached_property
 from pathlib import Path
 
 import msgspec
@@ -182,6 +202,16 @@ class InstallationMode(StrEnum):
     BINARY = "binary"
 
 
+class SecretAdapter(StrEnum):
+    BITWARDEN = "bitwarden"
+    ONE_PASSWORD = "1password"
+
+
+class SecretConfig(msgspec.Struct):
+    adapter: SecretAdapter
+    password_env: str | None = None
+
+
 class Config(msgspec.Struct, kw_only=True):
     app_name: str = msgspec.field(name="app")
     version: str = msgspec.field(default_factory=lambda: read_version_from_pyproject())
@@ -199,6 +229,7 @@ class Config(msgspec.Struct, kw_only=True):
     requirements: str | None = None
     hooks: HooksDict = msgspec.field(default_factory=dict)
     local_config_dir: Path = Path(".fujin")
+    secret_config: SecretConfig | None = msgspec.field(name="secrets", default=None)
 
     def __post_init__(self):
         if self.installation_mode == InstallationMode.PY_PACKAGE:
@@ -234,7 +265,7 @@ class Config(msgspec.Struct, kw_only=True):
 
 
 class HostConfig(msgspec.Struct, kw_only=True):
-    ip: str
+    ip: str | None = None
     domain_name: str
     user: str
     _envfile: str = msgspec.field(name="envfile")
@@ -245,6 +276,7 @@ class HostConfig(msgspec.Struct, kw_only=True):
 
     def __post_init__(self):
         self.apps_dir = f"/home/{self.user}/{self.apps_dir}"
+        self.ip = self.ip or self.domain_name
 
     def to_dict(self):
         d = {f: getattr(self, f) for f in self.__struct_fields__}
@@ -280,6 +312,7 @@ class HostConfig(msgspec.Struct, kw_only=True):
 class Webserver(msgspec.Struct):
     upstream: str
     type: str = "fujin.proxies.caddy"
+    certbot_email: str | None = None
     statics: dict[str, str] = msgspec.field(default_factory=dict)
 
 

fujin/proxies/nginx.py

@@ -1,6 +1,5 @@
 from __future__ import annotations
 
-import os
 from pathlib import Path
 
 import msgspec
@@ -8,8 +7,6 @@ import msgspec
 from fujin.config import Config
 from fujin.connection import Connection
 
-CERTBOT_EMAIL = os.getenv("CERTBOT_EMAIL")
-
 
 class WebProxy(msgspec.Struct):
     conn: Connection
@@ -18,6 +15,7 @@ class WebProxy(msgspec.Struct):
     upstream: str
     statics: dict[str, str]
     local_config_dir: Path
+    certbot_email: str | None = None
 
     @property
     def config_file(self) -> Path:
@@ -32,23 +30,24 @@ class WebProxy(msgspec.Struct):
             app_name=config.app_name,
             local_config_dir=config.local_config_dir,
             statics=config.webserver.statics,
+            certbot_email=config.webserver.certbot_email,
         )
 
     def run_pty(self, *args, **kwargs):
-        return self.conn.run(*args, **kwargs, pty=True)
+        return self.run_pty(*args, **kwargs, pty=True)
 
     def install(self):
-        self.conn.run(
+        self.run_pty(
             "sudo apt install -y nginx libpq-dev python3-dev python3-certbot-nginx"
         )
 
     def uninstall(self):
         self.stop()
-        self.conn.run("sudo apt remove -y nginx")
-        self.conn.run(f"sudo rm /etc/nginx/sites-available/{self.app_name}.conf")
-        self.conn.run(f"sudo rm /etc/nginx/sites-enabled/{self.app_name}.conf")
-        self.conn.run("sudo systemctl disable certbot.timer")
-        self.conn.run("sudo apt remove -y python3-certbot-nginx")
+        self.run_pty("sudo apt remove -y nginx")
+        self.run_pty(f"sudo rm /etc/nginx/sites-available/{self.app_name}.conf")
+        self.run_pty(f"sudo rm /etc/nginx/sites-enabled/{self.app_name}.conf")
+        self.run_pty("sudo systemctl disable certbot.timer")
+        self.run_pty("sudo apt remove -y python3-certbot-nginx")
 
