adelgado/nc_password_client
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

Compare commits

base: adelgado:v0.0.6
Branches Tags
adelgado:main
adelgado:v0.0.6
adelgado:v0.0.5
adelgado:v0.0.4
..
compare: adelgado:main
Branches Tags
adelgado:main
adelgado:v0.0.6
adelgado:v0.0.5
adelgado:v0.0.4

10 commits
v0.0.6 ... main

Author SHA1 Message Date
Antonio J. Delgado
74338be3e1 Handle error when no passwords 2025-01-24 11:15:40 +02:00
Antonio J. Delgado
c90144b20e Add migration between instances 2025-01-04 14:35:51 +02:00
Antonio J. Delgado
1db8d586f6 Return none instead of false 2024-12-21 08:54:25 +02:00
Antonio J. Delgado
9d7f3127df Check decoding output 2024-12-19 18:44:47 +02:00
Antonio J. Delgado
c0cd9feebf Check decoding output 2024-12-19 17:03:25 +02:00
Antonio J. Delgado
3cbe9b0530 change json to content 2024-12-19 16:58:34 +02:00
Antonio J. Delgado
64970a6c82 Add timestamp to output 2024-12-19 08:33:51 +02:00
Antonio J. Delgado
fa78afd7ed Fix when password folder exists 2024-12-06 20:53:53 +02:00
Antonio J. Delgado
fc312776fa fix not getting list of folders 2024-12-06 20:52:22 +02:00
Antonio J. Delgado
84d3f341bd Fix existing passwords without id 2024-12-06 20:46:53 +02:00
2 changed files with 129 additions and 11 deletions
Show stats Expand all files Collapse all files

