ssh_auth_podman_push 1.1.14

Store and use encrypted docker-hub secret_token with SSH key
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117

// ssh_auth_podman_push/src/lib.rs

// region: auto_md_to_doc_comments include README.md A //!
//! # ssh_auth_podman_push
//!
//! **Store and use encrypted docker-hub secret_token with SSH key**  
//! ***version: 1.1.13 date: 2026-03-06 author: [bestia.dev](https://bestia.dev) repository: [codeberg.org](https://codeberg.org/CRUSTDE-ContainerizedRustDevEnv/ssh_auth_podman_push)***
//!
//!  ![work-in-progress](https://img.shields.io/badge/work_in_progress-yellow)
//!  ![rustlang](https://img.shields.io/badge/rustlang-orange)
//!  ![docker-hub](https://img.shields.io/badge/docker_hub-orange)
//!
//!  [![License](https://img.shields.io/badge/license-MIT-blue.svg)](https://codeberg.org/CRUSTDE-ContainerizedRustDevEnv/ssh_auth_podman_push/src/main/LICENSE)
//!  [![crates.io](https://img.shields.io/crates/v/ssh_auth_podman_push.svg)](https://crates.io/crates/ssh_auth_podman_push)
//!  [![Documentation](https://docs.rs/ssh_auth_podman_push/badge.svg)](https://docs.rs/ssh_auth_podman_push/)  
//!   [![repository](https://img.shields.io/badge/Repo-codeberg.org-orange.svg)](https://codeberg.org/CRUSTDE-ContainerizedRustDevEnv/ssh_auth_podman_push)
//!  [![docs development](https://img.shields.io/badge/docs-development-yellow.svg)](https://bestia.dev/docs/CRUSTDE-ContainerizedRustDevEnv/ssh_auth_podman_push)
//!  ![ssh_auth_podman_push](https://bestia.dev/webpage_hit_counter/get_svg_image/1719458563.svg)
//!
//!   ![Lines in Rust code](https://img.shields.io/badge/Lines_in_Rust-539-green.svg)
//!   ![Lines in Doc comments](https://img.shields.io/badge/Lines_in_Doc_comments-318-blue.svg)
//!   ![Lines in Comments](https://img.shields.io/badge/Lines_in_comments-66-purple.svg)
//!   ![Lines in examples](https://img.shields.io/badge/Lines_in_examples-0-yellow.svg)
//!   ![Lines in tests](https://img.shields.io/badge/Lines_in_tests-1-orange.svg)
//!
//! Hashtags: #maintained #ready-for-use #rustlang #automation #workflow  
//! My projects on GitHub are more like a tutorial than a finished product: [bestia-dev tutorials](https://codeberg.org/bestia-dev/tutorials_rust_wasm).  
//! I recommend using the [CRUSTDE - Containerized Rust Development Environment](https://codeberg.org/CRUSTDE-ContainerizedRustDevEnv/crustde_cnt_img_pod) to write Rust projects on Linux, isolated from your system.  
//!
//! ## Motivation
//!
//! To access docker-hub you need a username+password or an access secret_token.  
//! IMPORTANT: Treat access secret_tokens like your password and keep them secret. Store your secret_tokens securely in a credential manager for example.  
//! Access secret_tokens are impossible to remember for an average human. We need to store them somewhere.  
//! FYI: Podman is an alternative "drop-in replacement" for Docker.  
//! I am sure they both store the docker-hub secret_token for login with the command:
//!
//! ```bash
//! podman login --username user_name docker.io
//! docker login --username user_name docker.io
//! ```
//!
//! WARNING: Be aware that they store the secret_token in "plain-text" in the file: `${XDG_RUNTIME_DIR}/containers/auth.json`.  
//! Ok, it is not really plain-text, but base64 encoding is not a security feature.  
//! This means that every attacker that can get to this well-known file, can log in to our Docker Hub account. No bueno!!!
//!
//! I want to secure this secret_token with encryption with an SSH key.  
//! We have already a lot of experience creating, managing and securing our SSH keys. The private key is secured by a passphrase we can remember and type. Every use of the secret_token will need user interaction to type the passphrase. Very secure.  
//!
//! If we are very self-confident in our current session, we can store the SSH key in ssh-agent and write our passphrase only once.  
//! WARNING: a dedicated attacker could read from ssh-agent and discover the access secret_token without our user interaction. Use this at your discretion.  
//!
//! ## Replacement command
//!
//! Put the executable `ssh_auth_podman_push` into the folder you intend to use it.  
//! After copying, make it executable with `chmod +x ssh_auth_podman_push`.  
//! Instead of `podman push...` use `ssh_auth_podman_push`.  
//! If it finds the encrypted secret_token it will ask you for the passphrase to the private SSH key.  
//! Else it will ask you to store the encrypted secret_token with the SSH prvate key. It will be secured behind a passphrase as SSH keys do.
//!
//! ## Development details
//!
//! Read the development details in a separate md file:
//! [DEVELOPMENT.md](DEVELOPMENT.md)
//!
//! ## Releases changelog
//!
//! Read the releases changelog in a separate md file:
//! [RELEASES.md](RELEASES.md)
//!
//! ## TODO
//!
//! And code happily ever after...
//!
//! ## Open-source and free as a beer
//!
//! My open-source projects are free as a beer (MIT license).  
//! I just love programming.  
//! But I need also to drink. If you find my projects and tutorials helpful, please buy me a beer by donating to my [PayPal](https://paypal.me/LucianoBestia).  
//! You know the price of a beer in your local bar ;-)  
//! So I can drink a free beer for your health :-)  
//! [Na zdravje!](https://translate.google.com/?hl=en&sl=sl&tl=en&text=Na%20zdravje&op=translate) [Alla salute!](https://dictionary.cambridge.org/dictionary/italian-english/alla-salute) [Prost!](https://dictionary.cambridge.org/dictionary/german-english/prost) [Nazdravlje!](https://matadornetwork.com/nights/how-to-say-cheers-in-50-languages/) 🍻
//!
//! [//bestia.dev](https://bestia.dev)  
//! [//github.com/bestia-dev](https://github.com/bestia-dev)  
//! [//bestiadev.substack.com](https://bestiadev.substack.com)  
//! [//youtube.com/@bestia-dev-tutorials](https://youtube.com/@bestia-dev-tutorials)  
//!
// endregion: auto_md_to_doc_comments include README.md A //!

// access to modules
mod encrypt_decrypt_with_ssh_key_mod;
mod error_mod;

use crate::encrypt_decrypt_with_ssh_key_mod as ende;

// `pub use` allows the caller of the lib to access modules functions, structs or all(*)
pub use ende::docker_io_api_token_mod::docker_io_config_initialize;
pub use ende::docker_io_api_token_mod::push_to_docker_hub;

// // https://github.com/shiena/ansicolor/blob/master/README.md

/// ANSI color
#[allow(dead_code)]
pub const RED: &str = "\x1b[31m";
/// ANSI color
#[allow(dead_code)]
pub const YELLOW: &str = "\x1b[33m";
/// ANSI color
#[allow(dead_code)]
pub const GREEN: &str = "\x1b[32m";
/// ANSI color
#[allow(dead_code)]
pub const RESET: &str = "\x1b[0m";
/// ANSI color
#[allow(dead_code)]
pub const BLUE: &str = "\x1b[34m";