Home Explore Help
Sign In
emacs
/
emacs-bitwarden
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: dbca667229
Branches Tags
emacs-bitwarden
/
bitwarden.el

bitwarden.el 6.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181 
  1. ;;; bitwarden.el --- Bitwarden command wrapper -*- lexical-binding: t -*-
    2. 

  2. 

  3. ;; Copyright (C) 2018  Sean Farley
    4. 

  4. 

  5. ;; Author: Sean Farley
    6. 

  6. ;; URL: https://github.com/seanfarley/emacs-bitwarden
    7. 

  7. ;; Version: 0.1.0
    8. 

  8. ;; Created: 2018-09-04
    9. 

  9. ;; Package-Requires: ((emacs "24.4"))
    10. 

  10. ;; Keywords: extensions processes bw bitwarden
    11. 

  11. 

  12. ;;; License
    13. 

  13. 

  14. ;; This program is free software: you can redistribute it and/or modify
    15. 

  15. ;; it under the terms of the GNU General Public License as published by
    16. 

  16. ;; the Free Software Foundation, either version 3 of the License, or
    17. 

  17. ;; (at your option) any later version.
    18. 

  18. 

  19. ;; This program is distributed in the hope that it will be useful,
    20. 

  20. ;; but WITHOUT ANY WARRANTY; without even the implied warranty of
    21. 

  21. ;; MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    22. 

  22. ;; GNU General Public License for more details.
    23. 

  23. 

  24. ;; You should have received a copy of the GNU General Public License
    25. 

  25. ;; along with this program.  If not, see <http://www.gnu.org/licenses/>.
    26. 

  26. 

  27. ;;; Commentary:
    28. 

  28. 

  29. ;; This package wraps the bitwarden command-line program.
    30. 

  30. 

  31. ;;; Code:
    32. 

  32. 

  33. (require 'json)
    34. 

  34. 

  35. (defcustom bitwarden-bw-executable (executable-find "bw")
    36. 

  36.   "The bw cli executable used by Bitwarden."
    37. 

  37.   :group 'bitwarden
    38. 

  38.   :type 'string)
    39. 

  39. 

  40. (defcustom bitwarden-data-file
    41. 

  41.   (expand-file-name "~/Library/Application Support/Bitwarden CLI/data.json")
    42. 

  42.   "The bw cli executable used by Bitwarden."
    43. 

  43.   :group 'bitwarden
    44. 

  44.   :type 'string)
    45. 

  45. 

  46. (defcustom bitwarden-user nil
    47. 

  47.   "Bitwarden user e-mail."
    48. 

  48.   :group 'bitwarden
    49. 

  49.   :type 'string)
    50. 

  50. 

  51. (defun bitwarden-logged-in-p ()
    52. 

  52.   "Check if `bitwarden-user' is logged in.
    53. 

  53. Returns nil if not logged in."
    54. 

  54.   (let* ((json-object-type 'hash-table)
    55. 

  55.          (json-key-type 'string)
    56. 

  56.          (json (json-read-file bitwarden-data-file)))
    57. 

  57.     (gethash "__PROTECTED__key" json)))
    58. 

  58. 

  59. (defun bitwarden-unlocked-p ()
    60. 

  60.   "Check if we have already set the 'BW_SESSION' environment variable."
    61. 

  61.   (and (bitwarden-logged-in-p) (getenv "BW_SESSION")))
    62. 

  62. 

  63. (defun bitwarden--raw-runcmd (cmd &rest args)
    64. 

  64.   "Run bw command CMD with ARGS.
    65. 

  65. Returns a list with the first element being the exit code and the
    66. 

  66. second element being the output."
    67. 

  67.   (with-temp-buffer
    68. 

  68.     (list (apply 'call-process
    69. 

  69.                  bitwarden-bw-executable
    70. 

  70.                  nil (current-buffer) nil
    71. 

  71.                  (cons cmd args))
    72. 

  72.           (replace-regexp-in-string "\n$" ""
    73. 

  73.                                     (buffer-string)))))
    74. 

  74. 

  75. (defun bitwarden-runcmd (cmd &rest args)
    76. 

  76.   "Run bw command CMD with ARGS.
    77. 

  77. This is a wrapper for `bitwarden--raw-runcmd' that also checks
    78. 

  78. for common errors."
    79. 

  79.   (if (bitwarden-logged-in-p)
    80. 

  80.       (if (bitwarden-unlocked-p)
    81. 

  81.           (let* ((ret (apply #'bitwarden--raw-runcmd cmd args))
    82. 

  82.                  (exit-code (nth 0 ret))
    83. 

  83.                  (output (nth 1 ret)))
    84. 

  84.             (if (eq exit-code 0)
    85. 

  85.                 output
    86. 

  86.               (cond ((string-match "^More than one result was found." output)
    87. 

  87.                      (message "Bitwarden: more than one result found"))
    88. 

  88.                     (t
    89. 

  89.                      (message "Bitwarden: unknown error: %s" output)))))
    90. 

  90.         (message "Bitwarden: vault is locked"))
    91. 

