1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
|
#!/usr/bin/env python
# -*- coding: utf-8 -*-
# bonafide_cli.py
# Copyright (C) 2015 LEAP
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <http://www.gnu.org/licenses/>.
"""
Command Line interface for bonafide cli.
"""
# XXX Warning! Work in progress------------------------------------------------
# This is just a demo, real cli will work against a persistent bonafide daemon.
# XXX -------------------------------------------------------------------------
import argparse
import os
import sys
from getpass import getpass
from colorama import init as color_init
from colorama import Fore
from twisted.cred.credentials import UsernamePassword
from twisted.internet import reactor
from leap.bonafide import provider
from leap.bonafide import session
COMMANDS = ('signup', 'authenticate')
def _cbShutDown(ignored):
reactor.stop()
def _authEb(failure):
print(Fore.RED + "[error] " + Fore.YELLOW +
failure.getErrorMessage() + Fore.RESET)
def _display_token(result, _session):
if result == session.OK:
print('[ok] token--> ' + Fore.GREEN +
_session.token + Fore.RESET)
print('[ok] uuid --> ' + Fore.GREEN +
_session.uuid + Fore.RESET)
def _display_registered(result, _session, _provider):
ok, user = result
if ok == session.OK:
print('[ok] registered username--> ' + Fore.GREEN +
'%s@%s' % (user, _provider))
def run_command(command, _provider, username, password, skip_logout):
api = provider.Api('https://api.%s:4430' % _provider)
credentials = UsernamePassword(username, password)
cdev_pem = os.path.expanduser(
'~/.config/leap/providers/%s/keys/ca/cacert.pem' % _provider)
_session = session.Session(credentials, api, cdev_pem)
if command == 'authenticate':
d = _session.authenticate()
d.addCallback(_display_token, _session)
elif command == 'signup':
d = _session.signup(username, password)
d.addCallback(_display_registered, _session, _provider)
else:
print(Fore.YELLOW + "Command not implemented" + Fore.RESET)
sys.exit()
d.addErrback(_authEb)
if not skip_logout:
d.addCallback(lambda _: _session.logout())
d.addBoth(_cbShutDown)
reactor.run()
def main():
color_init()
description = (Fore.YELLOW + 'Manage and configure a LEAP Account '
'using the bonafide protocol.' + Fore.RESET)
parser = argparse.ArgumentParser(description=description)
parser.add_argument('command', type=str, choices=COMMANDS)
parser.add_argument(
'--skip-logout', action="store_true",
help=("Skip logout. Use this if you want to re-use the token."))
parser.add_argument('--provider', dest='provider', required=True)
parser.add_argument('--username', dest='username', required=True)
ns = parser.parse_args()
password = getpass(
Fore.BLUE + '%s@%s password:' % (
ns.username, ns.provider) + Fore.RESET)
run_command(ns.command, ns.provider, ns.username, password, ns.skip_logout)
if __name__ == '__main__':
main()
|