go-one-password

command module

v0.0.0-...-31bb59f Latest Latest Go to latest Published: Apr 19, 2013 License: MIT Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cmars/go-one-password

Links

Open Source Insights

README ¶

go-one-password

About

This project is inspired by oneshallpass but is written in Go instead of javascript, and runs on the command line as a self-contained, statically compiled binary, instead of a web browser.

The technical implementation is similar, i.e., HMAC-SHA512() hashing a combination of the host, username, generator and indicator numbers, but using scrypt instead of PBKDF2 for generating the shared private key (dk) value from the passphrase.

Building and Installing

This code requires Go's scrypto package before building:

$ go get code.google.com/p/go.crypto/scrypt
$ go build go-one-password.go

Update your $PATH to include the folder where go-one-password was built, and add a shorter alias, if you prefer (e.g., "g1p", assuming that doesn't conflict with anything on your system).

Usage

The core idea is that by remembering just one quality passphrase (known only by you), you can generate unique and secure passwords for multiple website logins.

There are many different ways of selecting a quality passphrase, but if you cannot come up with one on your own, there are several free sites which can pick one for you.

Once you settle on a passphrase, just make sure you commit it to memory; it's not stored anywhere by this code, and if lost or forgotten, is unrecoverable.

If you forget how to use go-one-password type it (or whatever alias you've used for it) in a shell prompt followed by "-help":

$ g1p -help
Usage of g1p:
  -host="": (required) the website you want to login to (e.g. "amazon.com")
  -spec="": (optional) if the website requires one or more "special" characters in the password (e.g., "#%*" etc.) specify one or more of them here
  -user="": (required) the username or email address you use to login

Usage Examples

Here's how to use it in practice (the passphrase is asked in an interactive prompt, instead of from a command line argument, because we don't want to save the passphrase in your shell history by accident):

$ g1p -host example.org -user me@example.com
What's your passphrase? (or ctrl-c to quit) close introduced when lunch
Your password for example.org logging in as user me@example.com is:

o95gZHxeh7D9LYnp

This is another example, for when the site requires one or more "special" characters:

$ g1p -host example.org -user me@example.com -spec="#%"
What's your passphrase? (or ctrl-c to quit) close introduced when lunch
Your password for example.org logging in as user me@example.com is:

o95gZHxe#%h7D9LYnp

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

go-one-password.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL