[PATCH consfigurator 3/3] introduce the pass data store.

[David Bremner]

Sean Whitton <spwhitton at spwhitton.name> writes:

> I'm wary of letting HOST not be a hostname.  It breaks with the
> documented convention, and might clash with possible extensions of this
> data source.  How about for extensibility safety, we validate that HOST
> is an actual hostname and otherwise return nil?

My reasoning was that people (i.e. me) already have pass(1) stores, and
I expect most of them to be somewhat hierarchical (based on e.g. the
pass docs).  If we don't allow things like "--user-passwd-irc/freenode"
then we're basically telling people they have to reorganize them.

One option is to not insist on the prefix, and only insist on
hostname looking HOST values (via regex?) for appropriately prefixed
IDEN1. That will require a bit more complex code initially, and be a bit
trickier for me to test (since I'm not currently using the sudo
machinery), but it would be doable.