TAG_DATE=202503130854

trezor-agent-image:
	docker build -f Dockerfile --progress=plain --build-arg HTTP_PROXY=${HTTP_PROXY} --build-arg HTTPS_PROXY=${HTTPS_PROXY} --build-arg http_proxy=${HTTP_PROXY} --build-arg https_proxy=${HTTPS_PROXY} --tag trezor-agent-image:${TAG_DATE} --tag trezor-agent-image:latest .

trezor-agent-image-debug:
	DOCKER_BUILDKIT=0 docker build --rm=false -t trezor-agent:latest .
	# docker commit abcdef123456 debug_image
	# docker run --rm -it debug_image /bin/bash

trezor-agent-trevor-wikey:
	mkdir -p ./data && \
	mkdir -p ./trezor_identity_a && \
	docker run -it --rm --user $$(id -u):$$(id -g) --privileged -v /dev/bus/usb:/dev/bus/usb -v ./data:/app/data -v ./trezor_identity_a:/app/.gnupg -e INIT_USER="Trevor Wikey" trezor-agent-image

trezor-agent-alice-bob:
	mkdir -p ./data && \
	mkdir -p ./trezor_identity_a && \
	docker run -it --rm --user $$(id -u):$$(id -g) --privileged -v /dev/bus/usb:/dev/bus/usb -v ./data:/app/data -v ./trezor_identity_b:/app/.gnupg -e INIT_USER="Alice Bob" trezor-agent-image

# Then do "trezor-gpg decrypt ..." or "trezor-gpg sign ..." etc.
trezor-agent--trevor-wikey-again:
	docker run -it --rm --user $$(id -u):$$(id -g) --privileged -v /dev/bus/usb:/dev/bus/usb -v ./data:/app/data  -v ./trezor_identity_a:/app/.gnupg trezor-agent-image bash

# date | gpg --encrypt -r "trevor" | gpg --decrypt 2>/dev/null
# echo 123 | gpg --sign | gpg --verify
# echo "test secret" > ./data/test-secret.txt

# bash .gnupg/trezor/run-agent.sh

ssh:
	remote=root@host.example.com && \
	remote_sock=$$( ssh "$$remote" "gpgconf --list-dirs" | sed -n 's/agent-socket://p' ) && \
	echo $$remote_sock && \
	ssh -o StreamLocalBindUnlink=yes -R $$remote_sock:./trezor_identity_a/trezor/S.gpg-agent $$remote

# gpg --decrypt test-secret.txt.gpg > test-secret.1.txt