qutebrowser/misc/userscripts/qute-lastpass

#!/usr/bin/env python3

# Copyright 2017 Chris Braun (cryzed) <cryzed@googlemail.com>
# Adapted for LastPass by Wayne Cheng (welps) <waynethecheng@gmail.com>
#
# This file is part of qutebrowser.
#
# qutebrowser is free software: you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published bjy
# the Free Software Foundation, either version 3 of the License, or
# (at your option) any later version.
#
# qutebrowser is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with qutebrowser.  If not, see <http://www.gnu.org/licenses/>.

"""
Insert login information using lastpass CLI and a dmenu-compatible application (e.g. dmenu, rofi -dmenu, ...). 
A short demonstration can be seen here: https://i.imgur.com/zA61NrF.gifv.
"""

USAGE = """The domain of the site has to be in the name of the LastPass entry, for example: "github.com/cryzed" or
"websites/github.com".  The login information is inserted by emulating key events using qutebrowser's fake-key command in this manner:
[USERNAME]<Tab>[PASSWORD], which is compatible with almost all login forms.

You must log into LastPass CLI using `lpass login <email>` prior to use of this script. The LastPass CLI agent only holds your master password for an hour by default. If you wish to change this, please see `man lpass`.

To use in qutebrowser, run: `spawn --userscript qute-lastpass`
"""

EPILOG = """Dependencies: tldextract (Python 3 module), LastPass CLI (1.3 or newer)

WARNING: The login details are viewable as plaintext in qutebrowser's debug log (qute://log) and might be shared if
you decide to submit a crash report!"""

import argparse
import enum
import fnmatch
import functools
import os
import re
import shlex
import subprocess
import sys
import json
import tldextract

argument_parser = argparse.ArgumentParser(
    description=__doc__, usage=USAGE, epilog=EPILOG)
argument_parser.add_argument('url', nargs='?', default=os.getenv('QUTE_URL'))
argument_parser.add_argument('--dmenu-invocation', '-d', default='rofi -dmenu',
                             help='Invocation used to execute a dmenu-provider')
argument_parser.add_argument('--no-insert-mode', '-n', dest='insert_mode', action='store_false',
                             help="Don't automatically enter insert mode")
argument_parser.add_argument('--io-encoding', '-i', default='UTF-8',
                             help='Encoding used to communicate with subprocesses')
argument_parser.add_argument('--merge-candidates', '-m', action='store_true',
                             help='Merge pass candidates for fully-qualified and registered domain name')
group = argument_parser.add_mutually_exclusive_group()
group.add_argument('--username-only', '-e',
                   action='store_true', help='Only insert username')
group.add_argument('--password-only', '-w',
                   action='store_true', help='Only insert password')

stderr = functools.partial(print, file=sys.stderr)

class ExitCodes(enum.IntEnum):
    SUCCESS = 0
    FAILURE = 1
    # 1 is automatically used if Python throws an exception
    NO_PASS_CANDIDATES = 2
    COULD_NOT_MATCH_USERNAME = 3
    COULD_NOT_MATCH_PASSWORD = 4

def qute_command(command):
    with open(os.environ['QUTE_FIFO'], 'w') as fifo:
        fifo.write(command + '\n')
        fifo.flush()

def pass_(domain, encoding):
    args = ['lpass', 'show', '-x', '-j', '-G', '.*{:s}.*'.format(domain)]
    process = subprocess.run(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE)

    err = process.stderr.decode(encoding).strip()
    if err:
        msg = "LastPass CLI returned for {:s} - {:s}".format(domain, err)
        stderr(msg)
        return '[]'

    out = process.stdout.decode(encoding).strip()

    return out

def dmenu(items, invocation, encoding):
    command = shlex.split(invocation)
    process = subprocess.run(command, input='\n'.join(
        items).encode(encoding), stdout=subprocess.PIPE)
    return process.stdout.decode(encoding).strip()


def fake_key_raw(text):
    for character in text:
        # Escape all characters by default, space requires special handling
        sequence = '" "' if character == ' ' else '\{}'.format(character)
        qute_command('fake-key {}'.format(sequence))


def main(arguments):
    if not arguments.url:
        argument_parser.print_help()
        return ExitCodes.FAILURE

    extract_result = tldextract.extract(arguments.url)

    # Try to find candidates using targets in the following order: fully-qualified domain name (includes subdomains),
    # the registered domain name and finally: the IPv4 address if that's what
    # the URL represents
    candidates = []
    for target in filter(None, [extract_result.fqdn, extract_result.registered_domain, extract_result.subdomain + extract_result.domain, extract_result.domain, extract_result.ipv4]):
        target_candidates = json.loads(pass_(target, arguments.io_encoding))
        if not target_candidates:
            continue

        candidates = candidates + target_candidates
        if not arguments.merge_candidates:
            break
    else:
        if not candidates:
            stderr('No pass candidates for URL {!r} found!'.format(
                arguments.url))
            return ExitCodes.NO_PASS_CANDIDATES

    if len(candidates) == 1:
        selection = candidates.pop()
    else:
        choices = ["{:s} | {:s} | {:s} | {:s}".format(c["id"], c["name"], c["url"], c["username"]) for c in candidates]
        choice = dmenu(choices, arguments.dmenu_invocation, arguments.io_encoding)
        choiceId = choice.split("|")[0].strip()
        selection = next((c for (i, c) in enumerate(candidates) if c["id"] == choiceId), None)

    # Nothing was selected, simply return
    if not selection:
        return ExitCodes.SUCCESS

    username = selection["username"]
    password = selection["password"]

    if arguments.username_only:
        fake_key_raw(username)
    elif arguments.password_only:
        fake_key_raw(password)
    else:
        # Enter username and password using fake-key and <Tab> (which seems to work almost universally), then switch
        # back into insert-mode, so the form can be directly submitted by
        # hitting enter afterwards
        fake_key_raw(username)
        qute_command('fake-key <Tab>')
        fake_key_raw(password)

    if arguments.insert_mode:
        qute_command('enter-mode insert')

    return ExitCodes.SUCCESS


if __name__ == '__main__':
    arguments = argument_parser.parse_args()
    sys.exit(main(arguments))
Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00			`#!/usr/bin/env python3`

			`# Copyright 2017 Chris Braun (cryzed) <cryzed@googlemail.com>`
			`# Adapted for LastPass by Wayne Cheng (welps) <waynethecheng@gmail.com>`
			`#`
			`# This file is part of qutebrowser.`
			`#`
			`# qutebrowser is free software: you can redistribute it and/or modify`
			`# it under the terms of the GNU General Public License as published bjy`
			`# the Free Software Foundation, either version 3 of the License, or`
			`# (at your option) any later version.`
			`#`
			`# qutebrowser is distributed in the hope that it will be useful,`
			`# but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`# GNU General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU General Public License`
			`# along with qutebrowser. If not, see <http://www.gnu.org/licenses/>.`

			`"""`
			`Insert login information using lastpass CLI and a dmenu-compatible application (e.g. dmenu, rofi -dmenu, ...).`
			`A short demonstration can be seen here: https://i.imgur.com/zA61NrF.gifv.`
			`"""`

			`USAGE = """The domain of the site has to be in the name of the LastPass entry, for example: "github.com/cryzed" or`
			`"websites/github.com". The login information is inserted by emulating key events using qutebrowser's fake-key command in this manner:`
Code review changes 2018-05-20 11:29:20 +02:00			`[USERNAME]<Tab>[PASSWORD], which is compatible with almost all login forms.`
Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00
Code review changes 2018-05-20 11:29:20 +02:00			You must log into LastPass CLI using `lpass login <email>` prior to use of this script. The LastPass CLI agent only holds your master password for an hour by default. If you wish to change this, please see `man lpass`.

			To use in qutebrowser, run: `spawn --userscript qute-lastpass`
			`"""`

			`EPILOG = """Dependencies: tldextract (Python 3 module), LastPass CLI (1.3 or newer)`
Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00
			`WARNING: The login details are viewable as plaintext in qutebrowser's debug log (qute://log) and might be shared if`
			`you decide to submit a crash report!"""`

			`import argparse`
			`import enum`
			`import fnmatch`
			`import functools`
			`import os`
			`import re`
			`import shlex`
			`import subprocess`
			`import sys`
			`import json`
			`import tldextract`

			`argument_parser = argparse.ArgumentParser(`
			`description=__doc__, usage=USAGE, epilog=EPILOG)`
			`argument_parser.add_argument('url', nargs='?', default=os.getenv('QUTE_URL'))`
			`argument_parser.add_argument('--dmenu-invocation', '-d', default='rofi -dmenu',`
			`help='Invocation used to execute a dmenu-provider')`
			`argument_parser.add_argument('--no-insert-mode', '-n', dest='insert_mode', action='store_false',`
			`help="Don't automatically enter insert mode")`
			`argument_parser.add_argument('--io-encoding', '-i', default='UTF-8',`
			`help='Encoding used to communicate with subprocesses')`
			`argument_parser.add_argument('--merge-candidates', '-m', action='store_true',`
			`help='Merge pass candidates for fully-qualified and registered domain name')`
			`group = argument_parser.add_mutually_exclusive_group()`
			`group.add_argument('--username-only', '-e',`
			`action='store_true', help='Only insert username')`
			`group.add_argument('--password-only', '-w',`
			`action='store_true', help='Only insert password')`

			`stderr = functools.partial(print, file=sys.stderr)`

			`class ExitCodes(enum.IntEnum):`
			`SUCCESS = 0`
			`FAILURE = 1`
			`# 1 is automatically used if Python throws an exception`
			`NO_PASS_CANDIDATES = 2`
			`COULD_NOT_MATCH_USERNAME = 3`
			`COULD_NOT_MATCH_PASSWORD = 4`

			`def qute_command(command):`
			`with open(os.environ['QUTE_FIFO'], 'w') as fifo:`
			`fifo.write(command + '\n')`
			`fifo.flush()`

			`def pass_(domain, encoding):`
			`args = ['lpass', 'show', '-x', '-j', '-G', '.{:s}.'.format(domain)]`
Code review changes 2018-05-20 11:29:20 +02:00			`process = subprocess.run(args, stdout=subprocess.PIPE, stderr=subprocess.PIPE)`

			`err = process.stderr.decode(encoding).strip()`
CR changes 2018-05-21 02:30:24 +02:00			`if err:`
Code review changes 2018-05-20 11:29:20 +02:00			`msg = "LastPass CLI returned for {:s} - {:s}".format(domain, err)`
CR changes 2018-05-21 02:30:24 +02:00			`stderr(msg)`
Code review changes 2018-05-20 11:29:20 +02:00			`return '[]'`

Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00			`out = process.stdout.decode(encoding).strip()`
Code review changes 2018-05-20 11:29:20 +02:00
Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00			`return out`

			`def dmenu(items, invocation, encoding):`
			`command = shlex.split(invocation)`
			`process = subprocess.run(command, input='\n'.join(`
			`items).encode(encoding), stdout=subprocess.PIPE)`
			`return process.stdout.decode(encoding).strip()`


			`def fake_key_raw(text):`
			`for character in text:`
			`# Escape all characters by default, space requires special handling`
			`sequence = '" "' if character == ' ' else '\{}'.format(character)`
			`qute_command('fake-key {}'.format(sequence))`


			`def main(arguments):`
			`if not arguments.url:`
			`argument_parser.print_help()`
			`return ExitCodes.FAILURE`

			`extract_result = tldextract.extract(arguments.url)`

			`# Try to find candidates using targets in the following order: fully-qualified domain name (includes subdomains),`
			`# the registered domain name and finally: the IPv4 address if that's what`
			`# the URL represents`
			`candidates = []`
CR changes 2018-05-21 02:30:24 +02:00			`for target in filter(None, [extract_result.fqdn, extract_result.registered_domain, extract_result.subdomain + extract_result.domain, extract_result.domain, extract_result.ipv4]):`
Create lastpass implementation based off qute-pass code 2018-05-19 21:29:27 +02:00			`target_candidates = json.loads(pass_(target, arguments.io_encoding))`
			`if not target_candidates:`
			`continue`

			`candidates = candidates + target_candidates`
			`if not arguments.merge_candidates:`
			`break`
			`else:`
			`if not candidates:`
			`stderr('No pass candidates for URL {!r} found!'.format(`
			`arguments.url))`
			`return ExitCodes.NO_PASS_CANDIDATES`

			`if len(candidates) == 1:`
			`selection = candidates.pop()`
			`else:`
			`choices = ["{:s} \| {:s} \| {:s} \| {:s}".format(c["id"], c["name"], c["url"], c["username"]) for c in candidates]`
			`choice = dmenu(choices, arguments.dmenu_invocation, arguments.io_encoding)`
			`choiceId = choice.split("\|")[0].strip()`
			`selection = next((c for (i, c) in enumerate(candidates) if c["id"] == choiceId), None)`

			`# Nothing was selected, simply return`
			`if not selection:`
			`return ExitCodes.SUCCESS`

			`username = selection["username"]`
			`password = selection["password"]`

			`if arguments.username_only:`
			`fake_key_raw(username)`
			`elif arguments.password_only:`
			`fake_key_raw(password)`
			`else:`
			`# Enter username and password using fake-key and <Tab> (which seems to work almost universally), then switch`
			`# back into insert-mode, so the form can be directly submitted by`
			`# hitting enter afterwards`
			`fake_key_raw(username)`
			`qute_command('fake-key <Tab>')`
			`fake_key_raw(password)`

			`if arguments.insert_mode:`
			`qute_command('enter-mode insert')`

			`return ExitCodes.SUCCESS`


			`if __name__ == '__main__':`
			`arguments = argument_parser.parse_args()`
			`sys.exit(main(arguments))`