Hemmelig.app/cli.js

#!/usr/bin/env node

import meow from 'meow';
import fetch from 'node-fetch';
import YAML from 'yaml';
import { encrypt, generateKey } from './shared/helpers/crypto.js';

// Adding this hack to make it work for pkg
// https://github.com/vercel/pkg/issues/1291#issuecomment-1360586986
let url = import.meta.url;
// Allow rewriting `import.meta.url` to `__dirname` when bundling with esbuild
if (!url.startsWith('file://')) url = new URL(`file://${import.meta.url}`).toString();
// end hack

const cli = meow(
    `
	Usage
	  $ hemmelig <secret>

	Options
      --title,     -t  The secret title
      --password,  -p  The password to protect the secret
      --lifetime,  -l  The lifetime of the secret
      --maxViews,  -m  The max views of the secret
      --cidr,      -c  Provide the IP or CIDR range
      --expire,    -e  Burn the secret only after the expire time
      --url,       -u  If you have your own instance of the Hemmelig.app
      --output,    -o  Present the result as json|yaml. Example: --output=json

	Examples
      $ hemmelig "my super secret" --password=1337
      [*] Hemmelig.app URL: https://hemmelig.app/secret/thesecretid#encryption_key=myencryptionkey

      # Pipe data to the hemmelig cli
      $ cat mysecret.txt | hemmelig
      [*] Hemmelig.app URL: https://hemmelig.app/secret/thesecretid2#encryption_key=myencryptionkey2

      # Different output
      $ hemmelig "I am secret" -o=json
      {"encryptionKey":"9LiWq3iMAF0IkQs1tecOxbYKFesEnTN9","secretId":"manageable_CEsgWtxEaNNbwld6PjwyF1bQaiy4jQl9","url":"https://hemmelig.app/secret/manageable_CEsgWtxEaNNbwld6PjwyF1bQaiy4jQl9#encryption_key=9LiWq3iMAF0IkQs1tecOxbYKFesEnTN9"}
`,
    {
        importMeta: { url },
        flags: {
            title: {
                type: 'string',
                alias: 't',
                default: '',
            },
            password: {
                type: 'string',
                alias: 'p',
                default: '',
            },
            lifetime: {
                type: 'number',
                alias: 'l',
                default: 3600,
            },
            maxViews: {
                type: 'number',
                alias: 'm',
                default: 1,
            },
            cidr: {
                type: 'string',
                alias: 'c',
                default: '',
            },
            expire: {
                type: 'boolean',
                alias: 'e',
                default: false,
            },
            url: {
                type: 'string',
                alias: 'u',
                default: 'https://hemmelig.app',
            },
            output: {
                type: 'string',
                alias: 'o',
                default: 'text',
            },
        },
    }
);

const createSecret = async (data = {}) => {
    const options = {
        method: 'POST',
        cache: 'no-cache',
        body: JSON.stringify(data),
        headers: {
            'Content-Type': 'application/json',
        },
    };

    try {
        const data = await fetch(`${cli.flags.url}/api/secret`, options);
        const json = await data.json();

        return { ...json, statusCode: data.status };
    } catch (error) {
        console.error(error);

        return { error: 'Failed to create your secret' };
    }
};

const getSecretURL = (encryptionKey, secretId) =>
    `${cli.flags.url}/secret/${secretId}#encryption_key=${encryptionKey}`;

const createOutput = (encryptionKey, secretId) => {
    const url = getSecretURL(encryptionKey, secretId);

    if (cli.flags.output === 'json') {
        return JSON.stringify({
            encryptionKey,
            secretId,
            url,
        });
    } else if (cli.flags.output === 'yaml') {
        return YAML.stringify({
            encryptionKey,
            secretId,
            url,
        });
    }

    return `[*] Hemmelig.app URL: ${url}`;
};

const submit = async (secret, values) => {
    if (!secret) {
        console.error('No secret set');

        return;
    }

    const userEncryptionKey = generateKey();

    const body = {
        text: encrypt(secret, userEncryptionKey),
        files: [],
        title: encrypt(values.title, userEncryptionKey),
        password: values.password,
        ttl: values.lifetime,
        allowedIp: values.cidr,
        preventBurn: values.expire,
        maxViews: values.maxViews,
    };

