Enable getting password from stdin #86
Conversation
endorama
force-pushed
the
get-pass-from-stdin
branch
2 times, most recently
from
15b9e23
to
dc52f50
Compare
|
After Travis, there are some errors:
|
endorama
force-pushed
the
get-pass-from-stdin
branch
from
a7061b2
to
c6a06d7
Compare
print("string", end="") is not supported by print in python 2.7.14
endorama
force-pushed
the
get-pass-from-stdin
branch
from
c6a06d7
to
3ca5e01
Compare
|
Would be great if you could update the README with a section on using tty redirection as a way to feed the password into the tool. I want to release all the recent merge requests, then we can look at the next version including this change. |
endorama
force-pushed
the
get-pass-from-stdin
branch
from
20033f7
to
7c260e0
Compare
endorama
force-pushed
the
get-pass-from-stdin
branch
from
7c260e0
to
fa1f5cc
Compare
|
@stevemac007 Readme updated as requested, please let me know if the phrasing is ok. Probably would be good to refer also to release number to make it easier to know since when this feature is available. |
README.rst
Outdated
|
|
||
| Example usage: | ||
| :: | ||
| $ password-manager show password | aws-google-auth |
There was a problem hiding this comment.
I'm not aware of what password-manager is - is it another library?
Is it worth linking to it from here too?
There was a problem hiding this comment.
Not a particular tool per se, I was meaning "whatever cli tool you are using as password manager".
I would prefer not tying the example to a specific password manager, as any cli tool that can output a password on stdout would be good.
Do you think your-password-manager-cli would be clearer?
There was a problem hiding this comment.
I think something like echo "my_password" | aws-google-auth ... would also work. People who use this tool are likely to know they can swap out the echo for anything that writes the password to stdout. Just my 2c.
There was a problem hiding this comment.
echo "my_password" |
@mide that is what I'd like to avoid. To expert users, I expect reading from stdin is a consolidated concept, as is password leaks to shell history. I'd like to avoid a sample command that's a sort of "shooting yourself in the foot" for newcomers or people not so fond on avoiding common pitfalls when using the shell.
Anyway I'm ok whit that solution as is surely clear and explicit, if someone else approves.
There was a problem hiding this comment.
I agree 100% regarding avoiding "shoot yourself in the foot" examples, but at some point, that isn't our job. I've gone back and forth on this issue quite a bit, and I'm okay either way it lands.
I think there is value in clarity, but there is also value in preventing silly mistakes. I'm fine using a placeholder for a password manager like you've done. I can go either way.
There was a problem hiding this comment.
I stand down on my feedback. Let's leave as is.
README.rst
Outdated
|
|
||
| When receiving data from ``stdin`` ``aws-google-auth`` disables the interactive prompt and uses ``stdin`` data. | ||
|
|
||
| All interactive prompt could be feeded from ``stdin``, but before `#82 <https://github.com/cevoaustralia/aws-google-auth/issues/82>`_ |
|
I like this PR as-is. I think it's a great contribution and I'm coming around to the idea that "it's not our job" to prevent people from shooting themselves in the foot (using I have a few colleagues that have shared their desire to use their password manager CLI to interact with this tool, and that's anything but "shoot yourself in the foot" behavior. |
|
Thanks a lot for merging this! 😃 |
Hello, this PR closes issue #82, providing implementation for getting password from stdin.
I extracted the
getpass.getpasscall in theUtilmodule, fixed the tests and added two unit test for the new function:test_get_password_when_ttyandtest_get_password_when_not_tty.Please have a look at the test because is my first time doing unit testing in python with these libraries.
Thank you!