src/sudo.rs

use std::ffi::OsStr;
use std::path::Path;
use std::path::PathBuf;

use color_eyre::eyre::Context;
use color_eyre::eyre::Result;
use serde::Deserialize;
use strum::Display;

use crate::command::CommandExt;
use crate::error::UnsupportedSudo;
use crate::execution_context::ExecutionContext;
use crate::executor::Executor;
use crate::terminal::print_separator;
use crate::utils::which;

#[derive(Clone, Debug)]
pub struct Sudo {
    /// The path to the `sudo` binary.
    path: PathBuf,
    /// The type of program being used as `sudo`.
    kind: SudoKind,
}

#[derive(Clone, Debug, Default)]
/// Generic sudo options, translated into flags to pass to `sudo`. Depending on the sudo kind, OS
/// and system config, some options might be specified by default or unsupported.
pub struct SudoExecuteOpts<'a> {
    /// Run the command "interactively", i.e. inside a login shell.
    pub interactive: bool,
    /// Preserve environment variables across the sudo call. If an empty list is given, preserves
    /// all existing environment variables.
    pub preserve_env: Option<&'a [&'a str]>,
    /// Set the HOME environment variable to the target user's home directory.
    pub set_home: bool,
    /// Run the command as a user other than the root user.
    pub user: Option<&'a str>,
}

#[cfg(not(target_os = "windows"))]
const DETECT_ORDER: [SudoKind; 5] = [
    SudoKind::Doas,
    SudoKind::Sudo,
    SudoKind::Pkexec,
    SudoKind::Run0,
    SudoKind::Please,
];

#[cfg(target_os = "windows")]
const DETECT_ORDER: [SudoKind; 2] = [SudoKind::Gsudo, SudoKind::Sudo];

impl Sudo {
    /// Get the `sudo` binary for this platform.
    pub fn detect() -> Option<Self> {
        for kind in DETECT_ORDER {
            if let Some(path) = kind.which() {
                return Some(Self { path, kind });
            }
        }
        None
    }

    /// Create Sudo from SudoKind, if found in the system
    pub fn new(kind: SudoKind) -> Option<Self> {
        kind.which().map(|path| Self { path, kind })
    }

    /// Gets the path to the `sudo` binary. Do not use this to execute `sudo` directly - either use
    /// [`Sudo::elevate`], or if you need to specify arguments to `sudo`, use [`Sudo::elevate_opts`].
    /// This way, sudo options can be specified generically and the actual arguments customized
    /// depending on the sudo kind.
    #[allow(unused)]
    pub fn path(&self) -> &Path {
        self.path.as_ref()
    }

    /// Elevate permissions with `sudo`.
    ///
    /// This helps prevent blocking `sudo` prompts from stopping the run in the middle of a
    /// step.
    ///
    /// See: https://github.com/topgrade-rs/topgrade/issues/205
    pub fn elevate(&self, ctx: &ExecutionContext) -> Result<()> {
        print_separator("Sudo");
        let mut cmd = ctx.execute(&self.path);
        match self.kind {
            SudoKind::Doas => {
                // `doas` doesn't have anything like `sudo -v` to cache credentials,
                // so we just execute a dummy `echo` command so we have something
                // unobtrusive to run.
                // See: https://man.openbsd.org/doas
                cmd.arg("echo");
            }
            SudoKind::Sudo if cfg!(not(target_os = "windows")) => {
                // From `man sudo` on macOS:
                //   -v, --validate
                //   Update the user's cached credentials, authenticating the user
                //   if necessary.  For the sudoers plugin, this extends the sudo
                //   timeout for another 5 minutes by default, but does not run a
                //   command.  Not all security policies support cached credentials.
                cmd.arg("-v");
            }
            SudoKind::Sudo => {
                // Windows `sudo` doesn't cache credentials, so we just execute a
                // dummy command - the easiest on Windows is `rem` in cmd.
                // See: https://learn.microsoft.com/en-us/windows/advanced-settings/sudo/
                cmd.args(["cmd.exe", "/c", "rem"]);
            }
            SudoKind::Gsudo => {
                // `gsudo` doesn't have anything like `sudo -v` to cache credentials,
                // so we just execute a dummy command - the easiest on Windows is
                // `rem` in cmd. `-d` tells it to run the command directly, without
                // going through a shell (which could be powershell) first.
                // See: https://gerardog.github.io/gsudo/docs/usage
                cmd.args(["-d", "cmd.exe", "/c", "rem"]);
            }
            SudoKind::Pkexec => {
                // I don't think this does anything; `pkexec` usually asks for
                // authentication every time, although it can be configured
                // differently.
                //
                // See the note for `doas` above.
                //
                // See: https://linux.die.net/man/1/pkexec
                cmd.arg("echo");
            }
            SudoKind::Run0 => {
                // `run0` uses polkit for authentication
                // and thus has the same issues as `pkexec`.
                //
                // See: https://www.freedesktop.org/software/systemd/man/devel/run0.html
                cmd.arg("echo");
            }
            SudoKind::Please => {
                // From `man please`
                //   -w, --warm
                //   Warm the access token and exit.
                cmd.arg("-w");
            }
        }
        cmd.status_checked().wrap_err("Failed to elevate permissions")
    }

    /// Execute a command with `sudo`.
    pub fn execute<S: AsRef<OsStr>>(&self, ctx: &ExecutionContext, command: S) -> Result<Executor> {
        self.execute_opts(ctx, command, SudoExecuteOpts::default())
    }

    /// Execute a command with `sudo`, with custom options.
    pub fn execute_opts<S: AsRef<OsStr>>(
        &self,
        ctx: &ExecutionContext,
        command: S,
        opts: SudoExecuteOpts,
    ) -> Result<Executor> {
        let mut cmd = ctx.execute(&self.path);

        if opts.interactive {
            match self.kind {
                SudoKind::Sudo if cfg!(not(target_os = "windows")) => {
                    cmd.arg("-i");
                }
                SudoKind::Gsudo => {
                    // By default, gsudo runs all commands inside a shell, so it's effectively
                    // always "interactive". If interactive is *not* specified, we add `-d`
                    // to run outside of a shell - see below.
                }
                SudoKind::Doas | SudoKind::Sudo | SudoKind::Pkexec | SudoKind::Run0 | SudoKind::Please => {
                    return Err(UnsupportedSudo {
                        sudo_kind: self.kind,
                        option: "interactive",
                    }
                    .into());
                }
            }
        } else if let SudoKind::Gsudo = self.kind {
            // The `-d` (direct) flag disables shell detection, running the command directly
            // rather than through the current shell, making it "non-interactive".
            // Additionally, if the current shell is pwsh >= 7.3.0, then not including this
            // gives errors if the command to run has spaces in it: see
            // https://github.com/gerardog/gsudo/issues/297
            cmd.arg("-d");
        }

        if let Some(preserve_env) = opts.preserve_env {
            if preserve_env.is_empty() {
                match self.kind {
                    SudoKind::Sudo => {
                        cmd.arg("-E");
                    }
                    SudoKind::Gsudo => {
                        cmd.arg("--copyEV");
                    }
                    SudoKind::Doas | SudoKind::Pkexec | SudoKind::Run0 | SudoKind::Please => {
                        return Err(UnsupportedSudo {
                            sudo_kind: self.kind,
                            option: "preserve_env",
                        }
                        .into());
                    }
                }
            } else {
                match self.kind {
                    SudoKind::Sudo if cfg!(not(target_os = "windows")) => {
                        cmd.arg(format!("--preserve_env={}", preserve_env.join(",")));
                    }
                    SudoKind::Run0 => {
                        for env in preserve_env {
                            cmd.arg(format!("--setenv={}", env));
                        }
                    }
                    SudoKind::Please => {
                        cmd.arg("-a");
                        cmd.arg(preserve_env.join(","));
                    }
                    SudoKind::Doas | SudoKind::Sudo | SudoKind::Gsudo | SudoKind::Pkexec => {
                        return Err(UnsupportedSudo {
                            sudo_kind: self.kind,
                            option: "preserve_env list",
                        }
                        .into());
                    }
                }
            }
        }