    const json = await createSecret(body);

    console.log(createOutput(userEncryptionKey, json.id));
};

async function getSecretText() {
    const [secret] = cli.input;

    if (secret) {
        return secret;
    }

    const data = await new Promise((res) => {
        process.stdin.once('data', function (data) {
            res(data.toString().trim());
        });
    });

    return data;
}

// Execute the CLI
(async function execute() {
    const secret = await getSecretText();

    submit(secret, cli.flags);
})();
fix: make the cli work 2022-10-21 15:19:17 +02:00			`#!/usr/bin/env node`

feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`import meow from 'meow';`
			`import fetch from 'node-fetch';`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00			`import YAML from 'yaml';`
refactor: use fastify vite for the dev server (#284) * refactor: use fastify vite for the server by doing this we do not need to have local hacks for the routes. No local proxy needed. Everything just works. * fix: update the dockerfile build path * fix: update package.json * fix: fonts path 2024-03-11 13:43:20 +01:00			`import { encrypt, generateKey } from './shared/helpers/crypto.js';`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00
feat(pkg): make it possible to create a binary for the cli 2023-02-16 09:32:08 +01:00			`// Adding this hack to make it work for pkg`
			`// https://github.com/vercel/pkg/issues/1291#issuecomment-1360586986`
			`let url = import.meta.url;`
			// Allow rewriting `import.meta.url` to `__dirname` when bundling with esbuild
			if (!url.startsWith('file://')) url = new URL(`file://${import.meta.url}`).toString();
			`// end hack`

feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`const cli = meow(`
			`
			`Usage`
			`$ hemmelig <secret>`

			`Options`
			`--title, -t The secret title`
			`--password, -p The password to protect the secret`
			`--lifetime, -l The lifetime of the secret`
			`--maxViews, -m The max views of the secret`
			`--cidr, -c Provide the IP or CIDR range`
			`--expire, -e Burn the secret only after the expire time`
			`--url, -u If you have your own instance of the Hemmelig.app`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00			`--output, -o Present the result as json\|yaml. Example: --output=json`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00
			`Examples`
fix: indent 2023-02-13 13:18:05 +01:00			`$ hemmelig "my super secret" --password=1337`
feat: change the application to use url hash for the encryption key (#167) * feat: change the application to use url hash for the encryption key the application will still support use url params for a while, but will be removed at the 4.0 breaking release * chore: update the hemmelig.ts file with the output * chore: bump the version 2023-03-22 07:30:11 +01:00			`[*] Hemmelig.app URL: https://hemmelig.app/secret/thesecretid#encryption_key=myencryptionkey`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00
			`# Pipe data to the hemmelig cli`
			`$ cat mysecret.txt \| hemmelig`
feat: change the application to use url hash for the encryption key (#167) * feat: change the application to use url hash for the encryption key the application will still support use url params for a while, but will be removed at the 4.0 breaking release * chore: update the hemmelig.ts file with the output * chore: bump the version 2023-03-22 07:30:11 +01:00			`[*] Hemmelig.app URL: https://hemmelig.app/secret/thesecretid2#encryption_key=myencryptionkey2`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00
			`# Different output`
			`$ hemmelig "I am secret" -o=json`
feat: change the application to use url hash for the encryption key (#167) * feat: change the application to use url hash for the encryption key the application will still support use url params for a while, but will be removed at the 4.0 breaking release * chore: update the hemmelig.ts file with the output * chore: bump the version 2023-03-22 07:30:11 +01:00			`{"encryptionKey":"9LiWq3iMAF0IkQs1tecOxbYKFesEnTN9","secretId":"manageable_CEsgWtxEaNNbwld6PjwyF1bQaiy4jQl9","url":"https://hemmelig.app/secret/manageable_CEsgWtxEaNNbwld6PjwyF1bQaiy4jQl9#encryption_key=9LiWq3iMAF0IkQs1tecOxbYKFesEnTN9"}`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`,
			`{`
feat(pkg): make it possible to create a binary for the cli 2023-02-16 09:32:08 +01:00			`importMeta: { url },`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`flags: {`
			`title: {`
			`type: 'string',`
			`alias: 't',`
			`default: '',`
			`},`
			`password: {`
			`type: 'string',`
			`alias: 'p',`
			`default: '',`
			`},`
			`lifetime: {`
			`type: 'number',`
			`alias: 'l',`
			`default: 3600,`
			`},`
			`maxViews: {`
			`type: 'number',`
			`alias: 'm',`
			`default: 1,`
			`},`
			`cidr: {`
			`type: 'string',`
			`alias: 'c',`
			`default: '',`
			`},`
			`expire: {`
			`type: 'boolean',`
			`alias: 'e',`
			`default: false,`
			`},`
			`url: {`
			`type: 'string',`
			`alias: 'u',`
			`default: 'https://hemmelig.app',`
			`},`
feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`output: {`
			`type: 'string',`
			`alias: 'o',`
			`default: 'text',`
			`},`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`},`
			`}`
			`);`

			`const createSecret = async (data = {}) => {`
			`const options = {`
			`method: 'POST',`
			`cache: 'no-cache',`
			`body: JSON.stringify(data),`
			`headers: {`
			`'Content-Type': 'application/json',`
			`},`
			`};`

			`try {`
			const data = await fetch(`${cli.flags.url}/api/secret`, options);
			`const json = await data.json();`

			`return { ...json, statusCode: data.status };`
			`} catch (error) {`
			`console.error(error);`

			`return { error: 'Failed to create your secret' };`
			`}`
			`};`

			`const getSecretURL = (encryptionKey, secretId) =>`
feat: change the application to use url hash for the encryption key (#167) * feat: change the application to use url hash for the encryption key the application will still support use url params for a while, but will be removed at the 4.0 breaking release * chore: update the hemmelig.ts file with the output * chore: bump the version 2023-03-22 07:30:11 +01:00			`${cli.flags.url}/secret/${secretId}#encryption_key=${encryptionKey}`;
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00
feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`const createOutput = (encryptionKey, secretId) => {`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00			`const url = getSecretURL(encryptionKey, secretId);`

feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`if (cli.flags.output === 'json') {`
			`return JSON.stringify({`
			`encryptionKey,`
			`secretId,`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00			`url,`
			`});`
			`} else if (cli.flags.output === 'yaml') {`
			`return YAML.stringify({`
			`encryptionKey,`
			`secretId,`
			`url,`
feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`});`
			`}`

feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00			return `[*] Hemmelig.app URL: ${url}`;
feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`};`

feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`const submit = async (secret, values) => {`
			`if (!secret) {`
			`console.error('No secret set');`
feat(cli): add yaml output support Also update the docs for the cli 2023-02-13 12:51:18 +01:00
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`return;`
			`}`

			`const userEncryptionKey = generateKey();`

			`const body = {`
			`text: encrypt(secret, userEncryptionKey),`
			`files: [],`
			`title: encrypt(values.title, userEncryptionKey),`
			`password: values.password,`
			`ttl: values.lifetime,`
			`allowedIp: values.cidr,`
			`preventBurn: values.expire,`
			`maxViews: values.maxViews,`
			`};`

			`const json = await createSecret(body);`

feat(cli): add option for presenting the result as json By doing this it is more easy to integrate it with CI/CD by fetching the hemmelig url like this: cat .passwd \| npx hemmelig --output=json \| jq .url 2023-02-13 08:03:44 +01:00			`console.log(createOutput(userEncryptionKey, json.id));`
feat: add a cli version of hemmelig 2022-10-21 11:15:42 +02:00			`};`

			`async function getSecretText() {`
			`const [secret] = cli.input;`

			`if (secret) {`
			`return secret;`
			`}`

			`const data = await new Promise((res) => {`
			`process.stdin.once('data', function (data) {`
			`res(data.toString().trim());`
			`});`
			`});`

			`return data;`
			`}`

			`// Execute the CLI`
			`(async function execute() {`
			`const secret = await getSecretText();`

			`submit(secret, cli.flags);`
			`})();`