User commands
Usage
data_request_access(path_data = NULL, path_user = NULL, quiet = FALSE)
data_key(
path_data = NULL,
path_user = NULL,
test = TRUE,
quiet = FALSE,
cache = TRUE
)
Arguments
- path_data
Path to the data. If not given, then we look recursively down below the working directory for a ".cyphr" directory, and use that as the data directory.
- path_user
Path to the directory with your user key. Usually this can be omitted. This argument is passed in as both
pub
andkey
tokeypair_openssl()
. Briefly, if this argument is not given we look at the environment variablesUSER_PUBKEY
andUSER_KEY
- if set then these must refer to path of your public and private keys. If these environment variables are not set then we fall back on~/.ssh/id_rsa.pub
and~/.ssh/id_rsa
, which should work in most environments. Alternatively, provide a path to a directory where the fileid_rsa.pub
andid_rsa
can be found.- quiet
Suppress printing of informative messages.
- test
Test that the encryption is working? (Recommended)
- cache
Cache the key within the session. This will be useful if you are using ssh keys that have passwords, as if the key is found within the cache, then you will not have to re-enter your password. Using
cache = FALSE
neither looks for the key in the cache, nor saves it.
Examples
# The workflow here does not really lend itself to an example,
# please see the vignette.
# Suppose that Alice has created a data directory:
path_alice <- tempfile()
cyphr::ssh_keygen(path_alice, password = FALSE)
path_data <- tempfile()
dir.create(path_data, FALSE, TRUE)
cyphr::data_admin_init(path_data, path_user = path_alice)
#> Generating data key
#> Authorising ourselves
#> Adding key 56:5e:78:ca:d2:06:f7:d9:68:80:b5:86:41:47:c8:51:4b:95:1e:d4:a4:26:d1:fd:39:eb:6a:3c:f6:54:31:49
#> user: root
#> host: 161c07cfcb17
#> date: 2024-09-28 06:27:44.86867
#> Verifying
# If Bob can also write to the data directory (e.g., it is a
# shared git repo, on a shared drive, etc), then he can request
# access
path_bob <- tempfile()
cyphr::ssh_keygen(path_bob, password = FALSE)
hash <- cyphr::data_request_access(path_data, path_user = path_bob)
#> A request has been added
#> Email someone with access to add you
#>
#> hash: 8e:cf:d5:5f:2c:ea:11:4a:0a:01:a6:04:b0:3c:6c:c3:28:3f:2f:ca:50:22:d0:6b:d7:6e:d0:41:15:c2:71:7d
#>
#> If you are using git, you will need to commit and push first:
#>
#> git add .cyphr
#> git commit -m "Please add me to the dataset"
#> git push
# Alice can authorise Bob
cyphr::data_admin_authorise(path_data, path_user = path_alice, yes = TRUE)
#> There is 1 request for access
#> Adding key 8e:cf:d5:5f:2c:ea:11:4a:0a:01:a6:04:b0:3c:6c:c3:28:3f:2f:ca:50:22:d0:6b:d7:6e:d0:41:15:c2:71:7d
#> user: root
#> host: 161c07cfcb17
#> date: 2024-09-28 06:27:45.195851
#> Added 1 key
#> If you are using git, you will need to commit and push:
#>
#> git add .cyphr
#> git commit -m "Authorised root"
#> git push
# After which Bob can get the data key
cyphr::data_key(path_data, path_user = path_bob)
#> <cyphr_key: sodium>
# See the vignette for more details. This is not the best medium
# to explore this.
# Cleanup
unlink(path_alice, recursive = TRUE)
unlink(path_bob, recursive = TRUE)
unlink(path_data, recursive = TRUE)