lib: security password

krishpranav · krishpranav · commit 92a57bc4e430 · 2021-08-31T18:52:58.000+05:30
diff --git a/lib/security/password.rb b/lib/security/password.rb
@@ -2,58 +2,116 @@
 
 module Security
     
-    class Password
-        attr_reader :keychain, :attributes, :password
-    
-        private_class_method :new
-    
-        def initialize(keychain, attributes, password)
-          @keychain = Keychain.new(keychain)
-          @attributes = attributes
-          @password = password
-        end
-    
-        class << self
-          private
-    
-          def password_from_output(output)
-            return nil if output.match?(/^security: /)
-    
-            keychain = nil
-            attributes = {}
-            password = nil
-            output.split(/\n/).each do |line|
-              case line
-              when /^keychain: "(.+)"/
-                keychain = Regexp.last_match(1)
-              when /"(\w{4})".+="(.+)"/
-                attributes[Regexp.last_match(1)] = Regexp.last_match(2)
-              when /"(\w{4})"<blob>=0x([[:xdigit:]]+)/
-                attributes[Regexp.last_match(1)] = decode_hex_blob(Regexp.last_match(2))
-              when /^password: "(.+)"/
-                password = Regexp.last_match(1)
-              when /^password: 0x([[:xdigit:]]+)/
-                password = decode_hex_blob(Regexp.last_match(1))
-              end
-            end
-    
-            new(keychain, attributes, password)
-          end
-    
-          def flags_for_options(options = {})
-            flags = options.dup
-            flags[:a] ||= flags.delete(:account)
-            flags[:c] ||= flags.delete(:creator)
-            flags[:C] ||= flags.delete(:type)
-            flags[:D] ||= flags.delete(:kind)
-            flags[:G] ||= flags.delete(:value)
-            flags[:j] ||= flags.delete(:comment)
-    
-            flags.delete_if { |_k, v| v.nil? }.collect { |k, v| "-#{k} #{v.shellescape}".strip }.join(' ')
-          end
-    
-          def decode_hex_blob(string)
-            [string].pack('H*').force_encoding('UTF-8')
+  class Password
+    attr_reader :keychain, :attributes, :password
+
+    private_class_method :new
+
+    def initialize(keychain, attributes, password)
+      @keychain = Keychain.new(keychain)
+      @attributes = attributes
+      @password = password
+    end
+
+    class << self
+      private
+
+      def password_from_output(output)
+        return nil if output.match?(/^security: /)
+
+        keychain = nil
+        attributes = {}
+        password = nil
+        output.split(/\n/).each do |line|
+          case line
+          when /^keychain: "(.+)"/
+            keychain = Regexp.last_match(1)
+          when /"(\w{4})".+="(.+)"/
+            attributes[Regexp.last_match(1)] = Regexp.last_match(2)
+          when /"(\w{4})"<blob>=0x([[:xdigit:]]+)/
+            attributes[Regexp.last_match(1)] = decode_hex_blob(Regexp.last_match(2))
+          when /^password: "(.+)"/
+            password = Regexp.last_match(1)
+          when /^password: 0x([[:xdigit:]]+)/
+            password = decode_hex_blob(Regexp.last_match(1))
           end
         end
-      end
+
+        new(keychain, attributes, password)
+      end
+
+      def flags_for_options(options = {})
+        flags = options.dup
+        flags[:a] ||= flags.delete(:account)
+        flags[:c] ||= flags.delete(:creator)
+        flags[:C] ||= flags.delete(:type)
+        flags[:D] ||= flags.delete(:kind)
+        flags[:G] ||= flags.delete(:value)
+        flags[:j] ||= flags.delete(:comment)
+
+        flags.delete_if { |_k, v| v.nil? }.collect { |k, v| "-#{k} #{v.shellescape}".strip }.join(' ')
+      end
+
+      def decode_hex_blob(string)
+        [string].pack('H*').force_encoding('UTF-8')
+      end
+    end
+  end
+
+  class GenericPassword < Password
+    class << self
+      def add(service, account, password, options = {})
+        options[:a] = account
+        options[:s] = service
+        options[:w] = password
+
+        system "security add-generic-password #{flags_for_options(options)}"
+      end
+
+      def find(options)
+        password_from_output(`security 2>&1 find-generic-password -g #{flags_for_options(options)}`)
+      end
+
+      def delete(options)
+        system "security delete-generic-password #{flags_for_options(options)}"
+      end
+
+      private
+
+      def flags_for_options(options = {})
+        options[:s] ||= options.delete(:service)
+        super(options)
+      end
+    end
+  end
+  
+  class InternetPassword < Password
+    class << self
+      def add(server, account, password, options = {})
+        options[:a] = account
+        options[:s] = server
+        options[:w] = password
+
+        system "security add-internet-password #{flags_for_options(options)}"
+      end
+
+      def find(options)
+        password_from_output(`security 2>&1 find-internet-password -g #{flags_for_options(options)}`)
+      end
+
+      def delete(options)
+        system "security delete-internet-password #{flags_for_options(options)}"
+      end
+
+      private
+
+      def flags_for_options(options = {})
+        options[:s] ||= options.delete(:server)
+        options[:p] ||= options.delete(:path)
+        options[:P] ||= options.delete(:port)
+        options[:r] ||= options.delete(:protocol)
+        super(options)
+      end
+    end
+  end
+end
