Add config command

Author: Aeliux

src/EasySign.Cli/BundleCommandProvider.cs

@@ -30,10 +30,19 @@ public override RootCommand GetRootCommand()
                 Info,
                 Sign,
                 Verify,
-                SelfSign,
-                Trust,
+                Config,
             };
 
+            if (Configuration.Settings["selfsign.enable"])
+            {
+                root.Add(SelfSign);
+            }
+
+            if (Configuration.Settings["trust.enable"])
+            {
+                root.Add(Trust);
+            }
+
             return root;
         }
     }

src/EasySign.Cli/Program.cs

@@ -56,7 +56,13 @@ private static int Main(string[] args)
             appLogger.Information("Shutting down EasySign CLI at {DateTime} with exit code {ExitCode}", DateTime.Now, exitCode);
 
             string data = JsonSerializer.Serialize(config, config.GetType(), SourceGenerationConfigurationContext.Default);
-            using (FileStream fs = File.OpenWrite(ConfigPath))
+
+            if(File.Exists(ConfigPath))
+            {
+                File.Delete(ConfigPath);
+            }
+
+            using (FileStream fs = File.Create(ConfigPath))
             {
                 fs.Write(Encoding.UTF8.GetBytes(data));
             }

src/EasySign.CommandLine/BundleWorker.cs

@@ -577,7 +577,7 @@ protected bool VerifyCertificate(X509Certificate2 certificate, bool ignoreTime)
             verificationResults.Add(defaultVerification);
             verificationStatuses.Add(defaultChainStatuses);
 
-            if (!verificationResults.Any(x => x) && Configuration.TrustedRootCA.Count > 0)
+            if (Configuration.Settings["trust.enable"] && !verificationResults.Any(x => x) && Configuration.TrustedRootCA.Count > 0)
             {
                 policy.TrustMode = X509ChainTrustMode.CustomRootTrust;
                 policy.CustomTrustStore.AddRange(Configuration.LoadCertificates(CertificateStore.TrustedRootCA));

src/EasySign.CommandLine/CommandProvider.cs

@@ -169,10 +169,16 @@ public Command Sign
 
                     if (selfSign)
                     {
+                        if (!Configuration.Settings["selfsign.enable"])
+                        {
+                            AnsiConsole.MarkupLine("[red]Self-Signing feature is disabled[/]");
+                            return;
+                        }
+
                         X509Certificate2? rootCA = GetSelfSigningRootCA();
                         if (rootCA == null)
                         {
-                            AnsiConsole.MarkupLine("[red]Self-Signing Root CA not found![/]");
+                            AnsiConsole.MarkupLine("[red]Self-Signing Root CA not found[/]");
                             return;
                         }
 
@@ -432,13 +438,91 @@ public Command Trust
                     }
                 }, idArg, interOpt);
 
-                Command command = new Command("trust", "Manage trusted root CAs and intermediate CAs")
+                Command command = new Command("trust", "Manage trusted root CAs and intermediate CAs");
+
+                if (Configuration.Settings["trust.enable"])
+                {
+                    command.AddCommand(addCmd);
+                    command.AddCommand(listCmd);
+                    command.AddCommand(removeCmd);
+                }
+                else
+                {
+                    command.SetHandler(() =>
+                    {
+                        AnsiConsole.MarkupLine("[red]Custom trust store feature is disabled[/]");
+                        return;
+                    });
+                }
+
+                return command;
+            }
+        }
+
+        /// <summary>
+        /// Gets the command for managing configuration settings.
+        /// </summary>
+        public Command Config
+        {
+            get
+            {
+                var keyArg = new Argument<string>("key", "Key to set or get\n" +
+                    "if not specified, will list all keys")
+                {
+                    Arity = ArgumentArity.ZeroOrOne,
+                };
+
+                var valueArg = new Argument<string>("value", "Value to set\n" +
+                    "if not specified, will get the value of the key")
+                {
+                    Arity = ArgumentArity.ZeroOrOne,
+                };
+
+                var forceOpt = new Option<bool>("--force", "Set value even if it is not existing");
+                forceOpt.AddAlias("-f");
+
+                var command = new Command("config", "Get or set configuration values")
                 {
-                    addCmd,
-                    listCmd,
-                    removeCmd,
+                    keyArg,
+                    valueArg,
+                    forceOpt,
                 };
 
+                command.SetHandler((key, value, force) =>
+                {
+                    if (string.IsNullOrEmpty(value))
+                    {
+                        var items = string.IsNullOrEmpty(key) ? Configuration.Settings : Configuration.Settings.Where(x => x.Key.StartsWith(key));
+
+                        foreach (var item in items)
+                        {
+                            AnsiConsole.WriteLine($"{item.Key} = {item.Value}");
+                        }
+                    }
+                    else
+                    {
+                        if (!force && !Configuration.Settings.ContainsKey(key))
+                        {
+                            AnsiConsole.MarkupLine($"[red]Invalid key: {key}[/]");
+                            return;
+                        }
+
+                        bool bValue;
+                        try
+                        {
+                            bValue = Utilities.ParseToBool(value);
+                        }
+                        catch
+                        {
+                            AnsiConsole.MarkupLine($"[red]Invalid value: {value}[/]");
+                            return;
+                        }
+
+                        Configuration.Settings[key] = bValue;
+                        AnsiConsole.MarkupLine($"[green]{key} set to {Configuration.Settings[key]}[/]");
+                    }
+                }, keyArg, valueArg, forceOpt);
+
                 return command;
             }
         }
@@ -456,6 +540,12 @@ public Command Trust
         /// <param name="country">Country (C) - optional.</param>
         public virtual void RunSelfSign(bool force, string? commonName, string? email, string? organization, string? organizationalUnit, string? locality, string? state, string? country)
         {
+            if (!Configuration.Settings["selfsign.enable"])
+            {
+                AnsiConsole.MarkupLine("[red]Self-Signing feature is disabled[/]");
+                return;
+            }
+
             Logger.LogInformation("Running self-sign command");
 
             if (force || Configuration.SelfSignedRootCA != null)

src/EasySign.CommandLine/CommandProviderConfiguration.cs

@@ -13,6 +13,15 @@ namespace SAPTeam.EasySign.CommandLine
     /// </summary>
     public class CommandProviderConfiguration
     {
+        /// <summary>
+        /// Gets or sets the settings for the command provider.
+        /// </summary>
+        public Dictionary<string, bool> Settings { get; set; } = new Dictionary<string, bool>
+        {
+            ["trust.enable"] = true,
+            ["selfsign.enable"] = true,
+        };
+
         /// <summary>
         /// Gets or sets the list of prefixes that should be protected from modification.
         /// </summary>

src/EasySign.CommandLine/Utilities.cs

@@ -124,5 +124,29 @@ public static void EnumerateStatuses(X509ChainStatus[] statuses)
                 AnsiConsole.MarkupLine($"[{Color.IndianRed}]   {status.StatusInformation}[/]");
             }
         }
+
+        /// <summary>
+        /// Parses a string to a boolean value.
+        /// </summary>
+        /// <param name="input">
+        /// The string to parse.
+        /// </param>
+        /// <returns>
+        /// <see cref="bool"/> representation of the input string.
+        /// </returns>
+        /// <exception cref="FormatException"></exception>
+        public static bool ParseToBool(string input)
+        {
+            if (int.TryParse(input, out int number))
+            {
+                return number == 1;
+            }
+            if (bool.TryParse(input, out bool boolean))
+            {
+                return boolean;
+            }
+
+            throw new FormatException($"Cannot convert '{input}' to a boolean.");
+        }
     }
 }