git-credential-oauth

command module
v0.1.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Oct 17, 2022 License: MIT Imports: 17 Imported by: 0

README ¶

git-credential-oauth

Go Reference

No more passwords! No more personal access tokens! No more SSH keys!

A Git credential helper that securely authenticates to GitHub, GitLab and other forges using OAuth.

The first time you push, the helper will open a browser window to authenticate. Subsequent pushes within the cache timeout require no interaction.

Motivation

Two-factor authentication changed how users authenticate to websites, but Git still assumes users can type a password from memory. Personal access tokens are easy enough to copy and paste but awkward to store securely. While git-credential-cache works well for passwords, the impossible-to-memorise token is lost when the cache expires, so user has to generate a new token daily. All in all, the usability is so poor that the most popular advice on StackOverflow is to insecurely save credentials in plaintext.

Philosophy

  • Do one thing well, namely OAuth authentication.
  • Interoperate with other git credential helpers. Defer storage to the user's choice.
  • Contribute upstream to improve the ecosystem.

Installation and configuration

Download from https://github.com/hickford/git-credential-oauth/releases

Alternatively, Go users can install to ~/go/bin with:

go install github.com/hickford/git-credential-oauth@latest

Test the binary:

./git-credential-oauth

Then edit your ~/.gitconfig to include the following lines, adjusting the path to wherever you saved the binary:

[credential]
	helper = 
	helper = cache --timeout 7200	# two hours
	helper = /home/YOURUSERNAMEHERE/go/bin/git-credential-oauth

NB. The path must be an absolute path.

Uninstallation

Edit ~/.gitconfig manually, or:

git config --global --unset-all credential.helper git-credential-oauth

Comparison with Git Credential Manager

Git Credential Manager has broader functionality including its own implementations of platform-specific storage. However because it's developed in .NET, GCM is harder to build and install on Linux. In particular, GCM is awkward for Linux distributions to package.

Git Credential Manager git-credential-oauth
Cross platform ✓ ✓
Linux arm64 support 🗙 ✓
Installation size 150 MB 7 MB
GUI ✓ 🗙
Storage Implements storage Interoperates with other helpers
Development .NET Go
Packaged in Linux distributions Challenging to package Ready to package?

Disclaimer: I also contribute to GCM.

Development

Install locally with go install ..

Debugging

Use the -verbose flag.

	helper = /home/YOURUSERNAMEHERE/go/bin/git-credential-oauth -verbose

To see which helpers Git calls, set export GIT_TRACE=1.

Documentation ¶

The Go Gopher

There is no documentation for this package.

Source Files ¶

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.