encrypt-config/EncryptConfigMain.cpp - nifi-minifi-cpp - Git at Google

 /**
  * Licensed to the Apache Software Foundation (ASF) under one or more
  * contributor license agreements.  See the NOTICE file distributed with
  * this work for additional information regarding copyright ownership.
  * The ASF licenses this file to You under the Apache License, Version 2.0
  * (the "License"); you may not use this file except in compliance with
  * the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 #include <iostream>
 #include <typeinfo>

 #include "EncryptConfig.h"
 #include "argparse/argparse.hpp"
 #include "agent/agent_version.h"
 #include "utils/StringUtils.h"

 namespace minifi = org::apache::nifi::minifi;
 using minifi::encrypt_config::EncryptConfig;

 constexpr std::string_view OPERATION_MINIFI_PROPERTIES = "minifi-properties";
 constexpr std::string_view OPERATION_FLOW_CONFIG = "flow-config";
 constexpr std::string_view OPERATION_WHOLE_FLOW_CONFIG_FILE = "whole-flow-config-file";

 int main(int argc, char* argv[]) try {
   argparse::ArgumentParser argument_parser("Apache MiNiFi C++ Encrypt-Config", org::apache::nifi::minifi::AgentBuild::VERSION);
   argument_parser.add_argument("operation")
       .default_value("minifi-properties")
       .help(minifi::utils::string::join_pack("what to encrypt: ", OPERATION_MINIFI_PROPERTIES, " | ", OPERATION_FLOW_CONFIG, " | ", OPERATION_WHOLE_FLOW_CONFIG_FILE));
   argument_parser.add_argument("-m", "--minifi-home")
       .required()
       .metavar("MINIFI_HOME")
       .help("Specifies the home directory used by the minifi agent");
   argument_parser.add_argument("--component-id")
       .metavar("ID")
       .help(minifi::utils::string::join_pack("Processor or controller service id (", OPERATION_FLOW_CONFIG, " only)"));
   argument_parser.add_argument("--property-name")
       .metavar("NAME")
       .help(minifi::utils::string::join_pack("The name of the sensitive property (", OPERATION_FLOW_CONFIG, " only)"));
   argument_parser.add_argument("--property-value")
       .metavar("VALUE")
       .help(minifi::utils::string::join_pack("The new value of the sensitive property (", OPERATION_FLOW_CONFIG, " only)"));

   try {
     argument_parser.parse_args(argc, argv);
   } catch (const std::runtime_error& err) {
     std::cerr << err.what() << "\n\n" << argument_parser;
     return 1;
   }

   EncryptConfig encrypt_config{argument_parser.get("-m")};
   std::string operation = argument_parser.get("operation");

   if (operation == OPERATION_MINIFI_PROPERTIES) {
     encrypt_config.encryptSensitiveValuesInMinifiProperties();
   } else if (operation == OPERATION_FLOW_CONFIG) {
     auto component_id = argument_parser.present("--component-id");
     auto property_name = argument_parser.present("--property-name");
     auto property_value = argument_parser.present("--property-value");
     encrypt_config.encryptSensitiveValuesInFlowConfig(component_id, property_name, property_value);
   } else if (operation == OPERATION_WHOLE_FLOW_CONFIG_FILE) {
     encrypt_config.encryptWholeFlowConfigFile();
   } else {
     std::cerr << "Unknown operation: " << operation << "\n\n" << argument_parser;
     return 4;
   }

   if ((operation == OPERATION_MINIFI_PROPERTIES || operation == OPERATION_WHOLE_FLOW_CONFIG_FILE) && encrypt_config.isReencrypting()) {
     std::cout << "WARNING: an .old key was provided, which is used for both " << OPERATION_MINIFI_PROPERTIES << " and " << OPERATION_WHOLE_FLOW_CONFIG_FILE << ".\n"
         << "If both are currently encrypted, make sure to run " << argv[0] << " to re-encrypt both before removing the .old key,\n"
         << "otherwise you won't be able to recover the encrypted data!\n";
   }

   return 0;
 } catch (const std::exception& ex) {
   std::cerr << ex.what() << "\n(" << typeid(ex).name() << ")\n";
   return 2;
 } catch (...) {
   std::cerr << "Unknown error\n";
   return 3;
 }
	/**
	* Licensed to the Apache Software Foundation (ASF) under one or more
	* contributor license agreements. See the NOTICE file distributed with
	* this work for additional information regarding copyright ownership.
	* The ASF licenses this file to You under the Apache License, Version 2.0
	* (the "License"); you may not use this file except in compliance with
	* the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	#include <iostream>
	#include <typeinfo>

