src/leap/bitmask/cli/user.py


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155

# -*- coding: utf-8 -*-
# user
# Copyright (C) 2016 LEAP
#
# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program.  If not, see <http://www.gnu.org/licenses/>.
"""
Bitmask Command Line interface: user
"""
import argparse
import getpass
import sys
from copy import copy

from colorama import Fore

from leap.bitmask.cli import command


class User(command.Command):
    service = 'bonafide'
    usage = '''{name} user <subcommand>

Bitmask account service

SUBCOMMANDS:

   create     Registers new user, if possible
   auth       Logs in against the provider
   logout     Ends any active session with the provider
   list       List users
   update     Update user password
   active     Shows the active user, if any

'''.format(name=command.appname)

    commands = ['active']

    def __init__(self):
        super(User, self).__init__()
        self.data.append('user')

    def create(self, raw_args):
        args = tuple([command.appname] + sys.argv[1:4])
        passwd = None

        for (index, item) in enumerate(raw_args):
            if item.startswith('--pass'):
                passwd = raw_args.pop(index + 1)
                raw_args.pop(index)

        parser = argparse.ArgumentParser(
            description='Bitmask user',
            prog='%s %s %s  %s' % args)
        parser.add_argument('--invitecode', **_invitecode_kw)
        parser.add_argument('username', **_username_kw)

        subargs = parser.parse_args(raw_args)

        # username parsing is factored out, but won't
        # accept the optional parameters. so strip them.
        args = copy(raw_args)
        for (index, item) in enumerate(args):
            if item.startswith('--'):
                args.pop(index + 1)
                args.pop(index)

        username = self.username(args)
        if not passwd:
            passwd = self._getpass_twice()
        self.data += ['create', username, passwd,
                      subargs.invite, 'true']
        return self._send(printer=command.default_dict_printer)

    def auth(self, raw_args):
        passwd = None
        for (index, item) in enumerate(raw_args):
            if item.startswith('--pass'):
                passwd = raw_args.pop(index + 1)
                raw_args.pop(index)

        username = self.username(raw_args)
        if not passwd:
            passwd = getpass.getpass()
        self.data += ['authenticate', username, passwd, 'true']
        return self._send(printer=command.default_dict_printer)

    def logout(self, raw_args):
        username = self.username(raw_args)
        self.data += ['logout', username]
        return self._send(printer=command.default_dict_printer)

    def list(self, raw_args):
        self.data += ['list']
        return self._send(printer=self._print_user_list)

    def update(self, raw_args):
        username = self.username(raw_args)
        current_passwd = getpass.getpass('Current password: ')
        new_passwd = self._getpass_twice('New password: ')
        self.data += ['update', username, current_passwd, new_passwd]
        return self._send(printer=command.default_dict_printer)

    def username(self, raw_args):
        args = tuple([command.appname] + sys.argv[1:3])
        parser = argparse.ArgumentParser(
            description='Bitmask user',
            prog='%s %s %s' % args)
        parser.add_argument('username', **_username_kw)
        subargs = parser.parse_args(raw_args)

        username = subargs.username
        if not username:
            self._error("Missing username ID but needed for this command")
        if '@' not in username:
            self._error("Username ID must be in the form <user@example.org>")

        return username

    def _getpass_twice(self, prompt='Password: '):
        while True:
            passwd1 = getpass.getpass(prompt)
            passwd2 = getpass.getpass('Retype the password: ')
            if passwd1 == passwd2:
                return passwd1
            else:
                print "The passwords do not match, try again."
                print ""

    def _print_user_list(self, users):
        for u in users:
            color = ""
            if u['authenticated']:
                color = Fore.GREEN
            print(color + u['userid'] + Fore.RESET)


_username_kw = {
    'nargs': '?',
    'help': 'username ID, in the form <user@example.org>'}

_invitecode_kw = {
    'dest': 'invite',
    'default': 'none', 'action': 'store', 'nargs': '?', 'type': str,
    'help': 'invite code, if needed to register with this provider'}