139
nc_password_client/nc_password_client.py
View file

@ -112,6 +112,7 @@ class NextcloudHandler:
self._log = params['logger'] self._log = params['logger']
else: else:
self._init_log(params) self._init_log(params)
self.params = params
self.http = 'https' self.http = 'https'
self.timeout = params.get('timeout', 3) self.timeout = params.get('timeout', 3)
self.ssl = True self.ssl = True
@ -314,10 +315,12 @@ class NextcloudHandler:
self.reset_cache() self.reset_cache()
def reset_cache(self): def reset_cache(self):
'''Reset cached password'''
self.cache = { self.cache = {
"last_update": -1, "last_update": -1,
"cached_passwords": [] "cached_passwords": []
} }
def _write_cache(self): def _write_cache(self):
self.debug( self.debug(
{ {
@ -346,14 +349,34 @@ class NextcloudHandler:
return obj return obj
def _output(self, obj, unsafe=False): def _output(self, obj, unsafe=False):
if 'timestamp' not in obj:
obj['timestamp'] = time.time()
if unsafe: if unsafe:
out_obj = obj out_obj = obj
else: else:
out_obj = self._safer_obj(obj) out_obj = self._safer_obj(obj)
if self.output_format == 'json': if self.output_format == 'json':
return json.dumps(out_obj, indent=2) try:
return json.dumps(out_obj, indent=2)
except json.decoder.JSONDecodeError as error:
self.error(
{
'action': '_outpout',
'message': 'Error decoding JSON',
'error': error,
}
)
if self.output_format == 'yaml': if self.output_format == 'yaml':
return dump(out_obj, Dumper=Dumper) try:
return dump(out_obj, Dumper=Dumper)
except Exception as error:
self.error(
{
'action': '_outpout',
'message': 'Error decoding YAML',
'error': error,
}
)
output = '' output = ''
if isinstance(out_obj, list): if isinstance(out_obj, list):
output += '-' * os.get_terminal_size(0)[0] output += '-' * os.get_terminal_size(0)[0]
@ -369,6 +392,10 @@ class NextcloudHandler:
def debug(self, obj, unsafe=False): def debug(self, obj, unsafe=False):
'''Show debug information''' '''Show debug information'''
obj['connection'] = {
"host": self.params['host'],
"user": self.params['user']
}
self._log.debug( self._log.debug(
self._output(obj, unsafe=unsafe) self._output(obj, unsafe=unsafe)
) )
@ -422,7 +449,7 @@ class NextcloudHandler:
def get(self, path): def get(self, path):
'''Do a GET request''' '''Do a GET request'''
self.debug({ "action": "get", "message": f"Requesting {path}" }) self.debug({ "action": "get", "message": f"Requesting '{self.http}://{self.host}/{path}'" })
try: try:
r = self.session.get( r = self.session.get(
f'{self.http}://{self.host}/{path}', f'{self.http}://{self.host}/{path}',
@ -434,6 +461,8 @@ class NextcloudHandler:
self.debug( self.debug(
{"action": "get", "status_code": r.status_code, "size": len(r.content)} {"action": "get", "status_code": r.status_code, "size": len(r.content)}
) )
if r.headers['Content-Type'] == 'text/html; charset=UTF-8':
return None
return r.json() return r.json()
if r.status_code == 404: if r.status_code == 404:
self.error( self.error(
@ -751,7 +780,7 @@ class NextcloudHandler:
"folder_name": name "folder_name": name
} }
) )
return False return None
def exists_passwords_folder(self, name): def exists_passwords_folder(self, name):
'''Test if a passwords folder exists''' '''Test if a passwords folder exists'''
@ -760,6 +789,13 @@ class NextcloudHandler:
return folder return folder
return False return False
def _is_uuid(self, string):
'''Test if a string is a UUID'''
match = re.match(r'^[0-9a-f\-]*$', string)
if match:
return True
return False
def create_passwords_folder(self, name): def create_passwords_folder(self, name):
'''Create passwords folder''' '''Create passwords folder'''
if not self.exists_passwords_folder(name): if not self.exists_passwords_folder(name):
@ -879,9 +915,14 @@ class NextcloudHandler:
} }
) )
if new_obj.get('folder', '') != '': if new_obj.get('folder', '') != '':
folder_id = self.get_folder_id(new_obj['folder']) if self._is_uuid(new_obj['folder']):
folder_id = new_obj['folder']
else:
folder_id = self.get_folder_id(new_obj['folder'])
if not folder_id: if not folder_id:
folder_id = self.create_passwords_folder(new_obj['folder'])['id'] created_folder = self.create_passwords_folder(new_obj['folder'])
if created_folder:
folder_id = created_folder['id']
new_obj['folder'] = folder_id new_obj['folder'] = folder_id
else: else:
new_obj.pop('folder', None) new_obj.pop('folder', None)
@ -930,9 +971,17 @@ class NextcloudHandler:
} }
) )
else: else:
if update: if update and 'id' in exists_password:
new_obj['id'] = exists_password['id'] new_obj['id'] = exists_password['id']
return self.update_password(new_obj) return self.update_password(new_obj)
if 'id' not in exists_password:
self.debug(
{
"action": "create_password",
"message": "Found an existing password without an 'id'",
"existing_password": exists_password
}
)
self.warning( self.warning(
{ {
"action": "create_password", "action": "create_password",
@ -1150,9 +1199,11 @@ class NextcloudHandler:
def get_folder_id(self, folder_name): def get_folder_id(self, folder_name):
'''Get a folder id from the name''' '''Get a folder id from the name'''
for folder in self.list_passwords_folders(): passwords_folders = self.list_passwords()
if folder['label'] == folder_name: if passwords_folders:
return folder['id'] for folder in passwords_folders:
if folder['label'] == folder_name:
return folder['id']
return False return False
class NcPasswordClient: class NcPasswordClient:
@ -1178,12 +1229,17 @@ class NcPasswordClient:
'nc_password_client.log' 'nc_password_client.log'
) )
self._init_log() self._init_log()
self.timeout = timeout
self.cache_duration = cache_duration
self.https_proxy = https_proxy
self.output_format = output_format
self.field_replacements = field_replacements
params = { params = {
"host": host, "host": host,
"user": user, "user": user,
"api_token": api_token, "api_token": api_token,
"cse_password": cse_password, "cse_password": cse_password,
"timeout": timeout, "timeout": self.timeout,
"cache_duration": cache_duration, "cache_duration": cache_duration,
"https_proxy": https_proxy, "https_proxy": https_proxy,
"logger": self._log, "logger": self._log,
@ -1191,6 +1247,7 @@ class NcPasswordClient:
"field_replacements": field_replacements, "field_replacements": field_replacements,
} }
self.nc = NextcloudHandler(params) self.nc = NextcloudHandler(params)
self.destination_nc = None
def _safer_obj(self, obj, fields=None): def _safer_obj(self, obj, fields=None):
if fields is None: if fields is None:
@ -1573,6 +1630,35 @@ class NcPasswordClient:
) )
return True return True
def migrate_passwords(
self,
destination_host,
destination_user,
destination_api_token,
destination_cse_password
):
'''Migrate passwords from one NextCloud instance to another'''
params = {
"host": destination_host,
"user": destination_user,
"api_token": destination_api_token,
"cse_password": destination_cse_password,
"timeout": self.timeout,
"cache_duration": self.cache_duration,
"https_proxy": self.https_proxy,
"logger": self._log,
"output_format": self.output_format,
"field_replacements": self.field_replacements,
}
self.destination_nc = NextcloudHandler(params)
all_passwords = self.nc.list_passwords()
if all_passwords:
for password in all_passwords:
self.destination_nc.create_password(password, update=True)
else:
return False
return True
def _init_log(self): def _init_log(self):
''' Initialize log object ''' ''' Initialize log object '''
self._log = logging.getLogger("nc_password_client") self._log = logging.getLogger("nc_password_client")
@ -1671,6 +1757,37 @@ def cli(
timeout, cache_duration, https_proxy, output_format, field_replacements timeout, cache_duration, https_proxy, output_format, field_replacements
) )
@cli.command()
@click.option(
'--destination-host', '-D',
required=True,
help='Destination host'
)
@click.option(
'--destination-user', '-U',
required=True,
help='Destination host user name'
)
@click.option(
'--destination-api-token', '-A',
required=True,
help="Destination host user's API token "
)
@click.option(
'--destination-cse-password', '-C',
help='Destination Nextcloud host user\'s end-to-end encryption password'
)
@click_config_file.configuration_option()
@click.pass_context
def migrate_passwords(ctx, destination_host, destination_user, destination_api_token, destination_cse_password):
'''Migrate passwords between two NextCloud Password instances'''
ctx.obj['NcPasswordClient'].migrate_passwords(
destination_host,
destination_user,
destination_api_token,
destination_cse_password
)
@cli.command() @cli.command()
@click.option('--name', '-n', required=True, help='Name of the password to show') @click.option('--name', '-n', required=True, help='Name of the password to show')
@click.option( @click.option(

1
requirements.txt
View file

@ -5,3 +5,4 @@ pysodium
passpy passpy
secretstorage secretstorage
pyyaml pyyaml
libsodium