	#include "EncryptConfig.h"
	#include "argparse/argparse.hpp"
	#include "agent/agent_version.h"
	#include "utils/StringUtils.h"

	namespace minifi = org::apache::nifi::minifi;
	using minifi::encrypt_config::EncryptConfig;

	constexpr std::string_view OPERATION_MINIFI_PROPERTIES = "minifi-properties";
	constexpr std::string_view OPERATION_FLOW_CONFIG = "flow-config";
	constexpr std::string_view OPERATION_WHOLE_FLOW_CONFIG_FILE = "whole-flow-config-file";

	int main(int argc, char* argv[]) try {
	argparse::ArgumentParser argument_parser("Apache MiNiFi C++ Encrypt-Config", org::apache::nifi::minifi::AgentBuild::VERSION);
	argument_parser.add_argument("operation")
	.default_value("minifi-properties")
	.help(minifi::utils::string::join_pack("what to encrypt: ", OPERATION_MINIFI_PROPERTIES, " \| ", OPERATION_FLOW_CONFIG, " \| ", OPERATION_WHOLE_FLOW_CONFIG_FILE));
	argument_parser.add_argument("-m", "--minifi-home")
	.required()
	.metavar("MINIFI_HOME")
	.help("Specifies the home directory used by the minifi agent");
	argument_parser.add_argument("--component-id")
	.metavar("ID")
	.help(minifi::utils::string::join_pack("Processor or controller service id (", OPERATION_FLOW_CONFIG, " only)"));
	argument_parser.add_argument("--property-name")
	.metavar("NAME")
	.help(minifi::utils::string::join_pack("The name of the sensitive property (", OPERATION_FLOW_CONFIG, " only)"));
	argument_parser.add_argument("--property-value")
	.metavar("VALUE")
	.help(minifi::utils::string::join_pack("The new value of the sensitive property (", OPERATION_FLOW_CONFIG, " only)"));

	try {
	argument_parser.parse_args(argc, argv);
	} catch (const std::runtime_error& err) {
	std::cerr << err.what() << "\n\n" << argument_parser;
	return 1;
	}

	EncryptConfig encrypt_config{argument_parser.get("-m")};
	std::string operation = argument_parser.get("operation");

	if (operation == OPERATION_MINIFI_PROPERTIES) {
	encrypt_config.encryptSensitiveValuesInMinifiProperties();
	} else if (operation == OPERATION_FLOW_CONFIG) {
	auto component_id = argument_parser.present("--component-id");
	auto property_name = argument_parser.present("--property-name");
	auto property_value = argument_parser.present("--property-value");
	encrypt_config.encryptSensitiveValuesInFlowConfig(component_id, property_name, property_value);
	} else if (operation == OPERATION_WHOLE_FLOW_CONFIG_FILE) {
	encrypt_config.encryptWholeFlowConfigFile();
	} else {
	std::cerr << "Unknown operation: " << operation << "\n\n" << argument_parser;
	return 4;
	}

	if ((operation == OPERATION_MINIFI_PROPERTIES \|\| operation == OPERATION_WHOLE_FLOW_CONFIG_FILE) && encrypt_config.isReencrypting()) {
	std::cout << "WARNING: an .old key was provided, which is used for both " << OPERATION_MINIFI_PROPERTIES << " and " << OPERATION_WHOLE_FLOW_CONFIG_FILE << ".\n"
	<< "If both are currently encrypted, make sure to run " << argv[0] << " to re-encrypt both before removing the .old key,\n"
	<< "otherwise you won't be able to recover the encrypted data!\n";
	}

	return 0;
	} catch (const std::exception& ex) {
	std::cerr << ex.what() << "\n(" << typeid(ex).name() << ")\n";
	return 2;
	} catch (...) {
	std::cerr << "Unknown error\n";
	return 3;
	}