PasswordProtectedFiles

[dapocalypse]

This PR adds password protected files. When creating a file an additional prompt will come up. This will ask if you would like to set a password. If left blank a password will not be set and the file will function normally. If a password is set, when viewing, cloning, renaming, or deleting a file, the password prompt will again come up asking for the previously set password. When cloned, the cloned file retains the password.

[BurgerLUA]

There are a places where you could be using else statements, and a lot of the checks are wrong in the first place. NOT EQUAL statements are x != y not !x == y.

!x == y checks in the inverse of x is equal to y.

Other than that, this is a fine addition.

[BurgerLUA]

This can be an else statement.

[BurgerLUA]

This can be an else statement.

[BurgerLUA]

This can be an else statement.

[BurgerLUA]

This can be an else statement, and I think it's written wrong in the first place.
NOT EQUALS statements are x != y not `!x == y', I think I'm seeing this a lot in this PR so you might want to look at that.

[BurgerLUA]

This can be an else statement.

[BurgerLUA]

Else statement.

[Karolis2011]

Just horrid. But improving.

[Karolis2011]

Unnecessary file

[Karolis2011]

if (...)
    onething()
else
    otherthing()

exists

[avabee]

Depending on what if(currentpass) is, a ternary may be more appropriate.

[Karolis2011]

Unsafe access of file.
This whole password check should be put inside ui_interact() around line 225

[dapocalypse]

Do I make a proc to check for the password? Also I dont understand what you mean by unsafe acess of file.

[skull132]

You should make password protection validation a proc, yes. This method of doing:

		if (!currentpass)
			// do one thing
		else
			// check password and do the other

is bad. Very bad. A file should have a proc proc/can_access_file(mob/user, prompt_for_password = FALSE, input_password = "")

Rough contents would look like this:

/datum/computer_file/proc/can_access_file(mob/user, prompt_for_password = FALSE, input_password = "")
	if (!password)
		return TRUE

	if (prompt_for_password)
		if (!ismob(user))
			return FALSE

		input_password = sanitize(input(user, "Please enter a password to access file '[name]':"))

	return password == input_password

This allows for 100x cleaner functionality:

		if (!file.can_access_file(usr, TRUE))
			return 1

		open_file = href_list["PRG_openfile"]

[Karolis2011]

DO NOT EDIT example.yml

[Arrow768]

It´s now a different file

[Karolis2011]

should do if (newpassword)

[Karolis2011]

deleting shouldn't require password

[dapocalypse]

I disagree, bald greytide names steve breaks into the captains office and logs onto his computer, baldie mcsteve finds file names "realy important information i need to remember and cannot be deleted" baldie mcsteve deleted the file and runs to his greytide layer. The captain returns and finds his file has been deleted.

[BurgerLUA]

Password protected files IRL ask for a password every time you so much as breathe on it. It requires a password when you move the file or delete the file. It makes sense that password protected files ask for a password every time you modify it.

[skull132]

It would depend on what the actual underlying mentality of the password protection is. There's two ways to handle password protection:

• OS level. This is what you're referring to, in that the OS enforces password protection to even breathe on the file.
• Encrypted file. This just means that the contents of the file are encrypted and require a key to decrypt. You can move/copy/delete the file without issues, tho. Because it's just a random text file with garbled contents.

I don't really have a preference, @Arrow768 might have one.

[dapocalypse]

I am thinking of revealing encrypted ciphertext during an emag then having the player decrypt the file.

[Arrow768]

Regarding password required for deletion:
Most operating systems do not care weather a file is encrypted or not. The actual encryption / decryption is handled by a application interacting with the file.
The operating system only uses RBAC or something simmilar, but there are no special checks if a file is encrypted or not.

I believe the second option is our way to go in that case:
Viewing / editing requires a key (saved with the file datum)
but moving / copying / deleting does not.
This leaves room to add file owners and permissions later on.

[Arrow768]

Regarding Baldie McSteve.
Physical Security is a important aspect.
If you allow someone else physical access to a computer system, then they can do almost anything with it.
Therefore I would allow other people to tamper with it, if they can get access.
It should be the responsibility of the player to restrict the access to the computer system accordingly or keep backups

[Karolis2011]

If you opened file, you already know password, so closing it shouldn't ask password too.

[dapocalypse]

This is for cloning the file, not closing it.

[Karolis2011]

Renaming shouldn't need password

[dapocalypse]

Baldie McSteve will strike again.

[Karolis2011]

Same thing about deleting

[dapocalypse]

Removed the thing about deleting files in flash drive as you cant find them or make them i dont think.

[skull132]

It would depend on what the actual underlying mentality of the password protection is. There's two ways to handle password protection:

• OS level. This is what you're referring to, in that the OS enforces password protection to even breathe on the file.
• Encrypted file. This just means that the contents of the file are encrypted and require a key to decrypt. You can move/copy/delete the file without issues, tho. Because it's just a random text file with garbled contents.

I don't really have a preference, @Arrow768 might have one.

