mirror of
https://github.com/restic/restic.git
synced 2026-06-27 11:04:17 +00:00
Michael Eischer
d9d54a505e
Move Printer and NewNoopPrinter to internal/restic so repository does not have to import the ui packages.
95 lines
2.5 KiB
Go
95 lines
2.5 KiB
Go
package main
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/restic/restic/internal/errors"
|
|
"github.com/restic/restic/internal/global"
|
|
"github.com/restic/restic/internal/repository"
|
|
"github.com/restic/restic/internal/restic"
|
|
"github.com/restic/restic/internal/ui"
|
|
"github.com/restic/restic/internal/ui/progress"
|
|
"github.com/spf13/cobra"
|
|
"github.com/spf13/pflag"
|
|
)
|
|
|
|
func newKeyPasswdCommand(globalOptions *global.Options) *cobra.Command {
|
|
var opts KeyPasswdOptions
|
|
|
|
cmd := &cobra.Command{
|
|
Use: "passwd",
|
|
Short: "Change key (password); creates a new key ID and removes the old key ID, returns new key ID",
|
|
Long: `
|
|
The "key passwd" command creates a new key, validates the key and removes the old key ID.
|
|
Returns the new key ID.
|
|
|
|
EXIT STATUS
|
|
===========
|
|
|
|
Exit status is 0 if the command was successful.
|
|
Exit status is 1 if there was any error.
|
|
Exit status is 10 if the repository does not exist.
|
|
Exit status is 11 if the repository is already locked.
|
|
Exit status is 12 if the password is incorrect.
|
|
`,
|
|
DisableAutoGenTag: true,
|
|
RunE: func(cmd *cobra.Command, args []string) error {
|
|
return runKeyPasswd(cmd.Context(), *globalOptions, opts, args, globalOptions.Term)
|
|
},
|
|
}
|
|
|
|
opts.AddFlags(cmd.Flags())
|
|
return cmd
|
|
}
|
|
|
|
type KeyPasswdOptions struct {
|
|
KeyAddOptions
|
|
}
|
|
|
|
func (opts *KeyPasswdOptions) AddFlags(flags *pflag.FlagSet) {
|
|
opts.KeyAddOptions.Add(flags)
|
|
}
|
|
|
|
func runKeyPasswd(ctx context.Context, gopts global.Options, opts KeyPasswdOptions, args []string, term ui.Terminal) error {
|
|
if len(args) > 0 {
|
|
return fmt.Errorf("the key passwd command expects no arguments, only options - please see `restic help key passwd` for usage and flags")
|
|
}
|
|
|
|
printer := progress.NewTerminalPrinter(false, gopts.Verbosity, term)
|
|
ctx, repo, unlock, err := openWithExclusiveLock(ctx, gopts, false, printer)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer unlock()
|
|
|
|
return changePassword(ctx, repo, gopts, opts, printer)
|
|
}
|
|
|
|
func changePassword(ctx context.Context, repo *repository.Repository, gopts global.Options, opts KeyPasswdOptions, printer restic.Printer) error {
|
|
pw, err := getNewPassword(ctx, gopts, opts.NewPasswordFile, opts.InsecureNoPassword)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
id, err := repository.AddKey(ctx, repo, pw, opts.Username, opts.Hostname, repo.Key())
|
|
if err != nil {
|
|
return errors.Fatalf("creating new key failed: %v", err)
|
|
}
|
|
oldID := repo.KeyID()
|
|
|
|
err = switchToNewKeyAndRemoveIfBroken(ctx, repo, id, pw)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
err = repository.RemoveKey(ctx, repo, oldID)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
printer.P("saved new key as %s", id)
|
|
|
|
return nil
|
|
}
|