securely read strings and array values from a conf file in a bash script
I am writing a script and want to get configuration data from a conf file. Right now I have hard-coded the settings in the script like so:
STRING_VARIABLE="some data"
ARRAY_VARIABLE=('/path/to/some folder' '/path to/another folder' '/yet/another/folder')
Instead of hard coding it, I want to read from a configuration file in /.script.conf.
I know about source /.script.conf or . /.script.conf but those are not very secure since they execute the contents of the file and if someone puts anything nefarious, like rm -rf /, then it would get executed.
If I need to modify how the data is stored I can. For example, if it's easier to break the arrays up in the configuration file like this...
SOME_PREFIX_001="/path/to/some folder"
SOME_PREFIX_TWO="/path to/another folder"
SOME_PREFIX_HOME_DATA="/yet/another/folder"
...and then convert that to an array in my script so I can use it like "${ARRAY_VARIABLE[@]}", I am okay with that.
My first thought is to use regex to extract the variable values using sed but I am not sure how to do that or where to start.
bash variables configuration-files
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
add a comment |
I am writing a script and want to get configuration data from a conf file. Right now I have hard-coded the settings in the script like so:
STRING_VARIABLE="some data"
ARRAY_VARIABLE=('/path/to/some folder' '/path to/another folder' '/yet/another/folder')
Instead of hard coding it, I want to read from a configuration file in /.script.conf.
I know about source /.script.conf or . /.script.conf but those are not very secure since they execute the contents of the file and if someone puts anything nefarious, like rm -rf /, then it would get executed.
If I need to modify how the data is stored I can. For example, if it's easier to break the arrays up in the configuration file like this...
SOME_PREFIX_001="/path/to/some folder"
SOME_PREFIX_TWO="/path to/another folder"
SOME_PREFIX_HOME_DATA="/yet/another/folder"
...and then convert that to an array in my script so I can use it like "${ARRAY_VARIABLE[@]}", I am okay with that.
My first thought is to use regex to extract the variable values using sed but I am not sure how to do that or where to start.
bash variables configuration-files
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
add a comment |
I am writing a script and want to get configuration data from a conf file. Right now I have hard-coded the settings in the script like so:
STRING_VARIABLE="some data"
ARRAY_VARIABLE=('/path/to/some folder' '/path to/another folder' '/yet/another/folder')
Instead of hard coding it, I want to read from a configuration file in /.script.conf.
I know about source /.script.conf or . /.script.conf but those are not very secure since they execute the contents of the file and if someone puts anything nefarious, like rm -rf /, then it would get executed.
If I need to modify how the data is stored I can. For example, if it's easier to break the arrays up in the configuration file like this...
SOME_PREFIX_001="/path/to/some folder"
SOME_PREFIX_TWO="/path to/another folder"
SOME_PREFIX_HOME_DATA="/yet/another/folder"
...and then convert that to an array in my script so I can use it like "${ARRAY_VARIABLE[@]}", I am okay with that.
My first thought is to use regex to extract the variable values using sed but I am not sure how to do that or where to start.
bash variables configuration-files
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
I am writing a script and want to get configuration data from a conf file. Right now I have hard-coded the settings in the script like so:
STRING_VARIABLE="some data"
ARRAY_VARIABLE=('/path/to/some folder' '/path to/another folder' '/yet/another/folder')
Instead of hard coding it, I want to read from a configuration file in /.script.conf.
I know about source /.script.conf or . /.script.conf but those are not very secure since they execute the contents of the file and if someone puts anything nefarious, like rm -rf /, then it would get executed.
If I need to modify how the data is stored I can. For example, if it's easier to break the arrays up in the configuration file like this...
SOME_PREFIX_001="/path/to/some folder"
SOME_PREFIX_TWO="/path to/another folder"
SOME_PREFIX_HOME_DATA="/yet/another/folder"
...and then convert that to an array in my script so I can use it like "${ARRAY_VARIABLE[@]}", I am okay with that.
My first thought is to use regex to extract the variable values using sed but I am not sure how to do that or where to start.
bash variables configuration-files
bash variables configuration-files
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
asked Jan 20 at 14:57
IMTheNachoManIMTheNachoMan
1,168926
1,168926
add a comment |
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ifUsing("editor", function () {
StackExchange.using("externalEditor", function () {
StackExchange.using("snippets", function () {
StackExchange.snippets.init();
});
});
}, "code-snippets");
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "1"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54277693%2fsecurely-read-strings-and-array-values-from-a-conf-file-in-a-bash-script%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fstackoverflow.com%2fquestions%2f54277693%2fsecurely-read-strings-and-array-values-from-a-conf-file-in-a-bash-script%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
