FEAT: using safe scheme to handle persistent encrypted system user's data

Oldes · Oldes · commit ab0c6af94cfb · 2022-07-12T13:26:35.000+02:00
diff --git a/src/mezz/mezz-shell.reb b/src/mezz/mezz-shell.reb
@@ -47,3 +47,53 @@ more: func [
 		word! path! [to-file file]
 	]
 ]
+
+user's: func[
+	"Resolves user's data value"
+	'key /local data
+][
+	all [
+		data: select system/user 'data
+		select :data :key
+	]
+]
+
+su: set-user: func[
+	"Initialize user's persistent data under system/user"
+	'name [word! ref! string! unset!] "User's name"
+	/p "Password used to encrypt the data"
+	 password [string! binary!]
+	/f "Use custom persistent data file location"
+	 file [file!]
+	/n "Setup a user if does not exists"
+	/local su
+][
+	su: system/user
+	if unset? :name [su/name: none su/data: make map! 1 exit]
+
+	sys/log/info 'REBOL ["Initialize user:" as-green :name]
+	file: to-real-file any [file rejoin [system/options/home #"." :name %.safe]]
+	sys/log/more 'REBOL ["Checking if exists: " as-green file]
+	unless exists? file [
+		unless n [
+			sys/log/error 'REBOL "User's persistent storage file not found!"
+			exit
+		]
+		sys/log/info 'REBOL ["Creating a new persistent storage file:" as-green file]
+	]
+	password: any [
+		password
+		get-env "REBOL_SAFE_PASS"
+		ask/hide "Enter password: "
+	]
+	
+	if port? su/data [ close su/data ]
+	su/name: to ref! :name
+	file: split-path :file
+	su/data: open [
+		scheme: 'safe
+		pass:   password
+		path:   file/1
+		target: file/2
+	]
+]
