Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork391
Add function to process the passcmd for API key retrieval.#866
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
base:main
Are you sure you want to change the base?
Uh oh!
There was an error while loading.Please reload this page.
Conversation
8454aee to0e6f7afCompareThere was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
@Gopinath-Mahendiran Thanks for giving the porting of the other PR across to this repo a try! 👍
I've left some comments inline, but the primary issue from my point of view is that we need to retain backwards compatibility, rather than just looking for passcmd instead of key.
The challenge with this repo (and module) is that there are few automated tests to start with, so it's important to check your changes carefully, or potentially add more tests first.
Much like the ZT PR has a documentation update, we'll want a similar update here too, for the new functionality.
zulip/zulip/__init__.py Outdated
| api_key = config.get("api", "key") | ||
| passcmd = config.get("api", "passcmd") | ||
| api_key = self.get_api_key(passcmd) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
This does not providepasscmd as a fallback tokey, in the configuration file, but only appears to replace it? Running this PR/branch with current zulip-termmain causes a crash, since my default zuliprc does not contain apasscmd, but only akey. You can reproduce this by entering the zulip-term virtual environment and installing the/zulip/ package folder in editable (-e) mode.
Also see my comment here:zulip/zulip-terminal#1581 (comment)
(while that comment applied to the documentation, this applies just as much to the code)
zulip/zulip/__init__.py Outdated
| def get_api_key(self, passcmd: str) -> Optional[str]: | ||
| # run the passcmd command and get the API key | ||
| result = subprocess.run(passcmd.split(), capture_output=True, check=False) | ||
| if result.returncode == 0: | ||
| return result.stdout.decode().strip() | ||
| else: | ||
| raise RuntimeError("Error: Unable to retrieve API key.") |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
I'd suggest we don't need this to be a method that looks developer-facing, and it could likely be placed inline directly in the code above where it would be otherwise called.
That said:
- You're currently returning
Optional[str], but I don't see where that can happen; it's unclear to me why the type-checker isn't complaining about that - RuntimeError is a very broad exception; if we're to use an exception here, or differently if this is inlined, I'd suggest it should be more specific
- The returncode appears not to be portable across platforms;
runcan provide another solution, I believe? - While we rely on a user to know what they are doing when using passcmd, I would suggest that the simpler commands we accept, and/or the more checking of the command we can do, the better.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
now look at the changes and give the feedback
@Gopinath-Mahendiran It would help to know how you tested this - not everything is applicable here, but you didn't fill out the self-review checklist, for example. |
Gopinath-Mahendiran commentedApr 26, 2025 • edited
Loading Uh oh!
There was an error while loading.Please reload this page.
edited
Uh oh!
There was an error while loading.Please reload this page.
@neiljp I made the changes directly in the package on my local machine by replicating the modifications from this PR. |
0e6f7af toa1acb67Comparef448f7a toc388e71CompareThere was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
@Gopinath-Mahendiran This is an improvement, and works for me with expected functionality, with Terminal 👍
I've left some notes inline, not all for you, though it also seems that the formatting is not correct based on the ruff CI error? The other CI error seems systemic to this repo.
| @@ -366,12 +368,15 @@ class MissingURLError(ZulipError): | |||
| class UnrecoverableNetworkError(ZulipError): | |||
| pass | |||
| class APIKeyRetrievalError(ZulipError): | |||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
Minor: This seems used only for thepasscmd case, not all API key retrieval? If so, the name could be improved.
| api_key = config.get("api", "key") | ||
| if passcmd is None and config.has_option("api", "passcmd"): |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
Note for later review: I'm unsure what behavior we want here, ie. whether we should allowpasscmd to overridekey in the config file.
Gopinath-MahendiranApr 28, 2025 • edited
Loading Uh oh!
There was an error while loading.Please reload this page.
edited
Uh oh!
There was an error while loading.Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
have a look at thiszulip/zulip-terminal#1581 (comment) ,If either passcmd or api is present in the configuration file, the application will use whichever is available. This line specifically checks whether passcmd is present in the configuration.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
Sure. The current change allows for both to be present in the file, and my point is whether only one or the other should be present, to make it clearer what the outcome should be.
| class Client: | ||
| def __init__( | ||
| self, | ||
| email: Optional[str] = None, | ||
| api_key: Optional[str] = None, | ||
| passcmd: Optional[str] = None, |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
I'll defer to Tim as to if we'll want apasscmd option to the initializer.
However, with the current code below, the behavior appears incorrect, if we intend to support this behavior.
| f'Failed to retrieve API key using passcmd "{passcmd}".' | ||
| f"Command exited with return code {err.returncode}." |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
Nit: This formatting looks strange and long.
Gopinath-MahendiranApr 28, 2025 • edited
Loading Uh oh!
There was an error while loading.Please reload this page.
edited
Uh oh!
There was an error while loading.Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
the first block handles parsing the passcmd using shlex.split(), raising an APIKeyRetrievalError if parsing fails.
- It then runs the parsed command securely using subprocess.run() with error checking.
- If the command fails (non-zero return code), a descriptive APIKeyRetrievalError is raised with details.
| malicious_chars = {";", "|", "&", ">", "<", "`", "$", "\\", "\n", "\r"} | ||
| if any(char in passcmd for char in malicious_chars): | ||
| raise APIKeyRetrievalError( | ||
| f"Invalid characters detected in passcmd: {passcmd!r}" | ||
| ) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
What's the basis for this approach? Do you have a reference?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
If passcmd contains any of these characters, it may lead to command injection, potentially resulting in unexpected behavior.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others.Learn more.
I understand that this is the intent, but if having something like this then it would be good to have a reference that these are a definitive list to use, or alternatively perform the inverse, ie. scan for what is expected to be valid.
The other outstanding update is the zuliprc docs; fine details will depend on a few final decisions re the behavior, but a provisional adjustment to the README would be a good starting point. |
c388e71 to9bd6cbdCompare
This commit is a continuation ofPR #1581 in the zulip-terminal repository.
It adds functionality to retrieve the API key by executing a passcmd specified in the config file, rather than directly reading the key from the config. Once the passcmd is executed and the API key is obtained, the usual authentication flow proceeds as before.
How did you test this PR?
Self-review checklist
(variable names, code reuse, readability, etc.).
Communicate decisions, questions, and potential concerns.
Individual commits are ready for review (seecommit discipline).
Completed manual review and testing of the following: