bgit 0.4.2

User-friendly Git wrapper for beginners, automating essential tasks like adding, committing, and pushing changes. It includes smart rules to avoid common pitfalls, such as accidentally adding sensitive files or directories and has exclusive support for portable hooks!
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345

#![allow(unused)]
use crate::bgit_error::BGitError;
use base64::Engine;
use log::debug;
use serde::{Deserialize, Serialize};
use std::fs;
use std::path::PathBuf;

/// Global, per-user configuration stored under the user's config directory
/// (e.g. Linux/macOS: ~/.config/bgit/config.toml, Windows: %APPDATA%/bgit/config.toml).
#[derive(Debug, Deserialize, Serialize, Clone, Default)]
pub struct BGitGlobalConfig {
    #[serde(default)]
    pub auth: GlobalAuth,
    /// Third-party integrations and API keys
    #[serde(default)]
    pub integrations: GlobalIntegrations,
}

#[derive(Debug, Deserialize, Serialize, Clone, Copy, PartialEq, Eq, Default)]
pub enum PreferredAuth {
    #[serde(rename = "repositoryURLBased")]
    #[default]
    RepositoryURLBased,
    #[serde(rename = "ssh")]
    Ssh,
    #[serde(rename = "https")]
    Https,
}

#[derive(Debug, Deserialize, Serialize, Clone)]
pub struct GlobalAuth {
    /// Preferred authentication method when both are possible.
    /// Values: "repositoryURLBased" | "ssh" | "https"
    #[serde(default)]
    pub preferred: PreferredAuth,
    /// HTTPS credentials (optional)
    #[serde(default)]
    pub https: HttpsAuth,
    /// SSH settings (optional)
    #[serde(default)]
    pub ssh: SshAuth,
}

impl Default for GlobalAuth {
    fn default() -> Self {
        Self {
            preferred: PreferredAuth::RepositoryURLBased,
            https: HttpsAuth::default(),
            ssh: SshAuth::default(),
        }
    }
}

#[derive(Debug, Deserialize, Serialize, Clone, Default)]
pub struct GlobalIntegrations {
    /// Optional Google API key stored as base64 in config and decoded on load.
    /// TOML path: [integrations] google_api_key = "...base64..."
    #[serde(
        default,
        deserialize_with = "deserialize_b64_opt",
        serialize_with = "serialize_b64_opt",
        skip_serializing_if = "Option::is_none"
    )]
    pub google_api_key: Option<String>,
}

#[derive(Debug, Deserialize, Serialize, Clone, Default)]
pub struct HttpsAuth {
    /// Username for HTTPS auth
    pub username: Option<String>,
    /// Personal Access Token (base64-encoded in config, decoded on load)
    #[serde(
        default,
        deserialize_with = "deserialize_b64_opt",
        serialize_with = "serialize_b64_opt",
        skip_serializing_if = "Option::is_none"
    )]
    pub pat: Option<String>,
}

#[derive(Debug, Deserialize, Serialize, Clone, Default)]
pub struct SshAuth {
    /// Path to private key file to use for SSH auth (optional)
    pub key_file: Option<std::path::PathBuf>,
}

// Custom deserializer to decode optional base64 strings (generic messages)
fn deserialize_b64_opt<'de, D>(deserializer: D) -> Result<Option<String>, D::Error>
where
    D: serde::Deserializer<'de>,
{
    use serde::Deserialize;
    let opt = Option::<String>::deserialize(deserializer)?;
    if let Some(s) = opt {
        if s.is_empty() {
            return Ok(None);
        }
        match base64::engine::general_purpose::STANDARD.decode(s.as_bytes()) {
            Ok(bytes) => match String::from_utf8(bytes) {
                Ok(decoded) => Ok(Some(decoded)),
                Err(e) => Err(serde::de::Error::custom(format!(
                    "base64 decodes to non-UTF8: {e}"
                ))),
            },
            Err(e) => Err(serde::de::Error::custom(format!("Invalid base64: {e}"))),
        }
    } else {
        Ok(None)
    }
}

// Custom serializer to encode optional strings as base64 when saving
fn serialize_b64_opt<S>(val: &Option<String>, serializer: S) -> Result<S::Ok, S::Error>
where
    S: serde::Serializer,
{
    match val {
        Some(s) if !s.is_empty() => {
            let enc = base64::engine::general_purpose::STANDARD.encode(s.as_bytes());
            serializer.serialize_str(&enc)
        }
        _ => serializer.serialize_none(),
    }
}

impl BGitGlobalConfig {
    /// Load global per-user config from the platform's config directory.
    /// If file is missing or invalid, returns defaults.
    pub fn load_global() -> Result<BGitGlobalConfig, Box<BGitError>> {
        let path = BGitGlobalConfig::find_global_config_path();
        debug!("Global config - resolved path: {}", path.display());

        if !path.exists() {
            debug!(
                "Global config file not found at {}, using defaults",
                path.display()
            );
            return Ok(BGitGlobalConfig::default());
        }

        let config_content = fs::read_to_string(&path).map_err(|e| {
            Box::new(BGitError::new(
                "Failed to read global config file",
                &format!("Could not read {}: {}", path.display(), e),
                crate::bgit_error::BGitErrorWorkflowType::Config,
                crate::bgit_error::NO_STEP,
                crate::bgit_error::NO_EVENT,
                crate::bgit_error::NO_RULE,
            ))
        })?;

        let config: BGitGlobalConfig = toml::from_str(&config_content).map_err(|e| {
            Box::new(BGitError::new(
                "Failed to parse global config file",
                &format!("Invalid TOML in {}: {}", path.display(), e),
                crate::bgit_error::BGitErrorWorkflowType::Config,
                crate::bgit_error::NO_STEP,
                crate::bgit_error::NO_EVENT,
                crate::bgit_error::NO_RULE,
            ))
        })?;

        debug!(
            "Global config loaded: auth.preferred={:?}",
            config.auth.preferred
        );

        Ok(config)
    }

    /// Platform-appropriate path to the per-user bgit config file
    /// Linux/macOS: $XDG_CONFIG_HOME/bgit/config.toml or ~/.config/bgit/config.toml
    /// Windows: %APPDATA%/bgit/config.toml
    pub fn find_global_config_path() -> PathBuf {
        // Windows first
        #[cfg(windows)]
        {
            if let Ok(appdata) = std::env::var("APPDATA") {
                let mut p = PathBuf::from(appdata);
                p.push("bgit");
                p.push("config.toml");
                debug!("Using Windows APPDATA for global config: {}", p.display());
                return p;
            }
        }

        // XDG on Unix (and also as a fallback on Windows if APPDATA not set)
        if let Ok(xdg) = std::env::var("XDG_CONFIG_HOME") {
            let mut p = PathBuf::from(xdg);
            p.push("bgit");
            p.push("config.toml");
            debug!("Using XDG_CONFIG_HOME for global config: {}", p.display());
            return p;
        }

        // Default to ~/.config/bgit/config.toml
        let mut p = home::home_dir().unwrap_or_else(|| PathBuf::from("."));
        p.push(".config");
        p.push("bgit");
        p.push("config.toml");
        debug!(
            "Using default ~/.config path for global config: {}",
            p.display()
        );
        p
    }

    /// Save global configuration to the platform's config file path.
    /// Secrets are serialized as base64 to match loader expectations.
    pub fn save_global(&self) -> Result<(), Box<BGitError>> {
        let path = BGitGlobalConfig::find_global_config_path();
        if let Some(parent) = path.parent()
            && let Err(e) = fs::create_dir_all(parent)
        {
            return Err(Box::new(BGitError::new(
                "Failed to create global config directory",
                &format!("Could not create {}: {}", parent.display(), e),
                crate::bgit_error::BGitErrorWorkflowType::Config,
                crate::bgit_error::NO_STEP,
                crate::bgit_error::NO_EVENT,
                crate::bgit_error::NO_RULE,
            )));
        }

        let toml_content = toml::to_string_pretty(self).map_err(|e| {
            Box::new(BGitError::new(
                "Failed to serialize global config",
                &format!("TOML serialization error: {}", e),
                crate::bgit_error::BGitErrorWorkflowType::Config,
                crate::bgit_error::NO_STEP,
                crate::bgit_error::NO_EVENT,
                crate::bgit_error::NO_RULE,
            ))
        })?;

        fs::write(&path, toml_content).map_err(|e| {
            Box::new(BGitError::new(
                "Failed to write global config file",
                &format!("Could not write {}: {}", path.display(), e),
                crate::bgit_error::BGitErrorWorkflowType::Config,
                crate::bgit_error::NO_STEP,
                crate::bgit_error::NO_EVENT,
                crate::bgit_error::NO_RULE,
            ))
        })
    }
    /// Helper to fetch Google API key from new location.
    pub fn get_google_api_key(&self) -> Option<&str> {
        self.integrations.google_api_key.as_deref()
    }