     def setup(self):
         conf = (
@@ -63,13 +62,13 @@ class WebProxy(msgspec.Struct):
         self.run_pty(
             f"sudo ln -sf /etc/nginx/sites-available/{self.app_name}.conf /etc/nginx/sites-enabled/{self.app_name}.conf",
         )
-        if CERTBOT_EMAIL:
+        if self.certbot_email:
             cert_path = f"/etc/letsencrypt/live/{self.domain_name}/fullchain.pem"
-            cert_exists = self.conn.run(f"sudo test -f {cert_path}", warn=True).ok
+            cert_exists = self.run_pty(f"sudo test -f {cert_path}", warn=True).ok
 
             if not cert_exists:
-                self.conn.run(
-                    f"certbot --nginx -d {self.domain_name} --non-interactive --agree-tos --email {CERTBOT_EMAIL} --redirect"
+                self.run_pty(
+                    f"sudo certbot --nginx -d {self.domain_name} --non-interactive --agree-tos --email {self.certbot_email} --redirect"
                 )
                 self.config_file.parent.mkdir(exist_ok=True)
                 self.conn.get(
@@ -83,9 +82,7 @@ class WebProxy(msgspec.Struct):
     def teardown(self):
         self.run_pty(f"sudo rm /etc/nginx/sites-available/{self.app_name}.conf")
         self.run_pty(f"sudo rm /etc/nginx/sites-enabled/{self.app_name}.conf")
-        self.run_pty(
-            "sudo systemctl restart nginx",
-        )
+        self.run_pty("sudo systemctl restart nginx")
 
     def start(self) -> None:
         self.run_pty("sudo systemctl start nginx")
@@ -109,9 +106,9 @@ class WebProxy(msgspec.Struct):
         static_locations = ""
         for path, directory in self.statics.items():
             static_locations += f"""
-        location {path} {{
-            alias {directory};
-        }}
+    location {path} {{
+        alias {directory};
+    }}
         """
 
         return f"""

fujin/secrets/__init__.py

@@ -0,0 +1,32 @@
+from __future__ import annotations
+
+from pathlib import Path
+import gevent
+from dotenv import dotenv_values
+from typing import Callable
+
+from fujin.config import SecretConfig, SecretAdapter
+from .bitwarden import bitwarden
+from .onepassword import one_password
+
+
+secret_reader = Callable[[str], str]
+secret_adapter_context = Callable[[SecretConfig], secret_reader]
+
+adapter_to_context: dict[SecretAdapter, secret_adapter_context] = {
+    SecretAdapter.BITWARDEN: bitwarden,
+    SecretAdapter.ONE_PASSWORD: one_password,
+}
+
+
+def resolve_secrets(envfile: Path, secret_config: SecretConfig) -> str:
+    env_dict = dotenv_values(envfile)
+    secrets = {key: value for key, value in env_dict.items() if value.startswith("$")}
+    adapter_context = adapter_to_context[secret_config.adapter]
+    parsed_secrets = {}
+    with adapter_context(secret_config) as secret_reader:
+        for key, secret in secrets.items():
+            parsed_secrets[key] = gevent.spawn(secret_reader, secret[1:])
+        gevent.joinall(parsed_secrets.values())
+    env_dict.update({key: thread.value for key, thread in parsed_secrets.items()})
+    return "\n".join(f'{key}="{value}"' for key, value in env_dict.items())

