mirror of
https://gitlab.com/pulsechaincom/prysm-pulse.git
synced 2024-12-25 12:57:18 +00:00
4a78071e41
* explicit password requirements * explicit reqs * explicit reqs Co-authored-by: prylabs-bulldozer[bot] <58059840+prylabs-bulldozer[bot]@users.noreply.github.com>
173 lines
5.4 KiB
Go
173 lines
5.4 KiB
Go
package promptutil
|
|
|
|
import (
|
|
"bufio"
|
|
"fmt"
|
|
"io"
|
|
"io/ioutil"
|
|
"os"
|
|
"strings"
|
|
|
|
"github.com/logrusorgru/aurora"
|
|
"github.com/pkg/errors"
|
|
"github.com/prysmaticlabs/prysm/shared/fileutil"
|
|
log "github.com/sirupsen/logrus"
|
|
"github.com/urfave/cli/v2"
|
|
"golang.org/x/crypto/ssh/terminal"
|
|
)
|
|
|
|
var au = aurora.NewAurora(true)
|
|
|
|
// PasswordReaderFunc takes in a *file and returns a password using the terminal package
|
|
func passwordReaderFunc(file *os.File) ([]byte, error) {
|
|
pass, err := terminal.ReadPassword(int(file.Fd()))
|
|
return pass, err
|
|
}
|
|
|
|
// PasswordReader has passwordReaderFunc as the default but can be changed for testing purposes.
|
|
var PasswordReader = passwordReaderFunc
|
|
|
|
// ValidatePrompt requests the user for text and expects the user to fulfill the provided validation function.
|
|
func ValidatePrompt(r io.Reader, promptText string, validateFunc func(string) error) (string, error) {
|
|
var responseValid bool
|
|
var response string
|
|
for !responseValid {
|
|
fmt.Printf("%s:\n", au.Bold(promptText))
|
|
scanner := bufio.NewScanner(r)
|
|
if ok := scanner.Scan(); ok {
|
|
item := scanner.Text()
|
|
response = strings.TrimRight(item, "\r\n")
|
|
if err := validateFunc(response); err != nil {
|
|
fmt.Printf("Entry not valid: %s\n", au.BrightRed(err))
|
|
} else {
|
|
responseValid = true
|
|
}
|
|
} else {
|
|
return "", errors.New("could not scan text input")
|
|
}
|
|
}
|
|
return response, nil
|
|
}
|
|
|
|
// DefaultPrompt prompts the user for any text and performs no validation. If nothing is entered it returns the default.
|
|
func DefaultPrompt(promptText, defaultValue string) (string, error) {
|
|
var response string
|
|
if defaultValue != "" {
|
|
fmt.Printf("%s %s:\n", promptText, fmt.Sprintf("(%s: %s)", au.BrightGreen("default"), defaultValue))
|
|
} else {
|
|
fmt.Printf("%s\n", promptText)
|
|
}
|
|
scanner := bufio.NewScanner(os.Stdin)
|
|
if ok := scanner.Scan(); ok {
|
|
item := scanner.Text()
|
|
response = strings.TrimRight(item, "\r\n")
|
|
if response == "" {
|
|
return defaultValue, nil
|
|
}
|
|
return response, nil
|
|
}
|
|
return "", errors.New("could not scan text input")
|
|
}
|
|
|
|
// DefaultAndValidatePrompt prompts the user for any text and expects it to fulfill a validation function. If nothing is entered
|
|
// the default value is returned.
|
|
func DefaultAndValidatePrompt(promptText, defaultValue string, validateFunc func(string) error) (string, error) {
|
|
var responseValid bool
|
|
var response string
|
|
for !responseValid {
|
|
fmt.Printf("%s %s:\n", promptText, fmt.Sprintf("(%s: %s)", au.BrightGreen("default"), defaultValue))
|
|
scanner := bufio.NewScanner(os.Stdin)
|
|
if ok := scanner.Scan(); ok {
|
|
item := scanner.Text()
|
|
response = strings.TrimRight(item, "\r\n")
|
|
if response == "" {
|
|
return defaultValue, nil
|
|
}
|
|
if err := validateFunc(response); err != nil {
|
|
fmt.Printf("Entry not valid: %s\n", au.BrightRed(err))
|
|
} else {
|
|
responseValid = true
|
|
}
|
|
} else {
|
|
return "", errors.New("could not scan text input")
|
|
}
|
|
}
|
|
return response, nil
|
|
}
|
|
|
|
// PasswordPrompt prompts the user for a password, that repeatedly requests the password until it qualifies the
|
|
// passed in validation function.
|
|
func PasswordPrompt(promptText string, validateFunc func(string) error) (string, error) {
|
|
var responseValid bool
|
|
var response string
|
|
for !responseValid {
|
|
fmt.Printf("%s: ", au.Bold(promptText))
|
|
bytePassword, err := PasswordReader(os.Stdin)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
response = strings.TrimRight(string(bytePassword), "\r\n")
|
|
if err := validateFunc(response); err != nil {
|
|
fmt.Printf("\nEntry not valid: %s\n", au.BrightRed(err))
|
|
} else {
|
|
fmt.Println("")
|
|
responseValid = true
|
|
}
|
|
}
|
|
return response, nil
|
|
}
|
|
|
|
// InputPassword with a custom validator along capabilities of confirming
|
|
// the password and reading it from disk if a specified flag is set.
|
|
func InputPassword(
|
|
cliCtx *cli.Context,
|
|
passwordFileFlag *cli.StringFlag,
|
|
promptText, confirmText string,
|
|
shouldConfirmPassword bool,
|
|
passwordValidator func(input string) error,
|
|
) (string, error) {
|
|
if cliCtx.IsSet(passwordFileFlag.Name) {
|
|
passwordFilePathInput := cliCtx.String(passwordFileFlag.Name)
|
|
passwordFilePath, err := fileutil.ExpandPath(passwordFilePathInput)
|
|
if err != nil {
|
|
return "", errors.Wrap(err, "could not determine absolute path of password file")
|
|
}
|
|
data, err := ioutil.ReadFile(passwordFilePath)
|
|
if err != nil {
|
|
return "", errors.Wrap(err, "could not read password file")
|
|
}
|
|
enteredPassword := strings.TrimRight(string(data), "\r\n")
|
|
if err := passwordValidator(enteredPassword); err != nil {
|
|
return "", errors.Wrap(err, "password did not pass validation")
|
|
}
|
|
return enteredPassword, nil
|
|
}
|
|
if strings.Contains(strings.ToLower(promptText), "new wallet") {
|
|
fmt.Println("Password requirements: at least 8 characters including at least 1 alphabetical character, 1 number, and 1 unicode special character. " +
|
|
"Must not be a common password nor easy to guess")
|
|
}
|
|
var hasValidPassword bool
|
|
var password string
|
|
var err error
|
|
for !hasValidPassword {
|
|
password, err = PasswordPrompt(promptText, passwordValidator)
|
|
if err != nil {
|
|
return "", fmt.Errorf("could not read password: %w", err)
|
|
}
|
|
if shouldConfirmPassword {
|
|
passwordConfirmation, err := PasswordPrompt(confirmText, passwordValidator)
|
|
if err != nil {
|
|
return "", fmt.Errorf("could not read password confirmation: %w", err)
|
|
}
|
|
if password != passwordConfirmation {
|
|
log.Error("Passwords do not match")
|
|
continue
|
|
}
|
|
hasValidPassword = true
|
|
} else {
|
|
return password, nil
|
|
}
|
|
}
|
|
return password, nil
|
|
}
|