Acasă Explorează Ajutor
Autentificare
mirrors
/
borg
oglindă de https://github.com/borgbackup/borg
2
0
Bifurcare 0
Fisiere Probleme 0 Wiki
Răsfoiți Sursa

implement BORG_NEW_PASSPHRASE, fixes #1768

Thomas Waldmann 8 ani în urmă
părinte
abe5923866
comite
0a0b913739
2 a modificat fișierele cu 29 adăugiri și 2 ștergeri
Vizualizare divizată Arată Statisticile Diff
  1. 16 0
      docs/usage.rst
  2. 13 2
      src/borg/key.py

+ 16 - 0
docs/usage.rst
Vizualizați fișierul 

@@ -144,6 +144,13 @@ General:
 
         can either leave it away or abbreviate as `::`, if a positional parameter is required.
 
     BORG_PASSPHRASE
 
         When set, use the value to answer the passphrase question for encrypted repositories.
 
+        It is used when a passphrase is needed to access a encrypted repo as well as when a new
 
+        passphrase should be initially set when initializing an encrypted repo.
 
+        See also BORG_NEW_PASSPHRASE.
 
+    BORG_NEW_PASSPHRASE
 
+        When set, use the value to answer the passphrase question when a **new** passphrase is asked for.
 
+        This variable is checked first. If it is not set, BORG_PASSPHRASE will be checked also.
 
+        Main usecase for this is to fully automate ``borg change-passphrase``.
 
     BORG_DISPLAY_PASSPHRASE
 
         When set, use the value to answer the "display the passphrase for verification" question when defining a new passphrase for encrypted repositories.
 
     BORG_LOGGING_CONF
 
@@ -649,6 +656,15 @@ Examples
 
     Remember your passphrase. Your data will be inaccessible without it.
 
     Key updated
 
 
+Fully automated using environment variables:
 
+
 
+::
 
+
 
+    $ BORG_NEW_PASSPHRASE=old borg init repo
 
+    # now "old" is the current passphrase.
 
+    $ BORG_PASSPHRASE=old BORG_NEW_PASSPHRASE=new borg change-passphrase repo
 
+    # now "new" is the current passphrase.
 
+
 
 
 .. include:: usage/serve.rst.inc

+ 13 - 2
src/borg/key.py
Vizualizați fișierul 

@@ -247,11 +247,19 @@ class AESKeyBase(KeyBase):
 
 
 class Passphrase(str):
 
     @classmethod
 
-    def env_passphrase(cls, default=None):
 
-        passphrase = os.environ.get('BORG_PASSPHRASE', default)
 
+    def _env_passphrase(cls, env_var, default=None):
 
+        passphrase = os.environ.get(env_var, default)
 
         if passphrase is not None:
 
             return cls(passphrase)
 
 
+    @classmethod
 
+    def env_passphrase(cls, default=None):
 
+        return cls._env_passphrase('BORG_PASSPHRASE', default)
 
+
 
+    @classmethod
 
+    def env_new_passphrase(cls, default=None):
 
+        return cls._env_passphrase('BORG_NEW_PASSPHRASE', default)
 
+
 
     @classmethod
 
     def getpass(cls, prompt):
 
         return cls(getpass.getpass(prompt))
 
@@ -276,6 +284,9 @@ class Passphrase(str):
 
 
     @classmethod
 
     def new(cls, allow_empty=False):
 
+        passphrase = cls.env_new_passphrase()
 
+        if passphrase is not None:
 
+            return passphrase
 
         passphrase = cls.env_passphrase()
 
         if passphrase is not None:
 
             return passphrase