Accept SECRET_KEY using prompt and standard input.

[sinhaashish]

The ACCESS_KEY , SECRET_KEY is taken as an input . This is done to avoid the credentials shown
in ps aux command.
Adding a new user asks for their credentials.

To test:

1. mc config host add myminio http://192.168.86.149:9000

Enter Access Key : BKIKJAA5BMMU2RHO6IBB
Enter Secret Key : V8f1CwQqAcwo80UEIJEjc5gVQUSSx5ohQ9GSrr12
Added `myminio` successfully.

2. mc admin user add myminio foobar readonly

Enter Access Key : testuser 
Enter Secret Key : testuser123

Fixes #2651

[codecov]

Codecov Report

Merging #2785 into master will decrease coverage by 0.13%.
The diff coverage is 0%.

@@            Coverage Diff             @@
##           master    #2785      +/-   ##
==========================================
- Coverage    10.5%   10.37%   -0.14%     
==========================================
  Files         129      127       -2     
  Lines       12751    12738      -13     
==========================================
- Hits         1339     1321      -18     
- Misses      11245    11258      +13     
+ Partials      167      159       -8

Impacted Files	Coverage Δ
cmd/config-host-add.go	0% <0%> (ø)	⬆️
cmd/admin-user-add.go	0% <0%> (ø)	⬆️
cmd/client-fs.go	27.3% <0%> (-1.72%)	⬇️
cmd/client-url.go	66.66% <0%> (-1.45%)	⬇️
cmd/config.go	33.33% <0%> (-0.52%)	⬇️
cmd/fs-pathutils_nix.go
cmd/client-fs_linux.go

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 6756185...54da186. Read the comment docs.

[vadmeste]

Some comments

[harshavardhana]

Okay so @abperiasamy confirmed two things

• preserve the current syntax when all arguments are provided and no change there
• show a prompt if user doesn't type all the input options, let's say alias is available and rest are not available throw a prompt. Where each prompt takes accessKey, secretKey etc..

So you need to redo this PR to have this behavior.

[sinhaashish]

Okay so @abperiasamy confirmed two things

• preserve the current syntax when all arguments are provided and no change there
• show a prompt if user doesn't type all the input options, let's say alias is available and rest are not available throw a prompt. Where each prompt takes accessKey, secretKey etc..

So you need to redo this PR to have this behavior.

👍

[sinhaashish]

@harshavardhana @vadmeste @poornas modifed the PR. PTAL

[harshavardhana]

One more thing this PR also needs to do is when --json, --quiet or if the tty is not a terminal - it should turn off prompt. This is a script mode or non-interactive.

[sinhaashish]

One more thing this PR also needs to do is when --json, --quiet or if the tty is not a terminal - it should turn off prompt. This is a script mode or non-interactive.

Done with the other changes . Can you elaborate if the tty is not a terminal . This PR prompts for access and secret key only if it is not passed. IMO in script mode access and secret key will be passed so it wont prompt for user input.

[vadmeste]

Some comments

[vadmeste]

I think we don't have to disable history if we are entering access & secret keys in the prompt

[sinhaashish]

removed

[vadmeste]

There is some extra leading spaces here

[sinhaashish]

corrected

[vadmeste]

I believe both of these prompts are not there

[sinhaashish]

Thanks, removed.

[aead]

Missing proper error handling

[aead]

Also according to Terminal.ReadPassword we are supposed to pass the prompt. In any case we should use os.File.Fd() instead of the syscall package.

[aead]

Missing proper error handling

[harshavardhana]

are we going to implement this? @kannappanr @sinhaashish - if there are no plans can we close them out?

[kannappanr]

ping @sinhaashish

[h0tw1r3]

please implement this. it is not uncommon for security policies to require (or force) shell logging.

[sinhaashish]

Closing this for now . Will send another PR for this

[harshavardhana]

@sinhaashish would you take a look at #3083