clan/clan-core
12
4
Fork 18
Code Issues 99 Pull Requests 3 Actions Packages Projects 1 Releases Wiki Activity

only list valid secrets/users/machines
All checks were successful
checks-impure / test (pull_request) Successful in 6s
Details
checks / test (pull_request) Successful in 58s
Details

Browse Source 
Git often leaves empty directories behind
This commit is contained in:
Jörg Thalheim 2023-09-07 12:48:34 +02:00
parent ae3283a762
commit c3ccf68007
4 changed files with 28 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
pkgs/clan-cli/clan_cli/secrets/machines.py
View File

@ -20,7 +20,12 @@ def get_machine(name: str) -> str:
def list_machines() -> list[str]:
return list_objects(sops_machines_folder(), lambda x: validate_hostname(x))
path = sops_machines_folder()
def validate(name: str) -> bool:
return validate_hostname(name) and (path / name / "key.json").exists()
return list_objects(path, validate)
def add_secret(machine: str, secret: str) -> None:

12
pkgs/clan-cli/clan_cli/secrets/secrets.py
View File

@ -172,9 +172,15 @@ def disallow_member(group_folder: Path, name: str) -> None:
def list_secrets() -> list[str]:
return list_objects(
sops_secrets_folder(), lambda n: VALID_SECRET_NAME.match(n) is not None
)
path = sops_secrets_folder()
def validate(name: str) -> bool:
return (
VALID_SECRET_NAME.match(name) is not None
and (path / name / "secret").exists()
)
return list_objects(path, validate)
def list_command(args: argparse.Namespace) -> None:

14
pkgs/clan-cli/clan_cli/secrets/users.py
View File

@ -4,7 +4,7 @@ from . import secrets
from .folders import list_objects, remove_object, sops_users_folder
from .sops import read_key, write_key
from .types import (
VALID_SECRET_NAME,
VALID_USER_NAME,
public_or_private_age_key_type,
secret_name_type,
user_name_type,
@ -24,9 +24,15 @@ def get_user(name: str) -> str:
def list_users() -> list[str]:
return list_objects(
sops_users_folder(), lambda n: VALID_SECRET_NAME.match(n) is not None
)
path = sops_users_folder()
def validate(name: str) -> bool:
return (
VALID_USER_NAME.match(name) is not None
and (path / name / "key.json").exists()
)
return list_objects(path, validate)
def add_secret(user: str, secret: str) -> None:

3
pkgs/clan-cli/tests/test_secrets_cli.py
View File

@ -153,6 +153,9 @@ def test_secrets(
cli.run(["secrets", "machines", "add", "machine1", age_keys[0].pubkey])
cli.run(["secrets", "machines", "add-secret", "machine1", "key"])
capsys.readouterr()
cli.run(["secrets", "machines", "list"])
assert capsys.readouterr().out == "machine1\n"
with use_key(age_keys[0].privkey, monkeypatch):
capsys.readouterr()