quote strings (hestiacp#4537)

* quote strings

Previously if a password contained whitespace like `pass word`  or shell-metacharacters like `pass&word` or `pass'word` , it would generate an invalid install command.

The code is basically just https://github.com/hestiacp/phpquoteshellarg ported to javascript.
---------

Co-authored-by: Jaap Marcus <9754650+jaapmarcus@users.noreply.github.com>

Author: divinity76

docs/.vitepress/theme/components/InstallBuilder.test.js

@@ -66,7 +66,7 @@ describe('InstallBuilder', () => {
 		const textInput = screen.getByLabelText(options[1].description);
 		await fireEvent.update(textInput, 'custom-value');
 
-		expect(screen.getByDisplayValue(/bash hst-install.sh --option2 custom-value/)).toBeTruthy();
+		expect(screen.getByDisplayValue(/bash hst-install.sh --option2 'custom-value'/)).toBeTruthy();
 	});
 
 	it('updates the installation command when option select input changes', async () => {

docs/.vitepress/theme/components/InstallBuilder.vue

@@ -107,6 +107,10 @@ const toggleOption = (option) => {
 const installCommand = ref("bash hst-install.sh");
 watchEffect(() => {
 	let cmd = "bash hst-install.sh";
+	let quoteshellarg = function (str) {
+		if (!str) return "''";
+		return "'" + str.replace(/'/g, "'\\''") + "'";
+	};
 	for (const [key, { enabled, value }] of Object.entries(selectedOptions.value)) {
 		const opt = options.find((o) => o.flag === key);
 		if (opt.flag == "force" && enabled) {
@@ -116,7 +120,8 @@ watchEffect(() => {
 				cmd += ` --${key} ${enabled ? "yes" : "no"}`;
 			}
 		} else if (enabled && value !== opt.default) {
-			cmd += ` --${key} ${value}`;
+			let value_quoted = quoteshellarg(value);
+			cmd += ` --${key} ${value_quoted}`;
 		}
 	}
 	installCommand.value = cmd;