def __init__(self, path):
self._file_system_manager = FileSystemManager(path)
self._key_manager = KeyManager(path)
self._item_manager = ItemManager(path)
self._keys = []
def __init__(self, path):
self._file_system_manager = FileSystemManager(path)
self._key_manager = KeyManager(path)
self._item_manager = ItemManager(path)
self._keys = []
class DataSource(abstract.DataSource):
def __init__(self, path):
self._file_system_manager = FileSystemManager(path)
self._key_manager = KeyManager(path)
self._item_manager = ItemManager(path)
self._keys = []
def initialise(self, password, config=None):
self._file_system_manager.initialise()
iterations = self._read_iterations_from_config(config)
self._key_manager.save_key(
crypto.create_key(password, 'SL3', iterations))
self._key_manager.save_key(
crypto.create_key(password, 'SL5', iterations))
def is_initialised(self):
return self._file_system_manager.is_initialised()
def authenticate(self, password):
self._keys = [
crypto.decrypt_key(key, password)
for key in self._key_manager.get_keys()
]
def is_authenticated(self):
if len(self._keys) == 0:
return False
for key in self._keys:
if key.key is None:
return False
return True
def deauthenticate(self):
self._keys = []
gc.collect()
def set_password(self, password):
for key in self._keys:
self._key_manager.save_key(crypto.encrypt_key(key, password))
def create_item(self, data=None):
item = self._initialise_new_item(data)
item['uuid'] = self._create_unique_item_id()
item['keyID'] = self._get_default_key().identifier
return AgileKeychainItem(item)
def save_item(self, decrypted_item):
self._assert_data_source_is_authenticated()
self._item_manager.save_item(self._encrypt_item(decrypted_item))
def get_item_by_id(self, item_id):
self._assert_data_source_is_authenticated()
return self._decrypt_item(self._item_manager.get_by_id(item_id))
def get_all_items(self):
self._assert_data_source_is_authenticated()
return [
self._decrypt_item(item)
for item in self._item_manager.get_all_items()
]
def _create_unique_item_id(self):
item_id = crypto.generate_id()
try:
self._item_manager.get_by_id(item_id)
return self._create_unique_item_id()
except ItemNotFoundException:
return item_id
def _encrypt_item(self, item):
return crypto.encrypt_item(item, self._get_key_for_item(item))
def _decrypt_item(self, item):
return crypto.decrypt_item(item, self._get_key_for_item(item))
def _assert_data_source_is_authenticated(self):
if self.is_authenticated() is False:
raise UnauthenticatedDataSourceException()
def _get_key_for_item(self, item):
try:
return self._get_key_by_security_level(
item['openContents']['securityLevel'])
except (KeyError, TypeError):
return self._get_default_key()
def _get_key_by_security_level(self, security_level):
return [key for key in self._keys if key.level == security_level][0]
def _get_default_key(self):
return self._get_key_by_security_level('SL5')
def _read_iterations_from_config(self, config):
try:
return config['iterations']
except (KeyError, TypeError):
return DEFAULT_ITERATIONS
def _initialise_new_item(self, data=None):
if type(data) is not dict:
data = {}
default_data = {
'createdAt': int(time()),
'location': '',
'locationKey': '',
'typeName': 'passwords.Password',
'title': 'Untitled',
'encrypted': {}
}
default_data.update(data)
return default_data
class DataSource(abstract.DataSource):
def __init__(self, path):
self._file_system_manager = FileSystemManager(path)
self._key_manager = KeyManager(path)
self._item_manager = ItemManager(path)
self._keys = []
def initialise(self, password, config=None):
self._file_system_manager.initialise()
iterations = self._read_iterations_from_config(config)
self._key_manager.save_key(crypto.create_key(password, 'SL3', iterations))
self._key_manager.save_key(crypto.create_key(password, 'SL5', iterations))
def is_initialised(self):
return self._file_system_manager.is_initialised()
def authenticate(self, password):
self._keys = [crypto.decrypt_key(key, password) for key in self._key_manager.get_keys()]
def is_authenticated(self):
if len(self._keys) == 0:
return False
for key in self._keys:
if key.key is None:
return False
return True
def deauthenticate(self):
self._keys = []
gc.collect()
def set_password(self, password):
for key in self._keys:
self._key_manager.save_key(crypto.encrypt_key(key, password))
def create_item(self, data=None):
item = self._initialise_new_item(data)
item['uuid'] = self._create_unique_item_id()
item['keyID'] = self._get_default_key().identifier
return AgileKeychainItem(item)
def save_item(self, decrypted_item):
self._assert_data_source_is_authenticated()
self._item_manager.save_item(self._encrypt_item(decrypted_item))
def get_item_by_id(self, item_id):
self._assert_data_source_is_authenticated()
return self._decrypt_item(self._item_manager.get_by_id(item_id))
def get_all_items(self):
self._assert_data_source_is_authenticated()
return [self._decrypt_item(item) for item in self._item_manager.get_all_items()]
def _create_unique_item_id(self):
item_id = crypto.generate_id()
try:
self._item_manager.get_by_id(item_id)
return self._create_unique_item_id()
except ItemNotFoundException:
return item_id
def _encrypt_item(self, item):
return crypto.encrypt_item(item, self._get_key_for_item(item))
def _decrypt_item(self, item):
return crypto.decrypt_item(item, self._get_key_for_item(item))
def _assert_data_source_is_authenticated(self):
if self.is_authenticated() is False:
raise UnauthenticatedDataSourceException()
def _get_key_for_item(self, item):
try:
return self._get_key_by_security_level(item['openContents']['securityLevel'])
except (KeyError, TypeError):
return self._get_default_key()
def _get_key_by_security_level(self, security_level):
return [key for key in self._keys if key.level == security_level][0]
def _get_default_key(self):
return self._get_key_by_security_level('SL5')
def _read_iterations_from_config(self, config):
try:
return config['iterations']
except (KeyError, TypeError):
return DEFAULT_ITERATIONS
def _initialise_new_item(self, data=None):
if type(data) is not dict:
data = {}
default_data = {
'createdAt': int(time()),
'location': '',
'locationKey': '',
'typeName': 'passwords.Password',
'title': 'Untitled',
'encrypted': {}
}
default_data.update(data)
return default_data