envs_launcher/envs

#!/usr/bin/env bash
# ---------------------------------------------------------------------------
# envs - manage users_info.json entrys and user-submitted scripts
# forked from tilde.team

# Copyright 2018-2019, Ben Harris <ben@tilde.team>
# Copyright 2019, Sven Kinne <creme@envs.net>

# This program is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.

# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License at <http://www.gnu.org/licenses/> for
# more details.

# Usage: envs [-h|--help]

# ---------------------------------------------------------------------------
export TERM=xterm-256color

PROGNAME=${0##*/}
VERSION="0.1.0"

INFO_FILE="$HOME/.envs"

###

clean_up() { # Perform pre-exit housekeeping
  return
}


error_exit() {
  echo -e "${1:-"unknown Error"}" >&2
  clean_up
  exit 1
}


graceful_exit() {
  clean_up
  exit
}


signal_exit() { # Handle trapped signals
  case $1 in
    INT)
      error_exit "program interrupted by user" ;;
    TERM)
      printf '\n%s: program terminated\n' "$PROGNAME" >&2
      graceful_exit ;;
    *)
      error_exit "$PROGNAME: terminating on unknown signal" ;;
  esac
}


prompt_confirm() {
  while true; do
    read -r -n 1 -p "${1:-continue?} [y/n]: " REPLY
    case "$REPLY" in
      [yY]) echo ; return 0 ;;
      [nN]) echo ; return 1 ;;
      *) printf ' \033[31m %s \n\033[0m' "invalid input"
    esac
  done
}


usage() {
  printf '\n%sUser Scripts%s\n' "$(tput setaf 6)" "$(tput sgr0)"
  printf '\nusage: %s [help|list|submit|about|script_name]\n' "$PROGNAME"
  printf '  %s list                  - show a list of approved userscripts\n' "$PROGNAME"
  printf '  %s submit                - start the submission flow for your own script\n' "$PROGNAME"
  [[ $(id -u) == 0 ]] && {
    printf '  %s approve               - enter the approval queue\n' "$PROGNAME"
    printf '  %s revoke <script_name>  - send a script back to the author and remove from /envs/bin\n' "$PROGNAME"
  }
  printf '  %s about <script_name>   - get the description for script_name\n' "$PROGNAME"
  printf '  %s <script_name>         - run script_name with all remaining args are passed to the script\n' "$PROGNAME"

  printf '\n%sUser json-File Infomations%s\n' "$(tput setaf 6)" "$(tput sgr0)"
  printf '\nusage: %s [show]|[edit]|[get name]|[set name value]|[unset name]\n' "$PROGNAME"
  printf '  %s show                  - show your config file\n' "$PROGNAME"
  printf '  %s edit                  - edit your config file\n' "$PROGNAME"
  printf '  %s get <entry>           - show a entry from your config\n' "$PROGNAME"
  printf "  %s set <entry> <'value'> - set a entry to your config\n" "$PROGNAME"
  printf '  %s unset <entry>         - unset a entry from your config\n' "$PROGNAME"

  if [[ :$PATH: != *:"/envs/bin":* ]] ; then
    printf "\nadd /envs/bin to your PATH to use approved scripts without this wrapper\n"
    printf "if you're using bash, run the following to add it quickly\n"
    printf "  echo 'export PATH=\$PATH:/envs/bin' >> ~/.bashrc && source ~/.bashrc\n"
  fi
}


help_message() {
  cat <<- EOF
$(tput setaf 6)$PROGNAME (version $VERSION)$(tput sgr0)
wrapper for user-submitted scripts and users_info.json entrys
supports user settings, submission and admin approval
$(usage)
EOF
  return
}


verify_script_name() {
  [[ $1 == "" ]] && error_exit "please start over and enter the script name"
  if [[ "$(type "$1" > /dev/null 2>&1)" ]]; then
    error_exit "$1 already exists. rename your script and try again."
  fi
  [[ -x /envs/bin/"$1" ]] && error_exit "$1 is already taken. rename your script and try again."
  case "$1" in
    help|about|description|desc|list|ls|submit|apropos|approve|revoke|show|edit|get|set|unset)
      error_exit "$1 is a subcommand of envs. rename your script and try again.";;
    *)
      return;;
  esac
}


submission_checklist() {
  cat <<- EOF
requirements for submitting a user script or program:

  - placed in your ~/bin
  - executable
  - responds to help or --help
  - no name collisions with existing scripts or $PROGNAME subcommands

EOF
}


mail_body() {
  cat <<- EOF
Subject: envs script submission from $USER
From: $USER@envs.net
To: creme@envs.net

envs script submission from $USER

script name: $1

description:
-----------------------------------------------------------------------

$2

-----------------------------------------------------------------------
you'll find the script and description in: /envs/pending-submissions/$USER/$1

run this to see the approval queue:
sudo envs approve
EOF
}

#
# envs config
envs_show() { cat "$INFO_FILE" ; }

envs_edit() { if [[ -n "$EDITOR" ]]; then "$EDITOR" "$INFO_FILE"; else nano "INFO_FILE"; fi ; }

envs_get() { sed -n "/^$1=/{s#^.*=##;p}" "$INFO_FILE" ; }

envs_set() {
  if [[ -z "$(sed -n /^"$1"=/p "$INFO_FILE")" ]]; then
    echo "${1}=${2}" >> "$INFO_FILE"
  else
    sed -i "s#${1}=.*#${1}=${2}#" "$INFO_FILE"
  fi
}

envs_unset() { sed -i "s#${1}=.*#${1}=#" "$INFO_FILE" ; }

# add default config if not exists
if [ ! -f "$INFO_FILE" ]; then
  cat << EOF > "$INFO_FILE"
#
# ENVS.NET - user information config
# ( will be updated every hour )
# here you can add more details to youre users_info.json part
#
desc=a short describtion or message