fujin/secrets/bitwarden.py

@@ -0,0 +1,62 @@
+from __future__ import annotations
+import cappa
+import os
+
+
+from fujin.config import SecretConfig
+import subprocess
+from contextlib import contextmanager
+from typing import Generator, TYPE_CHECKING
+
+if TYPE_CHECKING:
+    from . import secret_reader
+
+
+@contextmanager
+def bitwarden(secret_config: SecretConfig) -> Generator[secret_reader, None, None]:
+    session = os.getenv("BW_SESSION")
+    if not session:
+        if not secret_config.password_env:
+            raise cappa.Exit(
+                "You need to set the password_env to use the bitwarden adapter or set the BW_SESSION environment variable",
+                code=1,
+            )
+        session = _signin(secret_config.password_env)
+
+    def read_secret(name: str) -> str:
+        result = subprocess.run(
+            ["bw", "get", "password", name, "--raw", "--session", session, "--nointeraction"],
+            capture_output=True,
+            text=True,
+        )
+        if result.returncode != 0:
+            raise cappa.Exit(f"Password not found for {name}")
+        return result.stdout.strip()
+
+    try:
+        yield read_secret
+    finally:
+        pass
+        # subprocess.run(["bw", "lock"], capture_output=True)
+
+
+def _signin(password_env) -> str:
+    sync_result = subprocess.run(["bw", "sync"], capture_output=True, text=True)
+    if sync_result.returncode != 0:
+        raise cappa.Exit(f"Bitwarden sync failed: {sync_result.stdout}", code=1)
+    unlock_result = subprocess.run(
+        [
+            "bw",
+            "unlock",
+            "--nointeraction",
+            "--passwordenv",
+            password_env,
+            "--raw",
+        ],
+        capture_output=True,
+        text=True,
+    )
+    if unlock_result.returncode != 0:
+        raise cappa.Exit(f"Bitwarden unlock failed {unlock_result.stderr}", code=1)
+
+    return unlock_result.stdout.strip()

fujin/secrets/onepassword.py

@@ -0,0 +1,26 @@
+from __future__ import annotations
+import cappa
+
+
+from fujin.config import SecretConfig
+import subprocess
+
+from contextlib import contextmanager
+from typing import Generator, TYPE_CHECKING
+
+if TYPE_CHECKING:
+    from . import secret_reader
+
+
+@contextmanager
+def one_password(_: SecretConfig) -> Generator[secret_reader, None, None]:
+    def read_secret(name: str) -> str:
+        result = subprocess.run(["op", "read", name], capture_output=True, text=True)
+        if result.returncode != 0:
+            raise cappa.Exit(result.stderr)
+        return result.stdout.strip()
+
+    try:
+        yield read_secret
+    finally:
+        pass

{fujin_cli-0.5.0.dist-info → fujin_cli-0.7.0.dist-info}/METADATA

@@ -1,12 +1,11 @@
 Metadata-Version: 2.3
 Name: fujin-cli
-Version: 0.5.0
-Summary: Add your description here
+Version: 0.7.0
+Summary: Get your project up and running in a few minutes on your own vps.
 Project-URL: Documentation, https://github.com/falcopackages/fujin#readme
 Project-URL: Issues, https://github.com/falcopackages/fujin/issues
 Project-URL: Source, https://github.com/falcopackages/fujin
 Author-email: Tobi DEGNON <tobidegnon@proton.me>
-License-File: LICENSE.txt
 Keywords: caddy,deployment,django,fastapi,litestar,python,systemd
 Classifier: Development Status :: 3 - Alpha
 Classifier: Intended Audience :: Developers
@@ -22,34 +21,48 @@ Classifier: Programming Language :: Python :: Implementation :: PyPy
 Requires-Python: >=3.10
 Requires-Dist: cappa>=0.24
 Requires-Dist: fabric>=3.2.2
+Requires-Dist: gevent[recommended]>=24.11.1
 Requires-Dist: msgspec[toml]>=0.18.6
+Requires-Dist: python-dotenv>=1.0.1
 Requires-Dist: rich>=13.9.2
 Description-Content-Type: text/markdown
 
 # fujin
 
+> [!IMPORTANT]
+> This tool is currently contains minimal features and is a work-in-progress
+
+<!-- content:start -->
+
+`fujin` is a simple deployment tool that helps you get your project up and running on a VPS in minutes. It manages your app processes using [systemd](https://systemd.io) and runs your apps behind [caddy](https://caddyserver.com).
+
+[![Publish Package](https://github.com/falcopackages/fujin/actions/workflows/publish.yml/badge.svg)](https://github.com/falcopackages/fujin/actions/workflows/publish.yml)
 [![PyPI - Version](https://img.shields.io/pypi/v/fujin-cli.svg)](https://pypi.org/project/fujin-cli)
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/fujin-cli.svg)](https://pypi.org/project/fujin-cli)
 [![MIT License](https://img.shields.io/badge/license-MIT-blue.svg)](https://github.com/falcopackages/fujin/blob/main/LICENSE.txt)
 [![Status](https://img.shields.io/pypi/status/fujin-cli.svg)](https://pypi.org/project/fujin-cli)
------
 
-> [!IMPORTANT]
-> This package currently contains minimal features and is a work-in-progress
+## Features
 
-`fujin` is a simple deployment tool that helps you get your project up and running on a VPS in a few minutes. It manages your app processes using `systemd` and runs your apps behind [caddy](https://caddyserver.com/). For Python projects, 
-it expects your app to be a packaged Python application ideally with a CLI entry point defined. For other languages, you need to provide a self-contained single executable file with all necessary dependencies.
-The main job of `fujin` is to bootstrap your server (installing caddy, etc.), copy the files onto the server with a structure that supports rollback, and automatically generate configs for systemd and caddy that you can manually edit if needed.
+- 🚀 One-command server bootstrap
+- 🔄 Rollback broken deployments
+- 🔐 Zero configuration SSL certificates
+- 🔁 Swappable proxy ([caddy](https://caddyserver.com), [nginx](https://nginx.org/en/) and `dummy` to disable proxy)
+- 🛠️ Secrets injection from password managers ([Bitwarden](https://bitwarden.com/), [1Password](https://1password.com), etc.)
+- 📝 Easily customizable `systemd` and `proxy` configurations
+- 👨‍💻 Remote application management and log streaming
+- 🐍 Supports packaged python apps and self-contained binaries
 
-Check out the [documentation📚](https://fujin.readthedocs.io/en/latest/) for installation, features, and usage guides.
+For more details, check out the [documentation📚](https://fujin.oluwatobi.dev/en/latest/).
 
 ## Why?
 
 I wanted [kamal](https://kamal-deploy.org/) but without Docker, and I thought the idea was fun. At its core, this project automates versions of this [tutorial](https://www.digitalocean.com/community/tutorials/how-to-set-up-django-with-postgres-nginx-and-gunicorn-on-ubuntu). If you've been a Django beginner 
-trying to get your app in production, you probably went through this. I'm using caddy instead of nginx because the configuration file simpler and it's is a no-brainer for SSL certificates. Systemd is the default on most Linux distributions and does a good enough job.
+trying to get your app in production, you probably went through this.
+
+I'm using `caddy` here by default instead of `nginx` because it's configurable via an API and it's is a no-brainer for SSL certificates. `Systemd` is the default on most Linux distributions and does a good enough job.
 
-Fujin was initially planned to be a Python-only project, but the core concepts can be applied to any language that can produce a single distributable file (e.g., Go, Rust). I wanted to recreate kamal's nice local-to-remote app management API, but I'm skipping Docker to keep things simple. 
-I'm currently rocking SQLite in production for my side projects and ths setup is enough for my use case.
+Fujin was initially planned to be a Python-only project, but the core concepts can be applied to any language that can produce a single distributable file (e.g., Go, Rust).
 
 The goal is to automate deployment while leaving you in full control of your Linux box. It's not a CLI PaaS - it's simple and expects you to be able to SSH into your server and troubleshoot if necessary. For beginners, it makes the initial deployment easier while you get your hands dirty with Linux.
 If you need a never-break, worry-free, set-it-and-forget-it setup that auto-scales and does all the magic, fujin probably isn't for you.
@@ -64,3 +77,5 @@ Fujin draws inspiration from the following tools for their developer experience.
 ## License
 
 `fujin` is distributed under the terms of the [MIT](https://spdx.org/licenses/MIT.html) license.
+
+<!-- content:end -->

