Public/duplicati
2
0
Fork 0
mirror of https://github.com/duplicati/duplicati.git synced 2025-11-27 19:10:29 +08:00
Code Issues Projects Releases Packages Wiki Activity
duplicati/Duplicati/Library/SecretProvider/FileSecretProvider.cs
Kenneth Skovhede 9464caf622
 Feature/update license 2025 (#5851) 
* Fixed some minor whitespace issues

* Updated all copyright to 2025
2025-01-07 09:40:39 +01:00

91 lines
4.1 KiB
C#
Raw Permalink Blame History

// Copyright (C) 2025, The Duplicati Team
// https://duplicati.com, hello@duplicati.com
//
// Permission is hereby granted, free of charge, to any person obtaining a
// copy of this software and associated documentation files (the "Software"),
// to deal in the Software without restriction, including without limitation
// the rights to use, copy, modify, merge, publish, distribute, sublicense,
// and/or sell copies of the Software, and to permit persons to whom the
// Software is furnished to do so, subject to the following conditions:
//
// The above copyright notice and this permission notice shall be included in
// all copies or substantial portions of the Software.
//
// THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS
// OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
// FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
// AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
// LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
// FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
// DEALINGS IN THE SOFTWARE.
using System.Text.Json;
using System.Web;
using Duplicati.Library.Interface;
namespace Duplicati.Library.SecretProvider;
/// <summary>
/// Secret provider that reads secrets from a file
/// </summary>
public class FileSecretProvider : ISecretProvider
{
private const string PASSPHRASE_OPTION = "passphrase";
/// <inheritdoc />
public string Key => "file-secret";
/// <inheritdoc />
public string DisplayName => Strings.FileSecretProvider.DisplayName;
/// <inheritdoc />
public string Description => Strings.FileSecretProvider.Description;
/// <inheritdoc />
private IReadOnlyDictionary<string, string>? _secrets;
/// <inheritdoc />
public IList<ICommandLineArgument> SupportedCommands => [
new CommandLineArgument(PASSPHRASE_OPTION, CommandLineArgument.ArgumentType.String, Strings.FileSecretProvider.PassphraseDescriptionShort, Strings.FileSecretProvider.PassphraseDescriptionLong, null),
];
/// <inheritdoc />
public async Task InitializeAsync(Uri config, CancellationToken cancellationToken)
{
var path = config.LocalPath;
if (!File.Exists(path))
throw new FileNotFoundException($"File not found: {path}");
// Get the passphrase from the secrets-passphrase query parameter
var args = HttpUtility.ParseQueryString(config.Query);
var passphrase = args[PASSPHRASE_OPTION];
using var fs = File.OpenRead(path);
Dictionary<string, string> secrets;
if (string.IsNullOrEmpty(passphrase))
{
secrets = await JsonSerializer.DeserializeAsync<Dictionary<string, string>>(fs, cancellationToken: cancellationToken).ConfigureAwait(false)
?? throw new UserInformationException("The file does not contain any secrets", "NoSecrets");
}
else
{
using var ms = new MemoryStream();
await SharpAESCrypt.AESCrypt.DecryptAsync(passphrase, fs, ms, SharpAESCrypt.DecryptionOptions.Default with { LeaveOpen = true }, cancellationToken).ConfigureAwait(false);
ms.Position = 0;
secrets = await JsonSerializer.DeserializeAsync<Dictionary<string, string>>(ms, cancellationToken: cancellationToken).ConfigureAwait(false)
?? throw new UserInformationException("The file does not contain any secrets", "NoSecrets");
}
// Make secrets case-insensitive
_secrets = secrets.ToDictionary(kvp => kvp.Key, kvp => kvp.Value, StringComparer.OrdinalIgnoreCase).AsReadOnly();
}
/// <inheritdoc />
public Task<Dictionary<string, string>> ResolveSecretsAsync(IEnumerable<string> keys, CancellationToken cancellationToken)
{
if (_secrets is null)
throw new InvalidOperationException("The secret provider has not been initialized");
return Task.FromResult(keys.ToDictionary(k => k, k => _secrets.TryGetValue(k, out var value) ? value : throw new KeyNotFoundException($"The key '{k}' was not found")));
}
}
Reference in a new issue View git blame Copy permalink