aboutsummaryrefslogtreecommitdiffstats
path: root/passed
blob: 5d5ff8b0b9b0c39f15b98033d53e6fe326259139 (plain) (blame) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51

#!/usr/bin/env ruby

# written by jreiner, mirror from
# https://github.com/jreinert/autopass/blob/master/passed

abort("usage: #{$PROGRAM_NAME} <sed options>") if ARGV.empty?

sed_command = ['sed', *ARGV]
PASS_DIR = ENV['PASSWORD_STORE_DIR'] || "#{ENV['HOME']}/.password-store"

def keys(dir)
  key_file = "#{dir}/.gpg-id"
  return unless File.exist?(key_file)
  File.read(key_file).lines.map(&:chomp)
end

def each_entry_with_key(dir = PASS_DIR, keys = nil, &block)
  keys = keys(dir) || keys
  fail('no encryption keys found') unless keys
  Dir[File.join(dir, '*.gpg')].each do |entry|
    yield(entry, keys)
  end

  Dir[File.join(dir, '*/')].each do |subdir|
    each_entry_with_key(subdir, keys, &block)
  end
end

each_entry_with_key do |entry, keys|
  new_content = nil
  IO.popen(['gpg', '--batch', '-q', '-d', entry]) do |gpg|
    IO.popen(sed_command, 'w+') do |sed|
      sed.write gpg.read
      sed.close_write
      new_content = sed.read
    end
  end

  puts entry
  puts new_content
  puts 'overwrite? (y/N)'
  answer = STDIN.gets
  next unless answer && answer.chomp =~ /^y/i

  recipients = keys.map { |key| ['-r', key] }.flatten
  File.delete(entry)
  encrypt_cmd = ['gpg', '--batch', '-q', '-e', '-o', entry, *recipients]
  IO.popen(encrypt_cmd, 'w+') do |gpg|
    gpg.write(new_content)
  end
end
generated by cgit (git 2.34.1) at 2024-11-10 14:09:19 +0000