Archives
/
git-secret
mirror of https://github.com/sobolevn/git-secret
2
1
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
verbose-test-output-2024
dependabot/docker/dot-ci/release-ci/debian/debian-12.5-slim
dependabot/docker/dot-ci/docker-ci/debian-gnupg1/debian-12.5-slim
dependabot/docker/dot-ci/docker-ci/debian-gnupg2/debian-12.5-slim
dependabot/docker/dot-ci/release-ci/alpine/alpine-3.19.1
dependabot/docker/dot-ci/releaser/alpine/alpine-3.19.1
dependabot/docker/dot-ci/docker-ci/alpine/alpine-3.19.1
gh-pages
dependabot/docker/dot-ci/release-ci/ubuntu/ubuntu-24.04
dependabot/docker/dot-ci/docker-ci/ubuntu/ubuntu-24.04
dependabot/github_actions/actions/github-script-7
sobolevn-patch-4
test-apk-and-arch
issue-881-towards-new-release
issue-916-disable-arch-tests
issue-135-spaces-in-parent-dirs
issue-918-stat-on-osx
fix-arch-signature-issue
sobolevn-patch-3
sobolevn-patch-2
sobolevn-patch-1
gitignore-grep-improvement
update-changelog
update-bats-to-1.6.0
add-multiple-files-gitignore
automated-verbose-test
passphrase1
test-on-arch
renames1
revert_usage_error_change
alma-tests
issue-765-rocky-linux
issue-755-changelog-for-bats-update
issue-638-dup-emails-test
issue-710-changelog
issue-752-add-directory
issue-710-cat-subdir-bug
v0.5.0
v0.4.0
v0.3.3
v0.2.3
v0.2.2
v0.2.1
v0.2.0
v0.1.2
v0.1.1
v0.1.0
prerelease
v0.2.4
v0.2.5
v0.2.6
v0.2.7
v0.2.7-alpha
v0.3.0
v0.3.1
v0.3.2
v0.4.0.alpha1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'b0378617e2'
${ noResults }
git-secret/src/commands/git_secret_reveal.sh

86 lines
2.0 KiB
Bash
Raw Blame History

#!/usr/bin/env bash
function reveal {
local homedir=''
local passphrase=''
local force=0 # this means 'clobber without warning'
local force_continue=0 # this means 'continue if we have decryption errors'
local preserve=0
OPTIND=1
while getopts 'hfFPd:p:v' opt; do
# line below is for _SECRETS_VERBOSE
# shellcheck disable=SC2034
case "$opt" in
h) _show_manual_for 'reveal';;
f) force=1;;
F) force_continue=1;;
P) preserve=1;;
p) passphrase=$OPTARG;;
d) homedir=$(_clean_windows_path "$OPTARG");;
v) _SECRETS_VERBOSE=1;;
*) _invalid_option_for 'reveal';;
esac
done
shift $((OPTIND-1))
[ "$1" = '--' ] && shift
_user_required
# Command logic:
local path_mappings
path_mappings=$(_get_secrets_dir_paths_mapping)
local counter=0
local to_show=( "$@" )
local path_prepend_func='_prepend_relative_root_path'
if [ ${#to_show[@]} -eq 0 ]; then
path_prepend_func='_prepend_root_path'
while read -r record; do
to_show+=("$record") # add record to array
done < "$path_mappings"
fi
for line in "${to_show[@]}"; do
local filename
local path
filename=$(_get_record_filename "$line")
path=$("$path_prepend_func" "$filename")
if [[ "$filename" == *"$SECRETS_EXTENSION" ]]; then
_abort "cannot decrypt to secret version of file: $filename"
fi
# The parameters are: filename, write-to-file, force, homedir, passphrase, error_ok
_decrypt "$path" "1" "$force" "$homedir" "$passphrase" "$force_continue"
if [[ ! -f "$path" ]]; then
_warn_or_abort "cannot find decrypted version of file: $filename" "2" "$force_continue"
else
counter=$((counter+1))
local secret_file
secret_file=$(_get_encrypted_filename "$path")
if [[ "$preserve" == 1 ]] && [[ -f "$secret_file" ]]; then
local perms
perms=$($SECRETS_OCTAL_PERMS_COMMAND "$secret_file")
chmod "$perms" "$path"
fi
fi
done
_message "done. $counter of ${#to_show[@]} files are revealed."
}
Reference in New Issue View Git Blame Copy Permalink