2018-01-10 03:51:35 +00:00
|
|
|
"""Script to get, set and delete secrets stored in the keyring."""
|
2016-08-09 00:36:11 +00:00
|
|
|
import argparse
|
|
|
|
import getpass
|
2018-01-10 03:51:35 +00:00
|
|
|
import os
|
2016-08-09 00:36:11 +00:00
|
|
|
|
|
|
|
from homeassistant.util.yaml import _SECRET_NAMESPACE
|
|
|
|
|
2019-07-24 20:18:40 +00:00
|
|
|
|
|
|
|
# mypy: allow-untyped-defs
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
REQUIREMENTS = ["keyring==17.1.1", "keyrings.alt==3.1.1"]
|
2016-08-09 00:36:11 +00:00
|
|
|
|
|
|
|
|
|
|
|
def run(args):
|
|
|
|
"""Handle keyring script."""
|
|
|
|
parser = argparse.ArgumentParser(
|
2019-07-31 19:25:30 +00:00
|
|
|
description=(
|
|
|
|
"Modify Home Assistant secrets in the default keyring. "
|
|
|
|
"Use the secrets in configuration files with: "
|
|
|
|
"!secret <name>"
|
|
|
|
)
|
|
|
|
)
|
|
|
|
parser.add_argument("--script", choices=["keyring"])
|
2016-08-09 00:36:11 +00:00
|
|
|
parser.add_argument(
|
2019-07-31 19:25:30 +00:00
|
|
|
"action",
|
|
|
|
choices=["get", "set", "del", "info"],
|
|
|
|
help="Get, set or delete a secret",
|
|
|
|
)
|
|
|
|
parser.add_argument("name", help="Name of the secret", nargs="?", default=None)
|
2016-08-09 00:36:11 +00:00
|
|
|
|
|
|
|
import keyring
|
|
|
|
from keyring.util import platform_ as platform
|
|
|
|
|
|
|
|
args = parser.parse_args(args)
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
if args.action == "info":
|
2016-08-09 00:36:11 +00:00
|
|
|
keyr = keyring.get_keyring()
|
2019-07-31 19:25:30 +00:00
|
|
|
print("Keyring version {}\n".format(REQUIREMENTS[0].split("==")[1]))
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Active keyring : {keyr.__module__}")
|
2019-07-31 19:25:30 +00:00
|
|
|
config_name = os.path.join(platform.config_root(), "keyringrc.cfg")
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Config location : {config_name}")
|
2019-07-31 19:25:30 +00:00
|
|
|
print("Data location : {}\n".format(platform.data_root()))
|
2016-08-09 00:36:11 +00:00
|
|
|
elif args.name is None:
|
|
|
|
parser.print_help()
|
|
|
|
return 1
|
|
|
|
|
2019-07-31 19:25:30 +00:00
|
|
|
if args.action == "set":
|
2019-08-23 16:53:33 +00:00
|
|
|
entered_secret = getpass.getpass(f"Please enter the secret for {args.name}: ")
|
2019-07-24 20:18:40 +00:00
|
|
|
keyring.set_password(_SECRET_NAMESPACE, args.name, entered_secret)
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Secret {args.name} set successfully")
|
2019-07-31 19:25:30 +00:00
|
|
|
elif args.action == "get":
|
2016-08-09 00:36:11 +00:00
|
|
|
the_secret = keyring.get_password(_SECRET_NAMESPACE, args.name)
|
|
|
|
if the_secret is None:
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Secret {args.name} not found")
|
2016-08-09 00:36:11 +00:00
|
|
|
else:
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Secret {args.name}={the_secret}")
|
2019-07-31 19:25:30 +00:00
|
|
|
elif args.action == "del":
|
2016-08-09 00:36:11 +00:00
|
|
|
try:
|
|
|
|
keyring.delete_password(_SECRET_NAMESPACE, args.name)
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Deleted secret {args.name}")
|
2016-08-09 00:36:11 +00:00
|
|
|
except keyring.errors.PasswordDeleteError:
|
2019-08-23 16:53:33 +00:00
|
|
|
print(f"Secret {args.name} not found")
|