commit d7f5d05798afc4dddd3652e839465a154e7b5e1e · dunkirk.sh/dots

+60
machines/atalanta/home/default.nix
···

       39
       39
        
       

     

       40
       40
        
         programs.zsh.initContent = ''

     

       41
       41
        
           eval "$(/usr/libexec/path_helper)"

     

       42
       42
       +
       

     

       43
       43
       +
           # MITM proxy management functions

     

       44
       44
       +
           MITM_SERVICE="Wi-Fi"  # Change to "Ethernet" if needed

     

       45
       45
       +
           MITM_CERT="$HOME/.mitmproxy/mitmproxy-ca-cert.pem"

     

       46
       46
       +
       

     

       47
       47
       +
           mitmup() {

     

       48
       48
       +
             # Generate mitmproxy CA certificate if it doesn't exist

     

       49
       49
       +
             if [ ! -f "$MITM_CERT" ]; then

     

       50
       50
       +
               echo "Generating mitmproxy CA certificate..."

     

       51
       51
       +
               (timeout 0.1 mitmproxy --set confdir="$HOME/.mitmproxy" 2>/dev/null; true)

     

       52
       52
       +
             fi

     

       53
       53
       +
       

     

       54
       54
       +
             networksetup -setwebproxy "$MITM_SERVICE" localhost 8080 &&

     

       55
       55
       +
             networksetup -setsecurewebproxy "$MITM_SERVICE" localhost 8080 &&

     

       56
       56
       +
             sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain "$MITM_CERT" &&

     

       57
       57
       +
             echo "mitmproxy enabled and cert added"

     

       58
       58
       +
           }

     

       59
       59
       +
       

     

       60
       60
       +
           mitmdown() {

     

       61
       61
       +
             networksetup -setwebproxystate "$MITM_SERVICE" off &&

     

       62
       62
       +
             networksetup -setsecurewebproxystate "$MITM_SERVICE" off &&

     

       63
       63
       +
             sudo security delete-certificate -c mitmproxy /Library/Keychains/System.keychain &&

     

       64
       64
       +
             echo "mitmproxy disabled and cert removed"

     

       65
       65
       +
           }

     

       66
       66
       +
       

     

       67
       67
       +
           mitmstatus() {

     

       68
       68
       +
           GREEN='\033[0;32m'

     

       69
       69
       +
           RED='\033[0;31m'

     

       70
       70
       +
           NC='\033[0m' # No Color

     

       71
       71
       +
       

     

       72
       72
       +
           echo "========== Proxy Status =========="

     

       73
       73
       +
           for proto in webproxy securewebproxy; do

     

       74
       74
       +
           proxy_status=$(networksetup -get''${proto} "$MITM_SERVICE")

     

       75
       75
       +
           enabled=$(echo "$proxy_status" | grep "Enabled: Yes")

     

       76
       76
       +
           PROTO_UPPER=$(echo "$proto" | tr '[:lower:]' '[:upper:]')

     

       77
       77
       +
           if [ -n "$enabled" ]; then

     

       78
       78
       +
           echo -e "''${PROTO_UPPER} : ''${GREEN}ENABLED''${NC}"

     

       79
       79
       +
           else

     

       80
       80
       +
           echo -e "''${PROTO_UPPER} : ''${RED}DISABLED''${NC}"

     

       81
       81
       +
           fi

     

       82
       82
       +
           echo "$proxy_status" | grep -E "Server:|Port:"

     

       83
       83
       +
           done

     

       84
       84
       +
       

     

       85
       85
       +
           echo "========== mitmproxy Certificate =========="

     

       86
       86
       +
           if security find-certificate -c mitmproxy /Library/Keychains/System.keychain > /dev/null 2>&1; then

     

       87
       87
       +
           echo -e "mitmproxy certificate: ''${GREEN}PRESENT''${NC}"

     

       88
       88
       +
           else

     

       89
       89
       +
           echo -e "mitmproxy certificate: ''${RED}NOT PRESENT''${NC}"

     

       90
       90
       +
           fi

     

       91
       91
       +
       

     

       92
       92
       +
             echo "========== mitmproxy Process =========="

     

       93
       93
       +
             if pgrep -f mitmproxy > /dev/null; then

     

       94
       94
       +
               echo -e "mitmproxy process: ''${GREEN}RUNNING''${NC}"

     

       95
       95
       +
             else

     

       96
       96
       +
               echo -e "mitmproxy process: ''${RED}NOT RUNNING''${NC}"

     

       97
       97
       +
             fi

     

       98
       98
       +
             echo "==========================================="

     

       99
       99
       +
           }

     

       100
       100
       +
       

     

       101
       101
       +
           

     

       42
       102
        
         '';

     

       43
       103
        
       

     

       44
       104
        
         # Let Home Manager install and manage itself