        if opts.set_home {
            match self.kind {
                SudoKind::Sudo if cfg!(not(target_os = "windows")) => {
                    cmd.arg("-H");
                }
                SudoKind::Doas
                | SudoKind::Sudo
                | SudoKind::Gsudo
                | SudoKind::Pkexec
                | SudoKind::Run0
                | SudoKind::Please => {
                    return Err(UnsupportedSudo {
                        sudo_kind: self.kind,
                        option: "set_home",
                    }
                    .into());
                }
            }
        }

        if let Some(user) = opts.user {
            match self.kind {
                SudoKind::Sudo if cfg!(not(target_os = "windows")) => {
                    cmd.args(["-u", user]);
                }
                SudoKind::Doas | SudoKind::Gsudo | SudoKind::Run0 | SudoKind::Please => {
                    cmd.args(["-u", user]);
                }
                SudoKind::Pkexec => {
                    cmd.args(["--user", user]);
                }
                SudoKind::Sudo => {
                    // Windows sudo is the only one that doesn't have a `-u` flag
                    return Err(UnsupportedSudo {
                        sudo_kind: self.kind,
                        option: "user",
                    }
                    .into());
                }
            }
        }

        cmd.arg(command);

        Ok(cmd)
    }
}

#[derive(Clone, Copy, Debug, Display, Deserialize)]
#[serde(rename_all = "lowercase")]
#[strum(serialize_all = "lowercase")]
pub enum SudoKind {
    Doas,
    Sudo,
    Gsudo,
    Pkexec,
    Run0,
    Please,
}

impl SudoKind {
    fn binary_name(self) -> &'static str {
        match self {
            SudoKind::Doas => "doas",
            SudoKind::Sudo if cfg!(not(target_os = "windows")) => "sudo",
            // on windows, hardcode the sudo path to ensure we find Windows Sudo
            // rather than gsudo masquerading as sudo
            SudoKind::Sudo => r"C:\Windows\System32\sudo.exe",
            SudoKind::Gsudo => "gsudo",
            SudoKind::Pkexec => "pkexec",
            SudoKind::Run0 => "run0",
            SudoKind::Please => "please",
        }
    }

    fn which(self) -> Option<PathBuf> {
        which(self.binary_name())
    }
}
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`use std::ffi::OsStr;`
refactor: route sudo usage through Sudo::execute* 2025-06-25 15:59:02 +02:00			`use std::path::Path;`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`use std::path::PathBuf;`

			`use color_eyre::eyre::Context;`
			`use color_eyre::eyre::Result;`
Add sudo_command option (#379) This allows the user to specify the preferred sudo command to be used instead of the command chosen by Sudo::detect 2023-03-13 19:23:37 +00:00			`use serde::Deserialize;`
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`use strum::Display;`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00
			`use crate::command::CommandExt;`
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`use crate::error::UnsupportedSudo;`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`use crate::execution_context::ExecutionContext;`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`use crate::executor::Executor;`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`use crate::terminal::print_separator;`
			`use crate::utils::which;`

Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`#[derive(Clone, Debug)]`
			`pub struct Sudo {`
			/// The path to the `sudo` binary.
			`path: PathBuf,`
			/// The type of program being used as `sudo`.
			`kind: SudoKind,`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`}`

fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`#[derive(Clone, Debug, Default)]`
			/// Generic sudo options, translated into flags to pass to `sudo`. Depending on the sudo kind, OS
			`/// and system config, some options might be specified by default or unsupported.`
			`pub struct SudoExecuteOpts<'a> {`
			`/// Run the command "interactively", i.e. inside a login shell.`
			`pub interactive: bool,`
			`/// Preserve environment variables across the sudo call. If an empty list is given, preserves`
			`/// all existing environment variables.`
			`pub preserve_env: Option<&'a [&'a str]>,`
			`/// Set the HOME environment variable to the target user's home directory.`
			`pub set_home: bool,`
			`/// Run the command as a user other than the root user.`
			`pub user: Option<&'a str>,`
			`}`

fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00			`#[cfg(not(target_os = "windows"))]`
			`const DETECT_ORDER: [SudoKind; 5] = [`
			`SudoKind::Doas,`
			`SudoKind::Sudo,`
			`SudoKind::Pkexec,`
			`SudoKind::Run0,`
			`SudoKind::Please,`
			`];`

			`#[cfg(target_os = "windows")]`
			`const DETECT_ORDER: [SudoKind; 2] = [SudoKind::Gsudo, SudoKind::Sudo];`
fix(sudo): fix sudo detection & pre-sudo for GSudo (#1058) 2025-03-06 01:51:40 +01:00
fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00			`impl Sudo {`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			/// Get the `sudo` binary for this platform.
			`pub fn detect() -> Option<Self> {`
fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00			`for kind in DETECT_ORDER {`
			`if let Some(path) = kind.which() {`
			`return Some(Self { path, kind });`
			`}`
			`}`
			`None`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`

Add sudo_command option (#379) This allows the user to specify the preferred sudo command to be used instead of the command chosen by Sudo::detect 2023-03-13 19:23:37 +00:00			`/// Create Sudo from SudoKind, if found in the system`
			`pub fn new(kind: SudoKind) -> Option<Self> {`
fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00			`kind.which().map(\|path\| Self { path, kind })`
Add sudo_command option (#379) This allows the user to specify the preferred sudo command to be used instead of the command chosen by Sudo::detect 2023-03-13 19:23:37 +00:00			`}`

refactor: route sudo usage through Sudo::execute* 2025-06-25 15:59:02 +02:00			/// Gets the path to the `sudo` binary. Do not use this to execute `sudo` directly - either use
			/// [`Sudo::elevate`], or if you need to specify arguments to `sudo`, use [`Sudo::elevate_opts`].
			`/// This way, sudo options can be specified generically and the actual arguments customized`
			`/// depending on the sudo kind.`
			`#[allow(unused)]`
			`pub fn path(&self) -> &Path {`
			`self.path.as_ref()`
			`}`

Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			/// Elevate permissions with `sudo`.
			`///`
			/// This helps prevent blocking `sudo` prompts from stopping the run in the middle of a
			`/// step.`
			`///`
			`/// See: https://github.com/topgrade-rs/topgrade/issues/205`
			`pub fn elevate(&self, ctx: &ExecutionContext) -> Result<()> {`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`print_separator("Sudo");`
refactor: move RunType::execute to ExecutionContext 2025-06-24 15:20:29 +02:00			`let mut cmd = ctx.execute(&self.path);`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`match self.kind {`
			`SudoKind::Doas => {`
			// `doas` doesn't have anything like `sudo -v` to cache credentials,
			// so we just execute a dummy `echo` command so we have something
			`// unobtrusive to run.`
			`// See: https://man.openbsd.org/doas`
			`cmd.arg("echo");`
			`}`
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => {`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			// From `man sudo` on macOS:
			`// -v, --validate`
			`// Update the user's cached credentials, authenticating the user`
			`// if necessary. For the sudoers plugin, this extends the sudo`
			`// timeout for another 5 minutes by default, but does not run a`
			`// command. Not all security policies support cached credentials.`
			`cmd.arg("-v");`
			`}`
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`SudoKind::Sudo => {`
			// Windows `sudo` doesn't cache credentials, so we just execute a
			// dummy command - the easiest on Windows is `rem` in cmd.
			`// See: https://learn.microsoft.com/en-us/windows/advanced-settings/sudo/`
			`cmd.args(["cmd.exe", "/c", "rem"]);`
			`}`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`SudoKind::Gsudo => {`
fix(sudo): fix sudo detection & pre-sudo for GSudo (#1058) 2025-03-06 01:51:40 +01:00			// `gsudo` doesn't have anything like `sudo -v` to cache credentials,
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`// so we just execute a dummy command - the easiest on Windows is`
			// `rem` in cmd. `-d` tells it to run the command directly, without
			`// going through a shell (which could be powershell) first.`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`// See: https://gerardog.github.io/gsudo/docs/usage`
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`cmd.args(["-d", "cmd.exe", "/c", "rem"]);`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`
			`SudoKind::Pkexec => {`
			// I don't think this does anything; `pkexec` usually asks for
			`// authentication every time, although it can be configured`
			`// differently.`
			`//`
			// See the note for `doas` above.
			`//`
			`// See: https://linux.die.net/man/1/pkexec`
			`cmd.arg("echo");`
			`}`
feat(sudo): add run0 as a sudo variant (#1067) 2025-03-12 02:07:37 +01:00			`SudoKind::Run0 => {`
			// `run0` uses polkit for authentication
			// and thus has the same issues as `pkexec`.
			`//`
			`// See: https://www.freedesktop.org/software/systemd/man/devel/run0.html`
			`cmd.arg("echo");`
			`}`
refactor: deprioritize please-sudo (#541) refactor: deprioritze please-sudo 2023-08-22 09:14:29 +08:00			`SudoKind::Please => {`
			// From `man please`
			`// -w, --warm`
			`// Warm the access token and exit.`
			`cmd.arg("-w");`
			`}`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`
			`cmd.status_checked().wrap_err("Failed to elevate permissions")`
			`}`

			/// Execute a command with `sudo`.
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`pub fn execute<S: AsRef<OsStr>>(&self, ctx: &ExecutionContext, command: S) -> Result<Executor> {`
			`self.execute_opts(ctx, command, SudoExecuteOpts::default())`
			`}`

			/// Execute a command with `sudo`, with custom options.
			`pub fn execute_opts<S: AsRef<OsStr>>(`
			`&self,`
			`ctx: &ExecutionContext,`
			`command: S,`
			`opts: SudoExecuteOpts,`
			`) -> Result<Executor> {`
refactor: move RunType::execute to ExecutionContext 2025-06-24 15:20:29 +02:00			`let mut cmd = ctx.execute(&self.path);`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00
fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`if opts.interactive {`
			`match self.kind {`
			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => {`
			`cmd.arg("-i");`
			`}`
			`SudoKind::Gsudo => {`
			`// By default, gsudo runs all commands inside a shell, so it's effectively`
			// always "interactive". If interactive is not specified, we add `-d`
			`// to run outside of a shell - see below.`
			`}`
			`SudoKind::Doas \| SudoKind::Sudo \| SudoKind::Pkexec \| SudoKind::Run0 \| SudoKind::Please => {`
			`return Err(UnsupportedSudo {`
			`sudo_kind: self.kind,`
			`option: "interactive",`
			`}`
			`.into());`
			`}`
			`}`
			`} else if let SudoKind::Gsudo = self.kind {`
			// The `-d` (direct) flag disables shell detection, running the command directly
			`// rather than through the current shell, making it "non-interactive".`
			`// Additionally, if the current shell is pwsh >= 7.3.0, then not including this`
			`// gives errors if the command to run has spaces in it: see`
			`// https://github.com/gerardog/gsudo/issues/297`
			`cmd.arg("-d");`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`

fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`if let Some(preserve_env) = opts.preserve_env {`
			`if preserve_env.is_empty() {`
			`match self.kind {`
			`SudoKind::Sudo => {`
			`cmd.arg("-E");`
			`}`
			`SudoKind::Gsudo => {`
			`cmd.arg("--copyEV");`
			`}`
			`SudoKind::Doas \| SudoKind::Pkexec \| SudoKind::Run0 \| SudoKind::Please => {`
			`return Err(UnsupportedSudo {`
			`sudo_kind: self.kind,`
			`option: "preserve_env",`
			`}`
			`.into());`
			`}`
			`}`
			`} else {`
			`match self.kind {`
			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => {`
			`cmd.arg(format!("--preserve_env={}", preserve_env.join(",")));`
			`}`
			`SudoKind::Run0 => {`
			`for env in preserve_env {`
			`cmd.arg(format!("--setenv={}", env));`
			`}`
			`}`
			`SudoKind::Please => {`
			`cmd.arg("-a");`
			`cmd.arg(preserve_env.join(","));`
			`}`
			`SudoKind::Doas \| SudoKind::Sudo \| SudoKind::Gsudo \| SudoKind::Pkexec => {`
			`return Err(UnsupportedSudo {`
			`sudo_kind: self.kind,`
			`option: "preserve_env list",`
			`}`
			`.into());`
			`}`
			`}`
			`}`
			`}`

