nuts_tool/cli/container/change/password.rs
1// MIT License
2//
3// Copyright (c) 2024 Robin Doer
4//
5// Permission is hereby granted, free of charge, to any person obtaining a copy
6// of this software and associated documentation files (the "Software"), to
7// deal in the Software without restriction, including without limitation the
8// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
9// sell copies of the Software, and to permit persons to whom the Software is
10// furnished to do so, subject to the following conditions:
11//
12// The above copyright notice and this permission notice shall be included in
13// all copies or substantial portions of the Software.
14//
15// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16// IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
20// FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS
21// IN THE SOFTWARE.
22
23use anyhow::Result;
24use clap::{ArgGroup, Args};
25use log::debug;
26use nuts_container::ModifyOptionsBuilder;
27use std::cell::RefCell;
28use std::os::fd::RawFd;
29use std::path::PathBuf;
30
31use crate::cli::global::PasswordSource;
32use crate::cli::open_container;
33use crate::cli::password::password_from_source_twice;
34
35thread_local! {
36 static SOURCE: RefCell<PasswordSource> = RefCell::new(Default::default());
37}
38
39fn password_callback() -> Result<Vec<u8>, String> {
40 SOURCE.with_borrow(|src| password_from_source_twice(src, "Enter a new password"))
41}
42
43#[derive(Args, Debug)]
44#[clap(group(ArgGroup::new("new_password").required(false).multiple(false)))]
45pub struct ContainerChangePasswordArgs {
46 /// Specifies the name of the container
47 #[clap(short, long, env = "NUTS_CONTAINER")]
48 container: String,
49
50 /// Reads the new password from the specified file descriptor <FD>. The
51 /// password is the first line until a `\n` is read.
52 #[clap(long, group = "new_password", value_name = "FD")]
53 new_password_from_fd: Option<RawFd>,
54
55 /// Reads the new password from the specified file <PATH>. The password is
56 /// the first line until a `\n` is read.
57 #[clap(long, group = "new_password", value_name = "PATH")]
58 new_password_from_file: Option<PathBuf>,
59}
60
61impl ContainerChangePasswordArgs {
62 pub fn run(&self) -> Result<()> {
63 debug!("args: {:?}", self);
64
65 SOURCE.with_borrow_mut(|src| {
66 *src = PasswordSource::new(
67 self.new_password_from_fd,
68 self.new_password_from_file.clone(),
69 )
70 });
71
72 let mut container = open_container(&self.container)?;
73 let options = ModifyOptionsBuilder::default()
74 .change_password(password_callback)
75 .build();
76
77 container.modify(options)?;
78
79 Ok(())
80 }
81}