openvpn-user/openvpn-user.go

package main

import (
	"database/sql"
	"fmt"
	_ "github.com/mattn/go-sqlite3"
	"github.com/pashcovich/openvpn-user/src"
	"gopkg.in/alecthomas/kingpin.v2"
	"os"
)

const (
	version = "1.0.9"
)

var (
	dbPath = kingpin.Flag("db.path", "path do openvpn-user db").Default("./openvpn-user.db").String()

	dbInitCommand    = kingpin.Command("db-init", "Init db.")
	dbMigrateCommand = kingpin.Command("db-migrate", "STUB: Migrate db.")

	createCommand             = kingpin.Command("create", "Create user.")
	createCommandUserFlag     = createCommand.Flag("user", "Username.").Required().String()
	createCommandPasswordFlag = createCommand.Flag("password", "Password.").Required().String()

	deleteCommand              = kingpin.Command("delete", "Delete user.")
	deleteCommandUserForceFlag = deleteCommand.Flag("force", "delete from db.").Short('f').Default("false").Bool()
	deleteCommandUserFlag      = deleteCommand.Flag("user", "Username.").Short('u').Required().String()

	revokeCommand         = kingpin.Command("revoke", "Revoke user.")
	revokeCommandUserFlag = revokeCommand.Flag("user", "Username.").Short('u').Required().String()

	restoreCommand         = kingpin.Command("restore", "Restore user.")
	restoreCommandUserFlag = restoreCommand.Flag("user", "Username.").Short('u').Required().String()

	listCommand        = kingpin.Command("list", "List active users.")
	listCommandAllFlag = listCommand.Flag("all", "Show all users include revoked and deleted.").Short('a').Default("false").Bool()

	checkCommand         = kingpin.Command("check", "check user existent.")
	checkCommandUserFlag = checkCommand.Flag("user", "Username.").Short('u').Required().String()

	authCommand             = kingpin.Command("auth", "Auth user.")
	authCommandUserFlag     = authCommand.Flag("user", "Username.").Short('u').Required().String()
	authCommandPasswordFlag = authCommand.Flag("password", "Password.").Short('p').String()
	authCommandTotpFlag     = authCommand.Flag("totp", "TOTP code.").Short('t').String()

	changePasswordCommand             = kingpin.Command("change-password", "Change password")
	changePasswordCommandUserFlag     = changePasswordCommand.Flag("user", "Username.").Short('u').Required().String()
	changePasswordCommandPasswordFlag = changePasswordCommand.Flag("password", "Password.").Short('p').Required().String()

	updateSecretCommand           = kingpin.Command("update-secret", "update OTP secret")
	updateSecretCommandUserFlag   = updateSecretCommand.Flag("user", "Username.").Short('u').Required().String()
	updateSecretCommandSecretFlag = updateSecretCommand.Flag("secret", "Secret.").Short('s').Default("generate").String()

	registerAppCommand         = kingpin.Command("register-app", "register 2FA application")
	registerAppCommandUserFlag = registerAppCommand.Flag("user", "Username.").Short('u').Required().String()
	registerAppCommandTotpFlag = registerAppCommand.Flag("totp", "TOTP.").Short('t').Required().String()

	resetAppCommand         = kingpin.Command("reset-app", "register 2FA application")
	resetAppCommandUserFlag = resetAppCommand.Flag("user", "Username.").Short('u').Required().String()

	checkAppCommand         = kingpin.Command("check-app", "check 2FA application")
	checkAppCommandUserFlag = checkAppCommand.Flag("user", "Username.").Short('u').Required().String()

	getSecretCommand         = kingpin.Command("get-secret", "get OTP secret")
	getSecretCommandUserFlag = getSecretCommand.Flag("user", "Username.").Short('u').Required().String()
)

func main() {

	args := kingpin.Parse()

	db, err := sql.Open("sqlite3", *dbPath)
	if err != nil {
		kingpin.Fatalf(err.Error())
	}
	defer func(db *sql.DB) {
		err = db.Close()
		if err != nil {
			kingpin.Fatalf(err.Error())
		}
	}(db)

	openvpnUser := src.OpenvpnUser{Database: db}

	kingpin.Version(version).VersionFlag.Short('v')