  91.     (message "Bitwarden: you are not logged in")))
    92. 

  92. 

  93. (defun bitwarden--login-proc-filter (proc string)
    94. 

  94.   "Interacts with PROC by sending line-by-line STRING."
    95. 

  95.   ;; read username if not defined
    96. 

  96.   (when (string-match "^? Email address:" string)
    97. 

  97.     (let ((user (read-string "Bitwarden email: ")))
    98. 

  98.       ;; if we are here then the user forgot to fill in this field so let's do
    99. 

  99.       ;; that now
    100. 

  100.       (setq bitwarden-user user)
    101. 

  101.       (process-send-string proc (concat bitwarden-user "\n"))))
    102. 

  102. 

  103.   ;; read master password
    104. 

  104.   (when (string-match "^? Master password:" string)
    105. 

  105.     (process-send-string
    106. 

  106.      proc (concat (read-passwd "Bitwarden master password: ") "\n")))
    107. 

  107. 

  108.   ;; check for bad password
    109. 

  109.   (when (string-match "^Username or password is incorrect" string)
    110. 

  110.     (message "Bitwarden: incorrect master password"))
    111. 

  111. 

  112.   ;; if trying to unlock, check if logged in
    113. 

  113.   (when (string-match "^You are not logged in" string)
    114. 

  114.     (message "Bitwarden: cannot unlock: not logged in"))
    115. 

  115. 

  116.   ;; read the 2fa code
    117. 

  117.   (when (string-match "^? Two-step login code:" string)
    118. 

  118.     (process-send-string
    119. 

  119.      proc (concat (read-passwd "Bitwarden two-step login code: ") "\n")))
    120. 

  120. 

  121.   ;; check for bad code
    122. 

  122.   (when (string-match "^Login failed" string)
    123. 

  123.     (message "Bitwarden: incorrect two-step code"))
    124. 

  124. 

  125.   ;; check for already logged in
    126. 

  126.   (when (string-match "^You are already logged in" string)
    127. 

  127.     (string-match "You are already logged in as \\(.*\\)\\." string)
    128. 

  128.     (message "Bitwarden: already logged in as %s" (match-string 1 string)))
    129. 

  129. 

  130.   ;; success! now save the BW_SESSION into the environment so spawned processes
    131. 

  131.   ;; inherit it
    132. 

  132.   (when (string-match "^\\(You are logged in\\|Your vault is now unlocked\\)"
    133. 

  133.                       string)
    134. 

  134.     ;; set the session env variable so spawned processes inherit
    135. 

  135.     (string-match "export BW_SESSION=\"\\(.*\\)\"" string)
    136. 

  136.     (setenv "BW_SESSION" (match-string 1 string))
    137. 

  137.     (message
    138. 

  138.      (concat "Bitwarden: successfully logged in as " bitwarden-user))))
    139. 

  139. 

  140. (defun bitwarden--raw-unlock (cmd)
    141. 

  141.   "Raw CMD to either unlock a vault or login.
    142. 

  142. 

  143. The only difference between unlock and login is just the name of
    144. 

  144. the command and whether to pass the user."
    145. 

  145.   (when (get-process "bitwarden")
    146. 

  146.     (delete-process "bitwarden"))
    147. 

  147.   (let ((process (start-process-shell-command
    148. 

  148.                   "bitwarden"
    149. 

  149.                   nil                   ; don't use a buffer
    150. 

  150.                   (concat bitwarden-bw-executable " " cmd))))
    151. 

  151.     (set-process-filter process #'bitwarden--login-proc-filter)))
    152. 

  152. 

  153. (defun bitwarden-unlock ()
    154. 

  154.   "Unlock bitwarden vault.
    155. 

  155. It is not sufficient to check the env variable for BW_SESSION
    156. 

  156. since that could be set yet could be expired or incorrect."
    157. 

  157.   (interactive "M")
    158. 

  158.   (bitwarden--raw-unlock "unlock"))
    159. 

  159. 

  160. (defun bitwarden-login ()
    161. 

  161.   "Prompts user for password if not logged in."
    162. 

  162.   (interactive "M")
    163. 

  163.   (bitwarden--raw-unlock (concat "login " bitwarden-user)))
    164. 

  164. 

  165. (defun bitwarden-lock ()
    166. 

  166.   "Lock the bw vault.  Does not ask for confirmation."
    167. 

  167.   (interactive)
    168. 

  168.   (when (bitwarden-unlocked-p)
    169. 

  169.     (setenv "BW_SESSION" nil)))
    170. 

  170. 

  171. ;;;###autoload
    172. 

  172. (defun bitwarden-logout ()
    173. 

  173.   "Log out bw.  Does not ask for confirmation."
    174. 

  174.   (interactive)
    175. 

  175.   (when (bitwarden-logged-in-p)
    176. 

  176.     (bitwarden-runcmd "logout")
    177. 

  177.     (bitwarden-lock)))
    178. 

  178. 

  179. (provide 'bitwarden)
    180. 

  180. 

  181. ;;; bitwarden.el ends here
    182.