			`if opts.set_home {`
			`match self.kind {`
			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => {`
			`cmd.arg("-H");`
			`}`
			`SudoKind::Doas`
			`\| SudoKind::Sudo`
			`\| SudoKind::Gsudo`
			`\| SudoKind::Pkexec`
			`\| SudoKind::Run0`
			`\| SudoKind::Please => {`
			`return Err(UnsupportedSudo {`
			`sudo_kind: self.kind,`
			`option: "set_home",`
			`}`
			`.into());`
			`}`
			`}`
			`}`

			`if let Some(user) = opts.user {`
			`match self.kind {`
			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => {`
			`cmd.args(["-u", user]);`
			`}`
			`SudoKind::Doas \| SudoKind::Gsudo \| SudoKind::Run0 \| SudoKind::Please => {`
			`cmd.args(["-u", user]);`
			`}`
			`SudoKind::Pkexec => {`
			`cmd.args(["--user", user]);`
			`}`
			`SudoKind::Sudo => {`
			// Windows sudo is the only one that doesn't have a `-u` flag
			`return Err(UnsupportedSudo {`
			`sudo_kind: self.kind,`
			`option: "user",`
			`}`
			`.into());`
			`}`
			`}`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`

			`cmd.arg(command);`

fix(sudo): set sudo flags depending on kind 2025-06-25 19:46:49 +02:00			`Ok(cmd)`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00			`}`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`
Add `pre_sudo` option (#219) * Add `pre_sudo` option 2022-11-24 14:15:43 -05:00
fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00			`#[derive(Clone, Copy, Debug, Display, Deserialize)]`
Add sudo_command option (#379) This allows the user to specify the preferred sudo command to be used instead of the command chosen by Sudo::detect 2023-03-13 19:23:37 +00:00			`#[serde(rename_all = "lowercase")]`
			`#[strum(serialize_all = "lowercase")]`
			`pub enum SudoKind {`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`Doas,`
			`Sudo,`
			`Gsudo,`
			`Pkexec,`
feat(sudo): add run0 as a sudo variant (#1067) 2025-03-12 02:07:37 +01:00			`Run0,`
refactor: deprioritize please-sudo (#541) refactor: deprioritze please-sudo 2023-08-22 09:14:29 +08:00			`Please,`
Add `Sudo` type (#221) * Create `Sudo` type and `SudoKind` enum * Fix build * reformat * Fix choco on windows * Fix linux * Fix linux more * more fix stuff hehe hoho hahaha * more fix stuff hehe hoho hahaha Co-authored-by: Thomas Schönauer <37108907+DottoDev@users.noreply.github.com> 2022-11-25 17:19:32 -05:00			`}`
fix(sudo): prevent sudo_command = "sudo" finding gsudo 2025-06-26 22:35:46 +02:00
			`impl SudoKind {`
			`fn binary_name(self) -> &'static str {`
			`match self {`
			`SudoKind::Doas => "doas",`
			`SudoKind::Sudo if cfg!(not(target_os = "windows")) => "sudo",`
			`// on windows, hardcode the sudo path to ensure we find Windows Sudo`
			`// rather than gsudo masquerading as sudo`
			`SudoKind::Sudo => r"C:\Windows\System32\sudo.exe",`
			`SudoKind::Gsudo => "gsudo",`
			`SudoKind::Pkexec => "pkexec",`
			`SudoKind::Run0 => "run0",`
			`SudoKind::Please => "please",`
			`}`
			`}`

			`fn which(self) -> Option<PathBuf> {`
			`which(self.binary_name())`
			`}`
			`}`