	switch args {
	case createCommand.FullCommand():
		wrap(openvpnUser.CreateUser(*createCommandUserFlag, *createCommandPasswordFlag))
	case deleteCommand.FullCommand():
		wrap(openvpnUser.DeleteUser(*deleteCommandUserFlag, *deleteCommandUserForceFlag))
	case revokeCommand.FullCommand():
		wrap(openvpnUser.RevokedUser(*revokeCommandUserFlag))
	case restoreCommand.FullCommand():
		wrap(openvpnUser.RestoreUser(*restoreCommandUserFlag))
	case listCommand.FullCommand():
		openvpnUser.PrintUsers(*listCommandAllFlag)
	case checkCommand.FullCommand():
		_ = openvpnUser.CheckUserExistent(*checkCommandUserFlag)
	case authCommand.FullCommand():
		provideAuthType := 0
		if *authCommandPasswordFlag != "" {
			provideAuthType += 1
		}
		if *authCommandTotpFlag != "" {
			provideAuthType += 1
		}
		if provideAuthType == 1 {
			authSuccessful, authErr := openvpnUser.AuthUser(*authCommandUserFlag, *authCommandPasswordFlag, *authCommandTotpFlag)
			if authErr != nil {
				kingpin.Fatalf(authErr.Error())
			} else if authSuccessful {
				fmt.Println("Authorization successful")
			} else {
				fmt.Println("Authorization failed")
			}

		} else {
			fmt.Println("Please provide only one type of auth flag")
			os.Exit(1)
		}
	case changePasswordCommand.FullCommand():
		wrap(openvpnUser.ChangeUserPassword(*changePasswordCommandUserFlag, *changePasswordCommandPasswordFlag))
	case updateSecretCommand.FullCommand():
		wrap(openvpnUser.RegisterOtpSecret(*updateSecretCommandUserFlag, *updateSecretCommandSecretFlag))
	case registerAppCommand.FullCommand():
		wrap(openvpnUser.RegisterOtpApplication(*registerAppCommandUserFlag, *registerAppCommandTotpFlag))
	case resetAppCommand.FullCommand():
		wrap(openvpnUser.ResetOtpApplication(*resetAppCommandUserFlag))
	case checkAppCommand.FullCommand():
		appConfigured, appErr := openvpnUser.IsSecondFactorEnabled(*checkAppCommandUserFlag)
		if appErr != nil {
			kingpin.Fatalf(appErr.Error())
		} else if appConfigured {
			fmt.Println("App configured")
		} else {
			fmt.Println("App not configured yet")
		}
	case getSecretCommand.FullCommand():
		wrap(openvpnUser.GetUserOtpSecret(*getSecretCommandUserFlag))

	case dbInitCommand.FullCommand():
		openvpnUser.InitDb()
	case dbMigrateCommand.FullCommand():
		openvpnUser.MigrateDb()
	}
}

func wrap(msg string, err error) {
	if err != nil {
		kingpin.Fatalf(err.Error())
	} else {
		fmt.Println(msg)
	}
}
Initial commit 2021-02-05 01:37:12 -05:00			`package main`

			`import (`
			`"database/sql"`
			`"fmt"`
			`_ "github.com/mattn/go-sqlite3"`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`"github.com/pashcovich/openvpn-user/src"`
Initial commit 2021-02-05 01:37:12 -05:00			`"gopkg.in/alecthomas/kingpin.v2"`
			`"os"`
			`)`

some fixes and additional features 2021-02-08 04:53:09 -05:00			`const (`
fix args in db queries 2022-12-02 11:34:21 -05:00			`version = "1.0.9"`
some fixes and additional features 2021-02-08 04:53:09 -05:00			`)`

Initial commit 2021-02-05 01:37:12 -05:00			`var (`
			`dbPath = kingpin.Flag("db.path", "path do openvpn-user db").Default("./openvpn-user.db").String()`

some fixes and additional features 2021-02-08 04:53:09 -05:00			`dbInitCommand = kingpin.Command("db-init", "Init db.")`
			`dbMigrateCommand = kingpin.Command("db-migrate", "STUB: Migrate db.")`
Initial commit 2021-02-05 01:37:12 -05:00
			`createCommand = kingpin.Command("create", "Create user.")`
			`createCommandUserFlag = createCommand.Flag("user", "Username.").Required().String()`
			`createCommandPasswordFlag = createCommand.Flag("password", "Password.").Required().String()`