[skull132]

This change seems weird. Can you explain the difference between portable_drive and hard_drive? It could lead to odd things.

[dapocalypse]

This was unintended,

[skull132]

We don't know if the file exists. Move this below line 76.

[skull132]

You're accessing F.password without checking if F actually exists. Line 97 checks if F exists and exits if it doesn't. So this has to be below it.

[skull132]

Below line 117.

[skull132]

Erm. Line 207 already exists. Delete this and line 204.

[skull132]

Move this below line 208.

[skull132]

You should make password protection validation a proc, yes. This method of doing:

		if (!currentpass)
			// do one thing
		else
			// check password and do the other

is bad. Very bad. A file should have a proc proc/can_access_file(mob/user, prompt_for_password = FALSE, input_password = "")

Rough contents would look like this:

/datum/computer_file/proc/can_access_file(mob/user, prompt_for_password = FALSE, input_password = "")
	if (!password)
		return TRUE

	if (prompt_for_password)
		if (!ismob(user))
			return FALSE

		input_password = sanitize(input(user, "Please enter a password to access file '[name]':"))

	return password == input_password

This allows for 100x cleaner functionality:

		if (!file.can_access_file(usr, TRUE))
			return 1

		open_file = href_list["PRG_openfile"]

[dapocalypse]

The thing stalled, my push is fine, can somone get it to test it again

[skull132]

This needs to be after line 27. We don't know if F exists yet.

[skull132]

The var iscorrect is unnecessary. Just call the proc in an if: if (F.can_access_file(passcheck))

[skull132]

What and why is this variable.

[skull132]

again, this change needs to be explained.

[dapocalypse]

This was reverted from the previos push

[skull132]

This proc is in the wrong file. Look for a file which has the computer_file definition.

Also, you're missing the argument mob/user. You need it.

[skull132]

Usage of usr outside of Topic and a few other procs is forbidden. It is unsafe and makes procs unusable. This is why you need the argument of mob/user.

[dapocalypse]

can admins please run check again for travis, byond is fucking up not me

[dapocalypse]

alright, papi skull, do you appreove

[Arrow768]

spelling mistake in the proc.
It should be access

[Arrow768]

I do not like that you are promoted for a password when you create the file and there is no way to change / decrypt the file.

There should be options to encrypt / decrypt the file manually.
-> This would also allow you to change the encryption key
-> And we can get rid of the password prompt when a file is created.

[Arrow768]

shouldnt that be ?
var/datum/computer_file/F = HDD.find_file_by_name(href_list["PRG_encrypt"])
-> Same for the decrypt option below

[skull132]

Removing the two checks here is bad. First, we don't know if the name is empty; second, the file might get deleted while the proc sleeps. Put them back.

[skull132]

Need to check if HDD exists after this, and return if not. See line 135 or 146.

[Karolis2011]

Skull's comment is now invalid, check is present

[skull132]

Need to check if HDD exists after this.

[Karolis2011]

Skull's comment is now invalid, check is present

[dapocalypse]

admins admins hear my cry please reset travis

[Karolis2011]

Mostly way way better than initial implementation. If not that proc, I would have approved it.

[Karolis2011]

This line shouldn't have been changed

[Karolis2011]

Skull's comment is now invalid, check is present

[Karolis2011]

Skull's comment is now invalid, check is present

[Karolis2011]

This Proc should have been in code/modules/modular_computers/file_system/computer_file.dm

[Karolis2011]

What is the point of proc param input_password if it's being reset by user's input anyway?
I recommend putting this line inside if(!input_password)

[MarinaGryphon]

I think file '[filename]' is a bit redundant. What are you going to be accessing that isn't a file?

[Arrow768]

Imho its fine.

"Please enter a password to access"
Is what would be left and thats worse.

Maybe remove just the "file"
So its only:

Please enter a password to file '[filename]':

[MarinaGryphon]

You're misunderstanding what I'm suggesting. Just removing the word 'file' is fine, so that it's Please enter a password to access 'foo':, or similar.

[Arrow768]

Looks fine. Please make sure its tested and works ingame

[Karolis2011]

Do as I suggest and you will:

1. Reduce great wall of buttons
2. Fix issue that you can't decrypt files

Also you can encrypt programs, but there is no check while opening program if program is encrypted. Add check or make them unencryptable.

[Karolis2011]

{{if !value.encrypted}}
  {{:helper.link('ENCRYPT', null, { "PRG_encrypt" : value.name }, (value.undeletable) ? 'disabled' : null)}}
{{else}}
  {{:helper.link('DECRYPT', null, { "PRG_decrypt" : value.name }, (value.undeletable) ? 'disabled' : null)}}
{{/if}}

[Karolis2011]

Why remove copying to USB drive? Please return this button.

[skull132]

The {{/if}} tag needs to be here as well.

[dapocalypse]

I'd like to thank Armok, you are best, I'd like to thank my boi eddy snowman for keeping me safe, You all are amazing, god bless ancapistan.
PS: Also thanos for gifting me his amazing thanos car.