restic/cmd/restic/cmd_key.go

package main

import (
	"encoding/json"
	"errors"
	"fmt"
	"os"

	"github.com/restic/restic"
	"github.com/restic/restic/backend"
)

type CmdKey struct{}

func init() {
	_, err := parser.AddCommand("key",
		"manage keys",
		"The key command manages keys (passwords) of a repository",
		&CmdKey{})
	if err != nil {
		panic(err)
	}
}

func list_keys(s restic.Server) error {
	tab := NewTable()
	tab.Header = fmt.Sprintf(" %-10s  %-10s  %-10s  %s", "ID", "User", "Host", "Created")
	tab.RowFormat = "%s%-10s  %-10s  %-10s  %s"

	plen, err := s.PrefixLength(backend.Key)
	if err != nil {
		return err
	}

	s.Each(backend.Key, func(id backend.ID, data []byte, err error) {
		k := restic.Key{}
		err = json.Unmarshal(data, &k)
		if err != nil {
			return
		}

		var current string
		if id.Equal(s.Key().ID()) {
			current = "*"
		} else {
			current = " "
		}
		tab.Rows = append(tab.Rows, []interface{}{current, id[:plen],
			k.Username, k.Hostname, k.Created.Format(TimeFormat)})
	})

	tab.Write(os.Stdout)

	return nil
}

func add_key(s restic.Server) error {
	pw := readPassword("RESTIC_NEWPASSWORD", "enter password for new key: ")
	pw2 := readPassword("RESTIC_NEWPASSWORD", "enter password again: ")

	if pw != pw2 {
		return errors.New("passwords do not match")
	}

	id, err := restic.AddKey(s, pw, s.Key())
	if err != nil {
		return fmt.Errorf("creating new key failed: %v\n", err)
	}

	fmt.Printf("saved new key as %s\n", id)

	return nil
}

func delete_key(s restic.Server, id backend.ID) error {
	if id.Equal(s.Key().ID()) {
		return errors.New("refusing to remove key currently used to access repository")
	}

	err := s.Remove(backend.Key, id)
	if err != nil {
		return err
	}

	fmt.Printf("removed key %v\n", id)
	return nil
}

func change_password(s restic.Server) error {
	pw := readPassword("RESTIC_NEWPASSWORD", "enter password for new key: ")
	pw2 := readPassword("RESTIC_NEWPASSWORD", "enter password again: ")

	if pw != pw2 {
		return errors.New("passwords do not match")
	}

	// add new key
	id, err := restic.AddKey(s, pw, s.Key())
	if err != nil {
		return fmt.Errorf("creating new key failed: %v\n", err)
	}

	// remove old key
	err = s.Remove(backend.Key, s.Key().ID())
	if err != nil {
		return err
	}

	fmt.Printf("saved new key as %s\n", id)

	return nil
}

func (cmd CmdKey) Usage() string {
	return "[list|add|rm|change] [ID]"
}

func (cmd CmdKey) Execute(args []string) error {
	if len(args) < 1 || (args[0] == "rm" && len(args) != 2) {
		return fmt.Errorf("wrong number of arguments, Usage: %s", cmd.Usage())
	}

	s, err := OpenRepo()
	if err != nil {
		return err
	}

	switch args[0] {
	case "list":
		return list_keys(s)
	case "add":
		return add_key(s)
	case "rm":
		id, err := backend.Find(s, backend.Key, args[1])
		if err != nil {
			return err
		}

		return delete_key(s, id)
	case "change":
		return change_password(s)
	}

	return nil
}
Add command "key list" 2014-11-25 21:52:53 +00:00			`package main`

			`import (`
			`"encoding/json"`
			`"errors"`
			`"fmt"`
			`"os"`

Rename khepri -> restic 2014-12-05 20:45:49 +00:00			`"github.com/restic/restic"`
			`"github.com/restic/restic/backend"`
Add command "key list" 2014-11-25 21:52:53 +00:00			`)`

Refactor commands 2014-12-07 15:30:52 +00:00			`type CmdKey struct{}`

Move command init into cmd_* files 2014-11-30 21:39:58 +00:00			`func init() {`
Refactor commands 2014-12-07 15:30:52 +00:00			`_, err := parser.AddCommand("key",`
			`"manage keys",`
			`"The key command manages keys (passwords) of a repository",`
			`&CmdKey{})`
			`if err != nil {`
			`panic(err)`
			`}`
Move command init into cmd_* files 2014-11-30 21:39:58 +00:00			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`func list_keys(s restic.Server) error {`
Add command "key list" 2014-11-25 21:52:53 +00:00			`tab := NewTable()`
Show currently used key in 'key list' 2014-11-27 22:26:19 +00:00			`tab.Header = fmt.Sprintf(" %-10s %-10s %-10s %s", "ID", "User", "Host", "Created")`
			`tab.RowFormat = "%s%-10s %-10s %-10s %s"`
Add command "key list" 2014-11-25 21:52:53 +00:00
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`plen, err := s.PrefixLength(backend.Key)`
Add command "key list" 2014-11-25 21:52:53 +00:00			`if err != nil {`
			`return err`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`s.Each(backend.Key, func(id backend.ID, data []byte, err error) {`
Rename khepri -> restic 2014-12-05 20:45:49 +00:00			`k := restic.Key{}`
Add command "key list" 2014-11-25 21:52:53 +00:00			`err = json.Unmarshal(data, &k)`
			`if err != nil {`
			`return`
			`}`

Show currently used key in 'key list' 2014-11-27 22:26:19 +00:00			`var current string`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`if id.Equal(s.Key().ID()) {`
Show currently used key in 'key list' 2014-11-27 22:26:19 +00:00			`current = "*"`
			`} else {`
			`current = " "`
			`}`
			`tab.Rows = append(tab.Rows, []interface{}{current, id[:plen],`
Add command "key list" 2014-11-25 21:52:53 +00:00			`k.Username, k.Hostname, k.Created.Format(TimeFormat)})`
			`})`

Rename Table.Print -> Table.Write 2014-12-22 10:21:14 +00:00			`tab.Write(os.Stdout)`
Add command "key list" 2014-11-25 21:52:53 +00:00
			`return nil`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`func add_key(s restic.Server) error {`
Rename khepri -> restic 2014-12-05 20:45:49 +00:00			`pw := readPassword("RESTIC_NEWPASSWORD", "enter password for new key: ")`
			`pw2 := readPassword("RESTIC_NEWPASSWORD", "enter password again: ")`
Add command "key add" 2014-11-25 22:07:00 +00:00
			`if pw != pw2 {`
Add command "key change" to change repository password 2014-11-25 22:23:09 +00:00			`return errors.New("passwords do not match")`
Add command "key add" 2014-11-25 22:07:00 +00:00			`}`

Reduce code duplication in key handling 2014-12-21 17:16:22 +00:00			`id, err := restic.AddKey(s, pw, s.Key())`
Add command "key add" 2014-11-25 22:07:00 +00:00			`if err != nil {`
			`return fmt.Errorf("creating new key failed: %v\n", err)`
			`}`

			`fmt.Printf("saved new key as %s\n", id)`

			`return nil`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`func delete_key(s restic.Server, id backend.ID) error {`
			`if id.Equal(s.Key().ID()) {`
Add command "key rm" 2014-11-25 22:18:02 +00:00			`return errors.New("refusing to remove key currently used to access repository")`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`err := s.Remove(backend.Key, id)`
Add command "key rm" 2014-11-25 22:18:02 +00:00			`if err != nil {`
			`return err`
			`}`

			`fmt.Printf("removed key %v\n", id)`
			`return nil`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`func change_password(s restic.Server) error {`
Rename khepri -> restic 2014-12-05 20:45:49 +00:00			`pw := readPassword("RESTIC_NEWPASSWORD", "enter password for new key: ")`
			`pw2 := readPassword("RESTIC_NEWPASSWORD", "enter password again: ")`
Add command "key change" to change repository password 2014-11-25 22:23:09 +00:00
			`if pw != pw2 {`
			`return errors.New("passwords do not match")`
			`}`

			`// add new key`
Reduce code duplication in key handling 2014-12-21 17:16:22 +00:00			`id, err := restic.AddKey(s, pw, s.Key())`
Add command "key change" to change repository password 2014-11-25 22:23:09 +00:00			`if err != nil {`
			`return fmt.Errorf("creating new key failed: %v\n", err)`
			`}`

			`// remove old key`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`err = s.Remove(backend.Key, s.Key().ID())`
Add command "key change" to change repository password 2014-11-25 22:23:09 +00:00			`if err != nil {`
			`return err`
			`}`

			`fmt.Printf("saved new key as %s\n", id)`

			`return nil`
			`}`

Refactor commands 2014-12-07 15:30:52 +00:00			`func (cmd CmdKey) Usage() string {`
			`return "[list\|add\|rm\|change] [ID]"`
			`}`

			`func (cmd CmdKey) Execute(args []string) error {`
Add command "key rm" 2014-11-25 22:18:02 +00:00			`if len(args) < 1 \|\| (args[0] == "rm" && len(args) != 2) {`
Refactor commands 2014-12-07 15:30:52 +00:00			`return fmt.Errorf("wrong number of arguments, Usage: %s", cmd.Usage())`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`s, err := OpenRepo()`
Refactor commands 2014-12-07 15:30:52 +00:00			`if err != nil {`
			`return err`
Add command "key list" 2014-11-25 21:52:53 +00:00			`}`

			`switch args[0] {`
			`case "list":`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`return list_keys(s)`
Add command "key add" 2014-11-25 22:07:00 +00:00			`case "add":`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`return add_key(s)`
Add command "key rm" 2014-11-25 22:18:02 +00:00			`case "rm":`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`id, err := backend.Find(s, backend.Key, args[1])`
Add command "key rm" 2014-11-25 22:18:02 +00:00			`if err != nil {`
			`return err`
			`}`

Remove explicit key handling 2014-12-21 17:10:19 +00:00			`return delete_key(s, id)`
Add command "key change" to change repository password 2014-11-25 22:23:09 +00:00			`case "change":`
Remove explicit key handling 2014-12-21 17:10:19 +00:00			`return change_password(s)`
Add command "key list" 2014-11-25 21:52:53 +00:00			`}`

			`return nil`
			`}`