#!/usr/bin/ruby # author: nishiki # mail: nishiki@yaegashi.fr # info: a simple script who manage your passwords require 'rubygems' require 'gpgme' require 'csv' require 'yaml' class MPW ID = 0 NAME = 1 GROUP = 2 PROTOCOL = 3 SERVER = 4 LOGIN = 5 PASSWORD = 6 PORT = 7 COMMENT = 8 attr_accessor :error_msg # Constructor def initialize() @file_config = "#{Dir.home()}/.mpw.cfg" @error_mgs = nil end # Create a new config file # @args: key -> the gpg key to encrypt # file_gpg -> the file who is encrypted # file_pwd -> the file who stock the password # timeout_pwd -> time to save the password # @rtrn: true if le config file is create def setup(key, file_gpg, file_pwd, timeout_pwd) if not key =~ /[a-zA-Z0-9.-_]+\@[a-zA-Z0-9]+\.[a-zA-Z]+/ @error_msg = "The key string isn't in good format!" return false end if file_gpg.empty? file_gpg = "#{Dir.home()}/.mpw.gpg" end if file_pwd.empty? file_pwd = "#{Dir.home()}/.mpw.pwd" end timeout_pwd.empty? ? (timeout_pwd = 300) : (timeout_pwd = timeout_pwd.to_i) config = {'config' => {'key' => key, 'file_gpg' => file_gpg, 'timeout_pwd' => timeout_pwd, 'file_pwd' => file_pwd}} begin File.open(@file_config, 'w') do |file| file << config.to_yaml end rescue @error_msg = "Can't write the config file!" return false end return true end # Check the config file # @rtrn: true if the config file is correct def checkconfig() begin config = YAML::load_file(@file_config) @key = config['config']['key'] @file_gpg = config['config']['file_gpg'] @file_pwd = config['config']['file_pwd'] @timeout_pwd = config['config']['timeout_pwd'].to_i if @key.empty? || @file_gpg.empty? || @file_pwd.empty? return false end rescue @error_msg = "Checkconfig failed!" return false end return true end # Decrypt a gpg file # @args: password -> the GPG key password # @rtrn: true if data has been decrypted def decrypt(passwd=nil) @data = Array.new begin if passwd.nil? || passwd.empty? passwd = IO.read(@file_pwd) elsif !passwd.nil? && !passwd.empty? file_pwd = File.new(@file_pwd, 'w') File.chmod(0600, @file_pwd) file_pwd << passwd file_pwd.close end rescue return false end begin if File.exist?(@file_gpg) crypto = GPGME::Crypto.new(:armor => true) data_decrypt = crypto.decrypt(IO.read(@file_gpg), :password => passwd).read id = 0 data_decrypt.lines do |line| @data[id] = line.parse_csv.unshift(id) id += 1; end end return true rescue if !@file_pwd.nil? && File.exist?(@file_pwd) File.delete(@file_pwd) end @error_msg = "Can't decrypt file!" return false end end # Check if a password it saved # @rtrn: true if a password exist in the password file def checkFilePassword() if !@file_pwd.nil? && File.exist?(@file_pwd) && File.stat(@file_pwd).mtime.to_i + @timeout_pwd < Time.now.to_i File.delete(@file_pwd) return false elsif !@file_pwd.nil? && File.exist?(@file_pwd) return true else return false end end # Encrypt a file # @rtrn: true if the file has been encrypted def encrypt() begin crypto = GPGME::Crypto.new(:armor => true) file_gpg = File.open(@file_gpg, 'w+') data_to_encrypt = '' @data.each do |row| row.shift data_to_encrypt << "#{row.join(',')}\n" end crypto.encrypt(data_to_encrypt, :recipients => @key, :output => file_gpg) file_gpg.close return true rescue @error_msg = "Can't encrypt the GPG file!" return false end end # Search in some csv data # @args: search -> the string to search # type -> the connection type (ssh, web, other) # @rtrn: a list with the resultat of the search def search(search, protocol=nil) result = Array.new() @data.each do |row| if row[NAME] =~ /^.*#{search}.*$/ || row[SERVER] =~ /^.*#{search}.*$/ || row[COMMENT] =~ /^.*#{search}.*$/ || protocol.eql?('all') if protocol.nil? || protocol.eql?(row[PROTOCOL]) || protocol.eql?