selfprivacy-rest-api/selfprivacy_api/resources/common.py

#!/usr/bin/env python3
"""Unassigned views"""
import subprocess
from flask_restful import Resource, reqparse


class DecryptDisk(Resource):
    """Decrypt disk"""

    def post(self):
        """
        Decrypt /dev/sdb using cryptsetup luksOpen
        ---
        consumes:
            - application/json
        tags:
            - System
        security:
            - bearerAuth: []
        parameters:
            - in: body
              name: body
              required: true
              description: Provide a password for decryption
              schema:
                type: object
                required:
                    - password
                properties:
                    password:
                        type: string
                        description: Decryption password.
        responses:
            201:
                description: OK
            400:
                description: Bad request
            401:
                description: Unauthorized
        """
        parser = reqparse.RequestParser(bundle_errors=True)
        parser.add_argument("password", type=str, required=True)
        args = parser.parse_args()

        decryption_command = ["cryptsetup", "luksOpen", "/dev/sdb", "decryptedVar"]

        # TODO: Check if this works at all

        decryption_service = subprocess.Popen(
            decryption_command,
            shell=False,
            stdin=subprocess.PIPE,
            stdout=subprocess.PIPE,
        )
        decryption_service.communicate(input=args["password"])
        return {"status": decryption_service.returncode}, 201
Decomposition 2021-11-11 20:31:28 +02:00			`#!/usr/bin/env python3`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""Unassigned views"""`
Decomposition 2021-11-11 20:31:28 +02:00			`import subprocess`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`from flask_restful import Resource, reqparse`
Decomposition 2021-11-11 20:31:28 +02:00

			`class DecryptDisk(Resource):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""Decrypt disk"""`

Decomposition 2021-11-11 20:31:28 +02:00			`def post(self):`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`"""`
			`Decrypt /dev/sdb using cryptsetup luksOpen`
			`---`
			`consumes:`
			`- application/json`
			`tags:`
			`- System`
			`security:`
			`- bearerAuth: []`
			`parameters:`
			`- in: body`
			`name: body`
			`required: true`
			`description: Provide a password for decryption`
			`schema:`
			`type: object`
			`required:`
			`- password`
			`properties:`
			`password:`
			`type: string`
			`description: Decryption password.`
			`responses:`
			`201:`
			`description: OK`
			`400:`
			`description: Bad request`
			`401:`
			`description: Unauthorized`
			`"""`
			`parser = reqparse.RequestParser(bundle_errors=True)`
			`parser.add_argument("password", type=str, required=True)`
			`args = parser.parse_args()`

			`decryption_command = ["cryptsetup", "luksOpen", "/dev/sdb", "decryptedVar"]`

			`# TODO: Check if this works at all`
Decomposition 2021-11-11 20:31:28 +02:00
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`decryption_service = subprocess.Popen(`
			`decryption_command,`
			`shell=False,`
			`stdin=subprocess.PIPE,`
			`stdout=subprocess.PIPE,`
Decomposition 2021-11-11 20:31:28 +02:00			`)`
Input sanitization, added swagger 2021-11-16 18:14:01 +02:00			`decryption_service.communicate(input=args["password"])`
			`return {"status": decryption_service.returncode}, 201`