{fujin_cli-0.5.0.dist-info → fujin_cli-0.7.0.dist-info}/RECORD

@@ -1,6 +1,6 @@
 fujin/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-fujin/__main__.py,sha256=St0VnEWhRRw_ukAddAwDGFliLqQT3xlone-9JIONlDI,1702
-fujin/config.py,sha256=r2Rdd7ErGGTQPLMJlqZbPEQXd6fSSQB7PNbyaurEQsQ,9394
+fujin/__main__.py,sha256=VJMBzuQuxkQaAKNEySktGnms944bkRsrIAjj-XeaWR8,1813
+fujin/config.py,sha256=pdWK4fM3BITpz0MAv_ydCXRcQbgC3eLz--APdOpehiQ,10412
 fujin/connection.py,sha256=ZkYaNykRFj9Yr-K-vOrZtVVGUDurDm6W7OQrgct71CA,2428
 fujin/errors.py,sha256=74Rh-Sgql1YspPdR_akQ2G3xZ48zecyafYCptpaFo1A,73
 fujin/hooks.py,sha256=QHIqxLxujG2U70UkN1BpUplE6tTqn7pFJP5oHde1tUQ,1350
@@ -8,15 +8,15 @@ fujin/commands/__init__.py,sha256=uIGGXt8YofL5RZn8KIy153ioWGoCl32ffHtqOhB-6ZM,78
 fujin/commands/_base.py,sha256=o3R4-c3XeFWTIW3stiUdrcCPwdjzfjUVIpZy2L1-gZ4,2525
 fujin/commands/app.py,sha256=mazb4dCTdR5juh79bL3a9b68Nd6O8u_nR9IgYqQlqWE,5279
 fujin/commands/config.py,sha256=xdfd1OZLxw2YZldiAbW5rq5EBXEaXbUC-I7FKLRfzIQ,2387
-fujin/commands/deploy.py,sha256=oAOLUrtHjHkmIA3D0AiaJRWEsfVk51_I29kRC_FhjYo,5463
+fujin/commands/deploy.py,sha256=SUI_aMqTmaWHVtyX03rjrbWMYESoysAykcvILsEtsWk,5897
 fujin/commands/docs.py,sha256=b5FZ8AgoAfn4q4BueEQvM2w5HCuh8-rwBqv_CRFVU8E,349
 fujin/commands/down.py,sha256=v1lAq70ApktjeHRB_1sCzjmKH8t6EXqyL4RTt7OE-f0,1716
-fujin/commands/init.py,sha256=IguExzQEPJ5CbWzG-mI6hIXUw2fd2rAEA04FK6-5l18,4021
+fujin/commands/init.py,sha256=t8uwwOi4SBqHjV8px_SkTHAeZIiIUJnFN-lf7DK6HhE,3959
+fujin/commands/printenv.py,sha256=1xz80UCKpz64wsR9rYStro0K6pkKndNoNQvusEMYRuQ,486
 fujin/commands/proxy.py,sha256=ajXwboS0gDDiMWW7b9rtWU6WPF1h7JYYeycDyU-hQfg,3053
 fujin/commands/prune.py,sha256=C2aAN6AUS84jgRg1eiCroyiuZyaZDmf5yvGAQY9xkcg,1517
-fujin/commands/redeploy.py,sha256=JvCJBZBcCKkUw1efZwRPJMLUAV8oqBAZeSbUBLHyn3k,2185
+fujin/commands/redeploy.py,sha256=qYPM_Klj_2G1Up4ICu-8rklcqIbU-uohddmAzAA5sy0,2378
 fujin/commands/rollback.py,sha256=BN9vOTEBcSSpFIfck9nzWvMVO7asVC20lQbcNrxRchg,2009
-fujin/commands/secrets.py,sha256=1xZQVkvbopsAcWUocLstxPKxsvmGoE2jWip5hdTrP50,162
 fujin/commands/server.py,sha256=0N_P_Luj31t56riZ8GfgRqW3vRHiw0cDrlp3PFoyWn8,3453
 fujin/commands/up.py,sha256=DgDN-1mc_mMHJRCIvcB947Cd5a7phunu9NpXloGK0UU,419
 fujin/process_managers/__init__.py,sha256=MhhfTBhm64zWRAKgjvsZRIToOUJus60vGScbAjqpQ6Y,994
@@ -24,12 +24,15 @@ fujin/process_managers/systemd.py,sha256=qG_4Ew8SEWtaTFOAW_XZXsMO2WjFWZ4dp5nBwAP
 fujin/proxies/__init__.py,sha256=UuWYU175tkdaz1WWRCDDpQgGfFVYYNR9PBxA3lTCNr0,695
 fujin/proxies/caddy.py,sha256=dzLD8s664_kIK-1hCE3y50JIwBd8kK9yS1LynUDRVSE,7908
 fujin/proxies/dummy.py,sha256=qBKSn8XNEA9SVwB7GzRNX2l9Iw6tUjo2CFqZjWi0FjY,465
-fujin/proxies/nginx.py,sha256=8AkbJAjj6B0fxgv671mGDbx3LY_dY5wxFov80XmSfUY,4139
+fujin/proxies/nginx.py,sha256=BNJNLxLLRVAmBIGVCk8pb16iiSJsOI9jXOZhdSQGtX8,4151
+fujin/secrets/__init__.py,sha256=WFFe81fB6R3dzdvYsdPT9x-fE2LwpyrfF0nCuWrQNRw,1192
+fujin/secrets/bitwarden.py,sha256=rJ_n7CQT02TwwqN9lHQkh56g5BETKhZBtjWi3bOA8rQ,1846
+fujin/secrets/onepassword.py,sha256=2ySDY7fNW_sOqH-I89rfz3uMiBu0mJRHot4yKlTRbrE,636
 fujin/templates/simple.service,sha256=-lyKjmSyfHGucP4O_vRQE1NNaHq0Qjsc0twdwoRLgI0,321
 fujin/templates/web.service,sha256=NZ7ZeaFvV_MZTBn8QqRQeu8PIrWHf3aWYWNzjOQeqCw,685
 fujin/templates/web.socket,sha256=2lJsiOHlMJL0YlN7YBLLnr5zqsytPEt81yP34nk0dmc,173
-fujin_cli-0.5.0.dist-info/METADATA,sha256=_-oV3GG6q1UZHhoXF5oOVTL8t1qOk_mRhmrUNz9CB-E,4396
-fujin_cli-0.5.0.dist-info/WHEEL,sha256=1yFddiXMmvYK7QYTqtRNtX66WJ0Mz8PYEiEUoOUUxRY,87
-fujin_cli-0.5.0.dist-info/entry_points.txt,sha256=Y_TBtKt3j11qhwquMexZR5yqnDEqOBDACtresqQFE-s,46
-fujin_cli-0.5.0.dist-info/licenses/LICENSE.txt,sha256=0QF8XfuH0zkIHhSet6teXfiCze6JSdr8inRkmLLTDyo,1099
-fujin_cli-0.5.0.dist-info/RECORD,,
+fujin_cli-0.7.0.dist-info/METADATA,sha256=0H7E8Re_jONc6BsoAdATLKM3r8QIrA_lT1oRgG3gWIw,4576
+fujin_cli-0.7.0.dist-info/WHEEL,sha256=C2FUgwZgiLbznR-k0b_5k3Ai_1aASOXDss3lzCUsUug,87
+fujin_cli-0.7.0.dist-info/entry_points.txt,sha256=Y_TBtKt3j11qhwquMexZR5yqnDEqOBDACtresqQFE-s,46
+fujin_cli-0.7.0.dist-info/licenses/LICENSE.txt,sha256=0QF8XfuH0zkIHhSet6teXfiCze6JSdr8inRkmLLTDyo,1099
+fujin_cli-0.7.0.dist-info/RECORD,,

{fujin_cli-0.5.0.dist-info → fujin_cli-0.7.0.dist-info}/WHEEL

@@ -1,4 +1,4 @@
 Wheel-Version: 1.0
-Generator: hatchling 1.25.0
+Generator: hatchling 1.26.3
 Root-Is-Purelib: true
 Tag: py3-none-any

fujin/commands/secrets.py

@@ -1,11 +0,0 @@
-from dataclasses import dataclass
-
-import cappa
-
-from fujin.commands import BaseCommand
-
-
-@cappa.command(help="")
-@dataclass
-class Secrets(BaseCommand):
-    pass