('all') result.push(row) end end end return result end # Search in some csv data # @args: id -> the id item # @rtrn: a row with the resultat of the search def searchById(id) if not @data[id.to_i].nil? return @data[id.to_i] else return Array.new end end # Add a new item # @args: name -> the item name # group -> the item group # server -> the ip or server # protocol -> the protocol # login -> the login # passwd -> the password # port -> the port # comment -> a comment # @rtrn: true if it works def add(name, group=nil, server=nil, protocol=nil, login=nil, passwd=nil, port=nil, comment=nil) row = Array.new() if name.nil? || name.empty? @error_msg = "You must define a name!" return false end if group.nil? || group.empty? group = 'No Group' end if not @data.last.nil? id = @data.last id = id[ID].to_i + 1 else id = 0 end row[ID] = id row[PORT] = port row[NAME] = name.force_encoding('ASCII-8BIT') row[GROUP] = group.force_encoding('ASCII-8BIT') server.nil? ? (row[SERVER] = nil) : (row[SERVER] = server.force_encoding('ASCII-8BIT')) protocol.nil? ? (row[PROTOCOL] = nil) : (row[PROTOCOL] = protocol.force_encoding('ASCII-8BIT')) login.nil? ? (row[LOGIN] = nil) : (row[LOGIN] = login.force_encoding('ASCII-8BIT')) passwd.nil? ? (row[PASSWORD] = nil) : (row[PASSWORD] = passwd.force_encoding('ASCII-8BIT')) comment.nil? ? (row[COMMENT] = nil) : (row[COMMENT] = comment.force_encoding('ASCII-8BIT')) @data[id] = row return true end # Update an item # @args: id -> the item's identifiant # name -> the item name # group -> the item group # server -> the ip or hostname # protocol -> the protocol # login -> the login # passwd -> the password # port -> the port # comment -> a comment # @rtrn: true if the item has been updated def update(id, name=nil, group=nil, server=nil, protocol=nil, login=nil, passwd=nil, port=nil, comment=nil) id = id.to_i if not @data[id].nil? row = @data[id] row_update = Array.new() name.empty? ? (row_update[NAME] = row[NAME]) : (row_update[NAME] = name) group.empty? ? (row_update[GROUP] = row[GROUP]) : (row_update[GROUP] = group) server.empty? ? (row_update[SERVER] = row[SERVER]) : (row_update[SERVER] = server) protocol.empty? ? (row_update[PROTOCOL] = row[PROTOCOL]) : (row_update[PROTOCOL] = protocol) login.empty? ? (row_update[LOGIN] = row[LOGIN]) : (row_update[LOGIN] = login) passwd.empty? ? (row_update[PASSWORD] = row[PASSWORD]) : (row_update[PASSWORD] = passwd) port.empty? ? (row_update[PORT] = row[PORT]) : (row_update[PORT] = port) comment.empty? ? (row_update[COMMENT] = row[COMMENT]) : (row_update[COMMENT] = comment) @data[id] = row_update return true else @error_msg = "Can't update the item, the item #{id} doesn't exist!" return false end end # Remove an item # @args: id -> the item's identifiant # @rtrn: true if the item has been deleted def remove(id) if not @data.delete_at(id.to_i).nil? return true else return false end end # Export to csv # @args: file -> a string to match # @rtrn: true if export work def export(file) begin File.open(file, 'w+') do |file| @data.each do |row| row.delete_at(ID) file << "#{row.join(',')}\n" end end return true rescue @error_msg = "Can't export, impossible to write in #{file}!" return false end end # Import to csv # @args: file -> path to file import # @rtrn: true if the import work def import(file) begin data_new = IO.read(file) data_new.lines do |line| if not line =~ /(.*,){6}/ @error_msg = "Can't import, the file is bad format!" return false else row = line.parse_csv.unshift(0) if not add(row[NAME], row[GROUP], row[SERVER], row[PROTOCOL], row[LOGIN], row[PASSWORD], row[PORT], row[COMMENT]) return false end end end return true rescue @error_msg = "Can't import, impossible to read #{file}!" return false end end # Return # @args: file -> path to file import # @rtrn: an array with the items to import, if there is an error return false def importPreview(file) begin result = Array.new() data = IO.read(file) data.lines do |line| if not line =~ /(.*,){6}/ @error_msg = "Can't import, the file is bad format!" return false else result.push(line.parse_csv) end end return result rescue @error_msg = "Can't import, impossible to read #{file}!" return false end end end