2022-09-25 07:31:53 +00:00
|
|
|
#
|
|
|
|
|
# Copyright © 2022 Maestro Creativescape
|
|
|
|
|
#
|
|
|
|
|
# SPDX-License-Identifier: AGPL-3.0-or-later
|
|
|
|
|
#
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Imports
|
2022-09-25 07:30:15 +00:00
|
|
|
from git import Repo
|
|
|
|
|
import os
|
|
|
|
|
from shutil import copytree
|
2022-09-25 11:10:41 +00:00
|
|
|
from pathlib import Path
|
2022-09-25 07:30:15 +00:00
|
|
|
from glob import glob
|
|
|
|
|
import subprocess
|
|
|
|
|
from time import time
|
|
|
|
|
|
2022-09-25 11:24:48 +00:00
|
|
|
cwd = os.getcwd()
|
|
|
|
|
path = Path(cwd)
|
|
|
|
|
base_dir = str(path.parent.absolute())
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Blacklist, prevents handling these files altogether
|
2022-09-25 07:34:39 +00:00
|
|
|
BLACKLIST = [
|
|
|
|
|
".git",
|
|
|
|
|
".obsidian",
|
|
|
|
|
".idea",
|
|
|
|
|
".gitlab-ci.yml",
|
2022-09-25 11:24:48 +00:00
|
|
|
cwd.split(base_dir + "/")[1]
|
2022-09-25 07:34:39 +00:00
|
|
|
]
|
2022-09-25 07:30:15 +00:00
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Env vars to handle creds
|
2022-09-25 07:30:15 +00:00
|
|
|
enc_path = os.environ.get("ENCRYPTED_PATH")
|
|
|
|
|
enc_repo = os.environ.get("ENCRYPTED_REPO")
|
|
|
|
|
enc_repo_user = os.environ.get("ENCRYPTED_REPO_USERNAME")
|
|
|
|
|
enc_repo_pass = os.environ.get("ENCRYPTED_REPO_PASSWORD")
|
|
|
|
|
enc_key = os.environ.get("ENCRYPTION_KEY")
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Create our encrypted directory base
|
2022-09-25 07:30:15 +00:00
|
|
|
current_time = str(int(time()))
|
|
|
|
|
os.mkdir(enc_path)
|
|
|
|
|
os.chdir(enc_path)
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Initialise the repo for our encrypted directory and add the remote
|
2022-09-25 07:30:15 +00:00
|
|
|
repo = Repo.init(enc_path)
|
2022-09-25 07:34:39 +00:00
|
|
|
repo.create_remote(
|
|
|
|
|
"origin",
|
2022-10-25 15:31:05 +00:00
|
|
|
f"https://{enc_repo_user}:{enc_repo_pass}@github.com/{enc_repo}.git",
|
2022-09-25 07:34:39 +00:00
|
|
|
)
|
2022-09-25 07:30:15 +00:00
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Glob the file list of "." starting files and non "." starting files
|
2022-09-25 07:34:39 +00:00
|
|
|
file_list = glob(base_dir + "/**/.*", recursive=True) + glob(
|
|
|
|
|
base_dir + "/**/*", recursive=True
|
|
|
|
|
)
|
2022-09-25 07:30:15 +00:00
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Start going through the file list, and create all directories
|
2022-09-25 07:30:15 +00:00
|
|
|
for i in file_list:
|
|
|
|
|
if os.path.isdir(i):
|
2022-09-25 07:34:39 +00:00
|
|
|
rel_path = i.split(base_dir + "/")[1]
|
2022-09-25 07:30:15 +00:00
|
|
|
for j in BLACKLIST:
|
2022-09-25 17:49:07 +00:00
|
|
|
if j in rel_path:
|
2022-09-25 07:30:15 +00:00
|
|
|
break
|
|
|
|
|
else:
|
|
|
|
|
os.mkdir(enc_path + "/" + rel_path)
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Use a subprocess to chacha20 encrypt everything, and push it to the requested directory
|
2022-09-25 07:30:15 +00:00
|
|
|
for i in file_list:
|
2022-09-25 07:34:39 +00:00
|
|
|
rel_path = i.split(base_dir + "/")[1]
|
2022-09-25 07:30:15 +00:00
|
|
|
if not os.path.isdir(i):
|
|
|
|
|
for j in BLACKLIST:
|
2022-09-25 17:49:07 +00:00
|
|
|
if j in rel_path:
|
2022-09-25 07:30:15 +00:00
|
|
|
break
|
|
|
|
|
else:
|
|
|
|
|
process = subprocess.run(
|
2022-09-25 07:34:39 +00:00
|
|
|
[
|
|
|
|
|
"openssl",
|
2022-09-25 07:30:15 +00:00
|
|
|
"enc",
|
|
|
|
|
"-chacha20",
|
|
|
|
|
"-base64",
|
|
|
|
|
"-salt",
|
|
|
|
|
"-iter",
|
|
|
|
|
"1000",
|
|
|
|
|
"-pass",
|
|
|
|
|
f"pass:{enc_key}",
|
|
|
|
|
"-md",
|
|
|
|
|
"sha512",
|
|
|
|
|
"-in",
|
|
|
|
|
i,
|
|
|
|
|
"-out",
|
2022-09-25 07:34:39 +00:00
|
|
|
enc_path + "/" + rel_path,
|
|
|
|
|
]
|
2022-09-25 07:30:15 +00:00
|
|
|
)
|
|
|
|
|
|
2022-09-25 07:41:07 +00:00
|
|
|
# Add, commit and push it all
|
2022-09-25 07:30:15 +00:00
|
|
|
repo.git.add(".")
|
2022-09-25 07:34:39 +00:00
|
|
|
repo.index.commit(f"Commit as of {current_time}")
|
|
|
|
|
repo.git.push("origin", "master", force=True)
|