# to print your ssh-pubkey in users_info.json enable this option
# set to 'y' / 'Y' or '1'
ssh_pubkey=0

# add more informations (max. 10 entrys)
#git=
#mastodon=
# you can also add a array. (each with 32 lines limit)
#name=line1
#name=line2
#nametwo=line1

EOF
fi

# check default config options
[ "$(envs_get desc)" == '' ] && envs_set desc 'a short describtion or message'
[ "$(envs_get ssh_pubkey)" == '' ] && envs_set ssh_pubkey 0


# Trap signals
trap "signal_exit TERM" TERM HUP
trap "signal_exit INT"  INT


# Parse command-line
case "$1" in
  -h | --help | help)
    help_message; graceful_exit
  ;;

  -v | --version)
    printf '%s\n' "$VERSION"
  ;;

  '-*' | '--*')
    usage
    error_exit "Unknown option $1"
  ;;


  list | ls)
    printf 'available scripts:\n\n'
    for scr in /envs/bin/*; do
      script_name=$(basename "$scr")
      target=$(readlink -f "$scr")
      printf '%s%s by %s%s\n' "$(tput setaf 6)" "$script_name" "$(stat -c '%U' "$target")" "$(tput sgr0)"
      cat /envs/descriptions/"$script_name"
      printf '\n'
    done
  ;;

  about | apropos | description | desc)
    if [[ -f /envs/descriptions/"$2" ]]; then
      cat /envs/descriptions/"$2"
    else
      printf '%s not found. try %s list to see available user scripts.\n' "$2" "$PROGNAME"
    fi
  ;;

  submit)
    printf "hello, %s! so it's time to submit your script?\n" "$USER"
    submission_checklist
    prompt_confirm "are you ready to continue?" || graceful_exit
    printf 'enter the name of your script: '
    read -r script_name

    verify_script_name "$script_name"

    if [[ -x "$HOME"/bin/"$script_name" ]]; then
      printf '\ncool, found your script\n'
      [[ -x /envs/pending-submissions/"$USER"/"$script_name"/"$script_name" ]] && error_exit "you've already submitted $script_name"
    else
      error_exit "$script_name not found in ~/bin"
    fi

    printf 'enter a description of your script:\n'
    read -r description
    printf '\nyour script, along with your description will be sent to the admins for approval\n'
    prompt_confirm "ready to submit?" || graceful_exit

    # submit now
    mkdir -p /envs/pending-submissions/"$USER"/"$script_name"
    ln -s "$HOME"/bin/"$script_name" /envs/pending-submissions/"$USER"/"$script_name"/"$script_name"
    echo "$description" > /envs/pending-submissions/"$USER"/"$script_name"/description.txt
    mail_body "$script_name" "$description" | /usr/sbin/sendmail creme
    printf 'script submitted. thanks! :)\n'
  ;;

  approve)
    [[ $(id -u) != 0 ]] && error_exit "re-run this as sudo to access the approval queue"

    printf 'welcome to the approval queue\n\n'

    for user in /envs/pending-submissions/*; do
      for scr in "$user"/*; do
        user="$(basename "$user")"
        script_name="$(basename "$scr")"
        [[ -f $scr/approved ]] && continue
        script="$scr"/"$script_name"
        printf '%s by %s\n' "$script_name" "$user"
        cat "$scr"/description.txt
        prompt_confirm "approve?" || continue

        sudo ln -s "$(readlink -f "$script")" /envs/bin/"$script_name"
        sudo cp "$scr"/description.txt /envs/descriptions/"$script_name"
        sudo touch "$scr"/approved
        sudo chmod -R 664 /envs/descriptions ; sudo chmod 755 /envs/descriptions
        sudo chown -R root:envs /envs/descriptions /envs/bin
        echo "your submission of $script_name has been approved and is now available at /envs/bin/$script_name" | /usr/sbin/sendmail "$user"
      done
    done
    echo "~~done for now~~"
  ;;

  revoke)
    [[ "$(id -u)" != 0 ]] && error_exit "re-run this as sudo to access the revoke menu"
    [[ -f /envs/bin/"$2" ]] || error_exit "$2 isn't an approved script"

    prompt_confirm "revoke $2?"
    printf 'please provide a reason: '
    read -r reason

    original_script="$(readlink -f /envs/bin/"$2")"
    author="$(stat -c '%U' "$original_script")"
    sudo rm /envs/{bin,descriptions}/"$2"
    sudo rm -rf /envs/pending-submissions/"$author"/"$2"

    echo -e "your script $2 has been returned because: $reason\nfeel free to resubmit" | /usr/sbin/sendmail "$author"
    printf '%s revoked and returned to author\n' "$2"
  ;;


  show) envs_show ;;

  edit) envs_edit ;;

  get) envs_get "$2" ;;

  set) envs_set "$2" "$3" ;;

  unset) envs_unset "$2" ;;


  *)
    if [[ -f /envs/bin/"$1" ]]; then
      prog=/envs/bin/"$1"
      shift
      $prog "$@"
      graceful_exit
    else
      [[ "$1" == "" ]] || printf "%s not found. try %s list to see what's available\n" "$1" "$PROGNAME"
      help_message; graceful_exit;
    fi
  ;;

esac

#
graceful_exit