صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
mirrors
/
borgmatic
mirrorاز https://github.com/witten/borgmatic
2
0
انشعاب 0
پرونده‌ها مشکلات 0 ویکی
درخت: cf326a98a5
شاخه‌ها تگ‌ها
borgmatic
/
borgmatic
/
hooks
/
credential
/
passcommand.py

passcommand.py 2.1 KB
تاريخچه خام

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859 
  1. import functools
    2. 

  2. import logging
    3. 

  3. import shlex
    4. 

  4. 

  5. import borgmatic.config.paths
    6. 

  6. import borgmatic.execute
    7. 

  7. 

  8. logger = logging.getLogger(__name__)
    9. 

  9. 

  10. 

  11. @functools.cache
    12. 

  12. def run_passcommand(passcommand, passphrase_configured, working_directory):
    13. 

  13.     '''
    14. 

  14.     Run the given passcommand using the given working directory and return the passphrase produced
    15. 

  15.     by the command. But bail first if a passphrase is already configured; this mimics Borg's
    16. 

  16.     behavior.
    17. 

  17. 

  18.     Cache the results so that the passcommand only needs to run—and potentially prompt the user—once
    19. 

  19.     per borgmatic invocation.
    20. 

  20.     '''
    21. 

  21.     if passcommand and passphrase_configured:
    22. 

  22.         logger.warning(
    23. 

  23.             'Ignoring the "encryption_passcommand" option because "encryption_passphrase" is set'
    24. 

  24.         )
    25. 

  25.         return None
    26. 

  26. 

  27.     return borgmatic.execute.execute_command_and_capture_output(
    28. 

  28.         shlex.split(passcommand),
    29. 

  29.         working_directory=working_directory,
    30. 

  30.     )
    31. 

  31. 

  32. 

  33. def load_credential(hook_config, config, credential_name):
    34. 

  34.     '''
    35. 

  35.     Given the hook configuration dict, the configuration dict, and a credential name to load, call
    36. 

  36.     the configured passcommand to produce and return an encryption passphrase. In effect, we're
    37. 

  37.     doing an end-run around Borg by invoking its passcommand ourselves. This allows us to pass the
    38. 

  38.     resulting passphrase to multiple different Borg invocations without the user having to be
    39. 

  39.     prompted multiple times.
    40. 

  40. 

  41.     If no passcommand is configured, then return None.
    42. 

  42. 

  43.     The credential name must be "encryption_passphrase"; that's the only supported credential with
    44. 

  44.     this particular hook.
    45. 

  45.     '''
    46. 

  46.     if credential_name != 'encryption_passphrase':
    47. 

  47.         raise ValueError(
    48. 

  48.             f'Credential name "{credential_name}" is not supported for the passphrase credential hook'
    49. 

  49.         )
    50. 

  50. 

  51.     passcommand = config.get('encryption_passcommand')
    52. 

  52. 

  53.     if not passcommand:
    54. 

  54.         return None
    55. 

  55. 

  56.     passphrase = config.get('encryption_passphrase')
    57. 

  57.     working_directory = borgmatic.config.paths.get_working_directory(config)
    58. 

  58. 

  59.     return run_passcommand(passcommand, bool(passphrase), working_directory)
    60.