1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
|
#!/usr/bin/env python
#
# Ref:
# Encrypt OfflineIMAP Password
# http://unix.stackexchange.com/questions/44214/encrypt-offlineimap-password
#
# Configurations:
# [general]
# pythonfile = ~/.offlineimap/offlineimap.py
# ...
# [Repository <reponame>]
# remotepasseval = mailpasswd("<accountname>")
# ...
#
# 2014/06/20
#
import os
import subprocess
def mailpasswd(account):
account = os.path.basename(account)
path = '{0}/.offlineimap/{1}.gpg'.format(os.environ['HOME'], account)
args = ['gpg', '--use-agent', '--quiet', '--batch', '-d', path]
try:
return subprocess.check_output(args).strip()
except subprocess.CalledProcessError:
return ''
# subprocess.check_output() only introduced in python 2.7
# this version of 'mailpasswd' works with older version of python
#def mailpasswd(account):
# account = os.path.basename(account)
# path = '{0}/.offlineimap/{1}.gpg'.format(os.environ['HOME'], account)
# args = ['gpg', '--use-agent', '--quiet', '--batch', '-d', path]
# proc = subprocess.Popen(args, stdout=subprocess.PIPE)
# output = proc.communicate()[0].strip()
# retcode = proc.wait()
# if retcode == 0:
# return output
# else:
# return ''
# If you have several accounts that get checked simultaneously, and you
# use 'gpg-agent', then it will ask for you passphrase for each account.
# I prime the agent by creating a file, and priming the gpg-agent by
# decrypting this file on launch of offlineimap.
def prime_gpg_agent():
# echo "prime" | gpg -e -r <recipient> > ~/.offlineimap/prime.gpg
ret = False
i = 1
while not ret:
ret = (mailpasswd("prime") == "prime")
if i > 2:
from offlineimap.ui import getglobalui
sys.stderr.write("Error reading in passwords. Terminating.\n")
getglobalui().terminate()
i += 1
return ret
prime_gpg_agent()
|