    /// Helper to fetch HTTPS credentials if configured (username, pat)
    pub fn get_https_credentials(&self) -> Option<(&str, &str)> {
        match (&self.auth.https.username, &self.auth.https.pat) {
            (Some(u), Some(t)) if !u.is_empty() && !t.is_empty() => Some((u.as_str(), t.as_str())),
            _ => None,
        }
    }

    /// Helper to fetch preferred SSH key file path if configured, expanding ~ if present
    pub fn get_ssh_key_file(&self) -> Option<std::path::PathBuf> {
        let p = self.auth.ssh.key_file.as_ref()?;
        let s = p.to_string_lossy();
        if let Some(rest) = s.strip_prefix("~/")
            && let Some(home) = home::home_dir()
        {
            return Some(home.join(rest));
        }
        Some(p.clone())
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    #[test]
    fn test_global_google_api_key_decoding() {
        let key_plain = "my-google-api-key-123";
        let key_b64 = base64::engine::general_purpose::STANDARD.encode(key_plain.as_bytes());

        let content = format!(
            "[auth]\npreferred = \"repositoryURLBased\"\n\n[integrations]\ngoogle_api_key = \"{}\"\n",
            key_b64
        );
        let cfg: BGitGlobalConfig = toml::from_str(&content).unwrap();
        assert_eq!(cfg.integrations.google_api_key.as_deref(), Some(key_plain));
        // Accessor fallback should also return it
        assert_eq!(cfg.get_google_api_key(), Some(key_plain));
    }

    #[test]
    fn test_global_defaults_from_empty() {
        // Empty TOML should yield defaults
        let cfg: BGitGlobalConfig = toml::from_str("").unwrap();
        assert_eq!(cfg.auth.preferred, PreferredAuth::RepositoryURLBased);
        assert!(cfg.integrations.google_api_key.is_none());
        assert!(cfg.get_google_api_key().is_none());
    }

    #[test]
    fn test_global_preferred_variants() {
        let toml_repouri = r#"[auth]
preferred = "repositoryURLBased"
"#;
        let cfg: BGitGlobalConfig = toml::from_str(toml_repouri).unwrap();
        assert_eq!(cfg.auth.preferred, PreferredAuth::RepositoryURLBased);

        let toml_ssh = r#"[auth]
preferred = "ssh"
"#;
        let cfg: BGitGlobalConfig = toml::from_str(toml_ssh).unwrap();
        assert_eq!(cfg.auth.preferred, PreferredAuth::Ssh);

        let toml_https = r#"[auth]
preferred = "https"
"#;
        let cfg: BGitGlobalConfig = toml::from_str(toml_https).unwrap();
        assert_eq!(cfg.auth.preferred, PreferredAuth::Https);
    }

    #[test]
    fn test_global_google_api_key_invalid_base64() {
        let content = "[auth]\npreferred = \"repositoryURLBased\"\n[integrations]\ngoogle_api_key = \"not_base64!\"\n";
        let err = toml::from_str::<BGitGlobalConfig>(content).unwrap_err();
        let msg = err.to_string();
        assert!(msg.contains("Invalid base64"));
    }

    #[test]
    fn test_global_https_pat_decoding() {
        let user = "alice";
        let pat_plain = "tok_123";
        let pat_b64 = base64::engine::general_purpose::STANDARD.encode(pat_plain.as_bytes());
        let content = format!(
            "[auth]\npreferred=\"https\"\n[auth.https]\nusername=\"{user}\"\npat=\"{pat}\"\n",
            user = user,
            pat = pat_b64
        );
        let cfg: BGitGlobalConfig = toml::from_str(&content).unwrap();
        let creds = cfg.get_https_credentials().unwrap();
        assert_eq!(creds.0, user);
        assert_eq!(creds.1, pat_plain);
    }
}