Skip to content

Secure api_key storage in zuliprc with automatic & manual encryption #4

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 276 commits into
base: main
Choose a base branch
from
Open

Secure api_key storage in zuliprc with automatic & manual encryption #4

wants to merge 276 commits into from

Conversation

Gopinath-Mahendiran
Copy link

This PR enhances security by encrypting the api_key stored in the zuliprc file. It ensures that sensitive credentials are not stored in plaintext, reducing the risk of exposure. A decryption mechanism is also included to seamlessly retrieve the api_key when needed.

Outstanding aspect(s)

External discussion & connections

How did you test this?

  • [ x] Manually - Verified that api_key is encrypted when stored.
  • [ x] Manually - Confirmed api_key decryption works correctly.

###How this behaves
When a user logs in directly from the terminal without downloading the zuliprc file from the web application, the encryption process will be handled internally, ensuring a seamless and secure experience.

However, if the zuliprc file is downloaded from the web application, encryption must be performed manually using the following command:
zulip-term --encrypt <file_name>

This command encrypts the api_key stored in the file, enhancing security before use.

Regardless of whether the user logs in with the default zuliprc file or a custom configuration file, decryption will be handled automatically within the application. This ensures a smooth authentication process without requiring any manual intervention.

neiljp and others added 30 commits April 12, 2023 14:32
@neiljp
ui_mappings: Add UserStatus Literal for internal status strings.
27a00ef 
This enables the STATE_ICON lookup to be typed more cleanly.
@neiljp
refactor: model/ui_mappings: Simplify construction of user_list.
aa68fd6 
This significantly reduces code duplication.

Note added in ui_mappings that the order is relevant in the UI.
@plugyawn @neiljp
symbols/ui_mappings: Add bot icon and map to bot status.
85bf4a1 
Bots do not have a dynamic status, so give them a static one.
@plugyawn @neiljp
themes: Add user_bot styles for bot 'status' in UI.
09fe2b7 
These are constructed dynamically based on the user status, so if a user may
have a "bot" status, a "user_bot" style is now necessary.
@plugyawn @neiljp
model: Set status of bots to be a static "bot" value.
74bcb11 
This will be picked up using earlier commits, to show it differently in
the UI.

With a different status, bots are now explicitly placed at the end of the
user list.

Tests updated.

Original logic by Progyan, simplified using logic suggested in review by
neiljp in zulip#1187.

Co-authored-by: neiljp (Neil Pilgrim) <[email protected]>
@neiljp
refactor: README: Reformat Contributor section; split lines & sentences.
efb18d3 
This does not modify content, only shortens lines to make diffs easier to
read.

Visually compared to previous version as rendered on GitHub to ensure no
changes.
@neiljp
README: Fix link to developer-file-overview.md in Contributing section.
59d70b0
@neiljp
README: Fix link to install pipenv in Contributing section.
bba2e48 
Thanks to Vishwesh Pillai <[email protected]> for discovering this.
@neiljp
minor: README: Contributor section spacing adjustments.
71af9d7
@neiljp
FAQ: Update Python version section regarding very recent versions.
1bc1236 
The note relating to zulip#1145 is retained, but testing in CI indicates a more
specific error is given if there is no matching python for a user's
environment - now that versions 0.2.0 and 0.2.1 have been yanked from PyPI.

Instead of a broken install of a very old version, a recent pip should error
with a message along the lines of
`ERROR: Package 'zulip-term' requires a different Python: 3.11.3 not in <3.11,>=3.7'`
@neiljp
refactor: model/helper/messages: Migrate pm_with to pm-with in narrows.
f420528 
The latter form has officially been the narrow format, but the server was
previously looser in also accepting the underscore version - though that was
subsequently reverted.

For details see (on chat.zulip.org):
- #zulip-terminal > Cannot narrow to `pm_with` (#T1352)
- #api design > direct message search operators

Tests adapted.

Commit text updated and commits squashed together by neiljp
(all changes are necessary together to keep ZT functioning)
@AmeliaTaihui @neiljp
helper: Match topic search text against start of all words in topic.
aba94e3 
This extends the existing behavior which only matched against the start of
the topic, and applies in entering the topic in the compose box as well as
linking to streams and topics in message content.

A similar approach is taken as with streams, splitting on spaces as well as
a set of additional delimiters (-_/).

The topics fixture is extended to include text split by delimiters.
Test cases updated and extended.

Fixes zulip#1358.
@neiljp
refactor: api_types: Set message types as only being private or stream.
a89cb8a 
This field could previously be an arbitrary `str`, though in practice
`Message`s come from the server and `Composition`s are sent from ZT, so only
the latter directly benefits from matching strings to these limited values.

DirectMessageString is used here, though other naming has yet to migrate
towards "direct" rather than "private".

Fixture updated to use MessageType instead of str.
@neiljp
refactor: api_types/model: Move pre-ZFL53 lengths to api_types.
99157c2 
Comment adjusted; Final applied to new constants.
@neiljp
refactor: api_types/model: Improve types for typing notifications.
10e02d0 
With the addition of stream typing notifications, and soon the migration to
"direct" in place of "private", message type can now be useful to include.

However, note that we don't yet explicitly specify the type for the
direct/private message form, since this was added only in ZFL 58, Zulip 4.0.
@neiljp
README/editorconfig: Add .editorconfig to improve editing consistency.
db866cb 
Add small section in README to document the benefits.
@neiljp
README: Rewrite gitlint section to enhance use of the tool.
8723e7c 
Prior to this commit, while the tool is installed in every development
environment, installing the hook was simply 'highly suggested'.

This rephrases the text to improve the motivation for using gitlint,
including running it manually, and then showing how automating it is
therefore useful.

This section still follows the general commit message style section; it
may be necessary to refer one to another, or otherwise combine them to
improve motivation towards using this tool. Alternatively, gitlint could
be added to CI.
@neiljp
README: Improve structure of linting/testing section.
27611dc 
Various notes were previously added to this documentation. This commit
reorganizes text in these sections to improve readability, including
raising the section level of the Editing, Linting/testing, and Commit
sections.

In particular, this should more clearly explain, in order:
- when checks are run on GitHub
- that they can be run locally and why that's useful
- the expectation of passing all linting and tests for a PR to be merged
- ideas of what to do if linting/tests don't pass
@neiljp
refactor: messages/views: Remove extra parameter to top_header_bar().
fdbf38a 
This parameter was previously simply passed the value of the object, so
just use self instead. It was also erroneously named message_view,
whereas the relevant object was a message_box.

Tests updated, including one test case previously not being run correctly.
@neiljp
refactor: messages/views: Rename top_header_bar to recipient_header.
5505093 
This improves the naming at call sites, as well as enabling clear
additional usage and reduction of duplicated code in main_view().

Tests updated.
@neiljp
refactor: views: Explicitly define __init__ for ModListWalker.
ab5de21 
Fixture updated.
@neiljp
refactor: views: Set read_message in ModListWalker via __init__.
6ad4f98 
This avoids explicitly setting it from the caller after initialization,
and the need for hasattr checks where it is used.

Tests updated.
@neiljp
refactor: views: Rename ModListWalker.read_message to ._action.
b3c70e7 
While this is currently only used in this project, there is no need to
make it so specific.

Tests updated.
@neiljp
refactor: core/model/helper: Simplify pointer type to Optional[int].
b81f30f 
None is much simpler to check, compared to Set[None].

Tests and fixtures updated.
@neiljp
bugfix: views: Add missing part of previous focus refactor from zulip…
e7cdb06 
…#1393.

Test updated and slightly reworded.
@WladRamos @neiljp
refactor: model/views: Migrate get_next_unread_pm & tests to model.
ce9decc
@neiljp
refactor: symbols: Add unicode details & further comments.
2566a1c 
This makes it easier to look up symbols elsewhere, though it is also
useful to continue having the symbols directly in the strings, to allow
them to be viewed easily in the source.
@neiljp
render_symbols: Add support for nested symbols (dicts).
369e363 
Previously all symbols were assumed to be simple variables only. This
change enables expanding entries stored in a dict. For example:
  NAME = dict(A=x, B=y)
results in entries in the UI listed as:
  NAME__A=x
  NAME__B=y.
@neiljp
refactor: symbols/core: Extract POPUP_CONTENT_BORDER into symbols.
54054c0
@neiljp
refactor: core: Simplify top of popups from LineBox to Divider.
2621596
@Niloth-p @timabbott
bugfix: model: Remove the reaction corresponding to the reaction event.
9c7b36c 
When multiple users shared an emoji reaction, the prior implementation
did not account for individual user IDs, leading to buggy handling of
'remove reaction' events.
@Niloth-p @timabbott
model: Convert reaction events to message reactions schema.
c005b7f
@Niloth-p @timabbott
model: Add get_user_id_from_reaction for messages and reaction events.
a0233ec 
In preparation for deprecation of `user` field from reactions.

Tests added.
@Niloth-p @timabbott
test_model: Add user_id test cases for reaction factories.
2125dc5 
- reaction_event_factory
- reaction_event_index_factory

To test the handling of reaction events conforming to the reactions
schema post ZFL 2.
@Niloth-p @timabbott
test_model: Add varied test cases for testing reaction event handling.
ccea7b5
@Niloth-p @timabbott
messages/views: Prepare for the deprecation of user metadata.
23a773c 
The "user" field is to be deprecated from messages' reactions and
reaction events in the API.

Add support for `user_id` in MsgInfoView, by using the recently
introduced `get_user_id_from_reaction()`.

Remove dependence on reaction["user"]["full_name"] by instead using
`_all_users_by_id` with the "user_id".

Tests updated.
@Gopinath-Mahendiran Gopinath-Mahendiran force-pushed the Gopinath-Mahendiran branch 2 times, most recently from e23df1f to 04fd0ae Compare March 24, 2025 04:58
@Gopinath-Mahendiran Gopinath-Mahendiran force-pushed the Gopinath-Mahendiran branch 2 times, most recently from 04fd0ae to 23a773c Compare April 1, 2025 18:02
@Gopinath-Mahendiran Gopinath-Mahendiran force-pushed the Gopinath-Mahendiran branch 8 times, most recently from 4ea856e to a1132b8 Compare April 13, 2025 19:10
@Gopinath-Mahendiran Gopinath-Mahendiran force-pushed the Gopinath-Mahendiran branch 8 times, most recently from e1e00d8 to 1137f07 Compare April 26, 2025 15:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.