## Download and verify a Manjaro ISO.

When I wrote the https://forum.manjaro.org/t/root-tip-how-to-forum-mini-guide-to-verify-iso-signature/146680 I vaguely recalled a shell script in the repo **manjaro-iso-downloader** but it doesn't work - at least not for me.

So I decided to wrap up some python code.

The tool provides a convenient way of downloading and verifying an ISO as they are listed on https://manjaro.org/download.

Neither Sway nor ARM is supported, sway because the files is located elsewhere and ARM because there is no signature.

## Setup
Besides the basic Python modules - the script relies on the Python requests module.

On Manjaro you don't need to install it - it is present as a dependency of pacman-mirrors.

Create the folder **~/.local/bin**

    mkdir -p ~/.local/bin

Then create a new file in this bin folder - name the file **get-iso** - then use your favorite text editor to copy paste below code into the new file.

Make the file executable

    chmod +x ~/.local/bin/get-iso

## Usage

     $ get-iso -h
    usage: get-iso [-h] [-f] {plasma,xfce,gnome,budgie,cinnamon,i3,mate}
    
    This tool will download a named Manjaro ISO and verify the signature
    
    positional arguments:
      {plasma,xfce,gnome,budgie,cinnamon,i3,mate}
                            edition e.g. plasma or xfce
    
    options:
      -h, --help            show this help message and exit
      -f, --full            Download full ISO
    
    get-iso version 0.1 - License GPL v3 or later

The script defaults to pull the minimal ISO and downloaded files is placed your home folder. 

    get-iso plasma

If you rather take the full iso

    get-iso plasma -f

Example result of running the script

     $ get-iso -f mate
    Downloading: manjaro-mate-22.0-230104-linux61.iso
    Downloading: manjaro-mate-22.0-230104-linux61.iso.sig
    Wait for verification ...
    gpg: assuming signed data in 'manjaro-mate-22.0-230104-linux61.iso'
    gpg: Signature made ons 04 jan 2023 12:48:04 CET
    gpg:                using RSA key 3B794DE6D4320FCE594F4171279E7CF5D8D56EC8
    gpg: Good signature from "Manjaro Build Server <build@manjaro.org>" [unknown]
    gpg: WARNING: This key is not certified with a trusted signature!
    gpg:          There is no indication that the signature belongs to the owner.
    Primary key fingerprint: 3B79 4DE6 D432 0FCE 594F  4171 279E 7CF5 D8D5 6EC8