add force flag to delete user command 2022-05-23 09:21:54 -04:00			`deleteCommand = kingpin.Command("delete", "Delete user.")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`deleteCommandUserForceFlag = deleteCommand.Flag("force", "delete from db.").Short('f').Default("false").Bool()`
			`deleteCommandUserFlag = deleteCommand.Flag("user", "Username.").Short('u').Required().String()`
Initial commit 2021-02-05 01:37:12 -05:00
			`revokeCommand = kingpin.Command("revoke", "Revoke user.")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`revokeCommandUserFlag = revokeCommand.Flag("user", "Username.").Short('u').Required().String()`
Initial commit 2021-02-05 01:37:12 -05:00
			`restoreCommand = kingpin.Command("restore", "Restore user.")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`restoreCommandUserFlag = restoreCommand.Flag("user", "Username.").Short('u').Required().String()`
Initial commit 2021-02-05 01:37:12 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`listCommand = kingpin.Command("list", "List active users.")`
			`listCommandAllFlag = listCommand.Flag("all", "Show all users include revoked and deleted.").Short('a').Default("false").Bool()`
Initial commit 2021-02-05 01:37:12 -05:00
some fixes and additional features 2021-02-08 04:53:09 -05:00			`checkCommand = kingpin.Command("check", "check user existent.")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`checkCommandUserFlag = checkCommand.Flag("user", "Username.").Short('u').Required().String()`
Add check commnad; Fixes 2021-02-05 13:19:54 -05:00
Initial commit 2021-02-05 01:37:12 -05:00			`authCommand = kingpin.Command("auth", "Auth user.")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`authCommandUserFlag = authCommand.Flag("user", "Username.").Short('u').Required().String()`
			`authCommandPasswordFlag = authCommand.Flag("password", "Password.").Short('p').String()`
			`authCommandTotpFlag = authCommand.Flag("totp", "TOTP code.").Short('t').String()`
Initial commit 2021-02-05 01:37:12 -05:00
			`changePasswordCommand = kingpin.Command("change-password", "Change password")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`changePasswordCommandUserFlag = changePasswordCommand.Flag("user", "Username.").Short('u').Required().String()`
			`changePasswordCommandPasswordFlag = changePasswordCommand.Flag("password", "Password.").Short('p').Required().String()`
Initial commit 2021-02-05 01:37:12 -05:00
totp auth 2022-11-14 05:33:43 -05:00			`updateSecretCommand = kingpin.Command("update-secret", "update OTP secret")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`updateSecretCommandUserFlag = updateSecretCommand.Flag("user", "Username.").Short('u').Required().String()`
			`updateSecretCommandSecretFlag = updateSecretCommand.Flag("secret", "Secret.").Short('s').Default("generate").String()`
totp auth 2022-11-14 05:33:43 -05:00
fixes for totp auth 2022-11-14 11:26:34 -05:00			`registerAppCommand = kingpin.Command("register-app", "register 2FA application")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`registerAppCommandUserFlag = registerAppCommand.Flag("user", "Username.").Short('u').Required().String()`
			`registerAppCommandTotpFlag = registerAppCommand.Flag("totp", "TOTP.").Short('t').Required().String()`
totp auth 2022-11-14 05:33:43 -05:00
fixes; reset 2fa 2022-11-29 10:22:39 -05:00			`resetAppCommand = kingpin.Command("reset-app", "register 2FA application")`
			`resetAppCommandUserFlag = resetAppCommand.Flag("user", "Username.").Short('u').Required().String()`

refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`checkAppCommand = kingpin.Command("check-app", "check 2FA application")`
			`checkAppCommandUserFlag = checkAppCommand.Flag("user", "Username.").Short('u').Required().String()`
totp auth 2022-11-14 05:33:43 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`getSecretCommand = kingpin.Command("get-secret", "get OTP secret")`
			`getSecretCommandUserFlag = getSecretCommand.Flag("user", "Username.").Short('u').Required().String()`
Initial commit 2021-02-05 01:37:12 -05:00			`)`

refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`func main() {`
totp auth 2022-11-14 05:33:43 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`args := kingpin.Parse()`
Initial commit 2021-02-05 01:37:12 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`db, err := sql.Open("sqlite3", *dbPath)`
			`if err != nil {`
			`kingpin.Fatalf(err.Error())`
			`}`
			`defer func(db *sql.DB) {`
			`err = db.Close()`
			`if err != nil {`
			`kingpin.Fatalf(err.Error())`
			`}`
			`}(db)`
totp auth 2022-11-14 05:33:43 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`openvpnUser := src.OpenvpnUser{Database: db}`
totp auth 2022-11-14 05:33:43 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`kingpin.Version(version).VersionFlag.Short('v')`
totp auth 2022-11-14 05:33:43 -05:00
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`switch args {`
Initial commit 2021-02-05 01:37:12 -05:00			`case createCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.CreateUser(createCommandUserFlag, createCommandPasswordFlag))`
Initial commit 2021-02-05 01:37:12 -05:00			`case deleteCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.DeleteUser(deleteCommandUserFlag, deleteCommandUserForceFlag))`
Initial commit 2021-02-05 01:37:12 -05:00			`case revokeCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.RevokedUser(*revokeCommandUserFlag))`
Initial commit 2021-02-05 01:37:12 -05:00			`case restoreCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.RestoreUser(*restoreCommandUserFlag))`
Initial commit 2021-02-05 01:37:12 -05:00			`case listCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`openvpnUser.PrintUsers(*listCommandAllFlag)`
Add check commnad; Fixes 2021-02-05 13:19:54 -05:00			`case checkCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`_ = openvpnUser.CheckUserExistent(*checkCommandUserFlag)`
Initial commit 2021-02-05 01:37:12 -05:00			`case authCommand.FullCommand():`
totp auth 2022-11-14 05:33:43 -05:00			`provideAuthType := 0`
			`if *authCommandPasswordFlag != "" {`
			`provideAuthType += 1`
			`}`
			`if *authCommandTotpFlag != "" {`
			`provideAuthType += 1`
			`}`
			`if provideAuthType == 1 {`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`authSuccessful, authErr := openvpnUser.AuthUser(authCommandUserFlag, authCommandPasswordFlag, *authCommandTotpFlag)`
			`if authErr != nil {`
			`kingpin.Fatalf(authErr.Error())`
			`} else if authSuccessful {`
			`fmt.Println("Authorization successful")`
change totp secret length; fixes 2022-12-02 06:12:43 -05:00			`} else {`
			`fmt.Println("Authorization failed")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`}`
change totp secret length; fixes 2022-12-02 06:12:43 -05:00
totp auth 2022-11-14 05:33:43 -05:00			`} else {`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`fmt.Println("Please provide only one type of auth flag")`
totp auth 2022-11-14 05:33:43 -05:00			`os.Exit(1)`
			`}`
Initial commit 2021-02-05 01:37:12 -05:00			`case changePasswordCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.ChangeUserPassword(changePasswordCommandUserFlag, changePasswordCommandPasswordFlag))`
totp auth 2022-11-14 05:33:43 -05:00			`case updateSecretCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.RegisterOtpSecret(updateSecretCommandUserFlag, updateSecretCommandSecretFlag))`
totp auth 2022-11-14 05:33:43 -05:00			`case registerAppCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.RegisterOtpApplication(registerAppCommandUserFlag, registerAppCommandTotpFlag))`
fixes; reset 2fa 2022-11-29 10:22:39 -05:00			`case resetAppCommand.FullCommand():`
			`wrap(openvpnUser.ResetOtpApplication(*resetAppCommandUserFlag))`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`case checkAppCommand.FullCommand():`
			`appConfigured, appErr := openvpnUser.IsSecondFactorEnabled(*checkAppCommandUserFlag)`
			`if appErr != nil {`
			`kingpin.Fatalf(appErr.Error())`
			`} else if appConfigured {`
			`fmt.Println("App configured")`
change totp secret length; fixes 2022-12-02 06:12:43 -05:00			`} else {`
			`fmt.Println("App not configured yet")`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`}`
totp auth 2022-11-14 05:33:43 -05:00			`case getSecretCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`wrap(openvpnUser.GetUserOtpSecret(*getSecretCommandUserFlag))`

Initial commit 2021-02-05 01:37:12 -05:00			`case dbInitCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`openvpnUser.InitDb()`
Initial commit 2021-02-05 01:37:12 -05:00			`case dbMigrateCommand.FullCommand():`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`openvpnUser.MigrateDb()`
some fixes and additional features 2021-02-08 04:53:09 -05:00			`}`
Initial commit 2021-02-05 01:37:12 -05:00			`}`

refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`func wrap(msg string, err error) {`
totp auth 2022-11-14 05:33:43 -05:00			`if err != nil {`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`kingpin.Fatalf(err.Error())`
Initial commit 2021-02-05 01:37:12 -05:00			`} else {`
refactoring. convert for go module; totp auth 2022-11-18 07:47:42 -05:00			`fmt.Println(msg)`
Initial commit 2021-02-05 01:37:12 -05:00			`}`
			`}`