yamp 0.0.5

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 12d4147065962bc1538c030e019e60e3d0b7f6b0
+  data.tar.gz: e4d7a5c84938d78bc8b5256d35ce31596b8a331c
+SHA512:
+  metadata.gz: 17ad410c73d0a142e8524b229871ae5411627908fbdd5ddddd044e7ddb877545f336539ffc7b23ffcbadefade141ed28d5c819c4443c88063630cc02657f0912
+  data.tar.gz: bd62ec4f70c9fdfb76f391f6e0de457aa48014b58f63ee14f76e5ef6f9f85475e1ae7038eb7a0898719d85909276f7b0e81ba049c0e3b25979f35fb6eeef694f

data/bin/yamp

@@ -0,0 +1,119 @@
+#!/usr/bin/env ruby
+
+require 'io/console'
+require 'clipboard'
+require 'optparse'
+require 'yamp'
+
+trap "SIGINT" do puts "\nByeBye!"; exit(130) end
+
+class String
+	def red;			"\033[31m#{self}\033[0m" end
+	def green;		"\033[32m#{self}\033[0m" end
+	def yellow;		"\033[33m#{self}\033[0m" end
+end
+
+ARGV << '-h' if ARGV.empty?
+
+vault = nil
+options = {}
+password_chars = [*'0'..'9', *'a'..'z',*'A'..'Z','#','!','?','$','/','(',')','[',']']
+
+OptionParser.new do |opts|
+	opts.banner = %q(
+	Usage: yamp [options]
+
+	Examples:
+		yamp --add facebook --username johndoe@gmail.com --password abc123
+		yamp -a twitter
+		yamp --update twitter -n johndoe
+		yamp --get facebook
+		yamp -g twitter --to-clipboard
+		yamp --delete facebook
+	)
+	opts.on('-a', '--add ENTRY',       'create an entry')         {|id| options[:add] = id}
+	opts.on('-g', '--get ENTRY',       'read an entry')           {|id| options[:get] = id}
+	opts.on('-u', '--update ENTRY',    'update an entry')         {|id| options[:upd] = id}
+	opts.on('-d', '--delete ENTRY',    'delete an entry')         {|id| options[:del] = id}
+	opts.on('-p', '--password PWD', 'specify a password')         {|pwd| options[:pwd] = pwd}
+	opts.on('-n', '--username USR', 'specify a username')         {|usr| options[:usr] = usr}
+	opts.on('-l', '--list',         'list all entries')           {options[:lst] = true}
+	opts.on('-c', '--to-clipboard', 'copy password to clipboard') {options[:clip] = true}
+end.parse!
+
+unless (options.keys & [:add, :del, :upd, :get, :lst]).size == 1
+	puts "please specifiy either --add, --delete, --update, --get or --list"
+	exit
+end
+
+print RUBY_PLATFORM =~ /darwin/ ? "🙈 " : ">"
+master = STDIN.noecho(&:gets).chomp!; puts "\n"
+begin
+	vault = YAMP::Vault.new master
+rescue Exception => e
+	puts e.message
+	exit
+end
+
+if id = options[:add]
+	pwd = options[:pwd] ? options[:pwd] : 32.times.map {password_chars.sample}.join
+	unless vault.add id, pwd, options[:usr]
+		puts "entry already exists"
+	else
+		puts "+".green + " #{id}"
+		Clipboard.copy pwd if options[:clip]
+	end
+	exit
+end
+
+if id = options[:del]
+	unless vault.remove id
+		puts "no such entry"
+	else
+		puts "-".red + " #{id}"
+	end
+	exit
+end
+
+if id = options[:upd]
+	unless options[:pwd] || options[:usr]
+		puts "oops! did you forget something?"
+		exit
+	end
+	pwd_updated = false
+	usr_updated = false
+	if pwd = options[:pwd]
+		pwd_updated = vault.update id, :pwd, pwd
+	end
+	if usr = options[:usr]
+		usr_updated = vault.update id, :usr, usr
+	end
+	unless pwd_updated || usr_updated
+		puts "no such entry"
+	else
+		puts "*".yellow + " #{id}"
+		Clipboard.copy pwd if options[:clip]
+	end
+	exit
+end
+
+if id = options[:get]
+	password = vault.get id, :pwd
+	username = vault.get id, :usr
+	unless password || username
+		puts "no such entry"
+	else
+		puts username if username
+		unless options[:clip]
+			puts password
+		else
+			Clipboard.copy password
+		end
+	end
+	exit
+end
+
+if options[:lst]
+	puts vault.list.sort
+	exit
+end

data/lib/yamp.rb

@@ -0,0 +1,81 @@
+
+require 'redis'
+require 'openssl'
+
+module YAMP
+
+  class Vault
+
+    def initialize master, redis=Redis.new
+      @redis = redis
+      master_hash = redis.get "__mstr_h"
+      master_salt = redis.get "__mstr_s"
+      if master_hash && master_salt
+        @master_key = OpenSSL::PKCS5.pbkdf2_hmac_sha1(master, master_salt, 10000, 32)
+        unless OpenSSL::Digest::SHA512.hexdigest(@master_key) == master_hash
+          raise ArgumentError, "access denied"
+        end
+      else
+        salt = OpenSSL::Random.random_bytes(32)
+        @master_key = OpenSSL::PKCS5.pbkdf2_hmac_sha1(master, salt, 10000, 32)
+        redis.set "__mstr_h", OpenSSL::Digest::SHA512.hexdigest(@master_key)
+        redis.set "__mstr_s", salt
+      end
+    end
+
+    def add id, password, username=nil
+      return false if %w{__mstr_h __mstr_s}.include? id
+      return false unless @redis.hsetnx id, "pwd", encrypt(id, password)
+      @redis.hsetnx id, "usr", encrypt(id, username) if username
+      return true
+    end
+
+    def update id, key, value
+      return false if %w{__mstr_h __mstr_s}.include? id
+      return false unless [:pwd, :usr].include? key
+      @redis.hset id, key, encrypt(id, value)
+    end
+
+    def remove id
+      return false if %w{__mstr_h __mstr_s}.include? id
+      @redis.del id
+    end
+
+    def get id, key
+      return nil if %w{__mstr_h __mstr_s}.include? id
+      return nil unless [:pwd, :usr].include? key
+      return nil unless @redis.hexists id, key
+      decrypt id, @redis.hget(id, key)
+    end
+
+    def list
+      @redis.keys - %w{__mstr_h __mstr_s}
+    end
+
+    private
+
+    def encrypt id, data
+      cipher = OpenSSL::Cipher.new 'chacha20'
+      cipher.encrypt
+      iv = @redis.hget id, "__iv"
+      unless iv
+        iv = cipher.random_iv
+        @redis.hset id, "__iv", iv
+      else
+        cipher.iv = iv
+      end
+      cipher.key = @master_key
+      cipher.update(data) + cipher.final
+    end
+
+    def decrypt id, data
+      cipher = OpenSSL::Cipher.new 'chacha20'
+      cipher.decrypt
+      cipher.iv = @redis.hget id, "__iv"
+      cipher.key = @master_key
+      cipher.update(data) + cipher.final
+    end
+
+  end
+
+end

metadata

@@ -0,0 +1,89 @@
+--- !ruby/object:Gem::Specification
+name: yamp
+version: !ruby/object:Gem::Version
+  version: 0.0.5
+platform: ruby
+authors:
+- Tobias Heilig
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2017-09-14 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: redis
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '4.0'
+- !ruby/object:Gem::Dependency
+  name: openssl
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '2.0'
+- !ruby/object:Gem::Dependency
+  name: clipboard
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.1'
+description: A minimal CLI-based password manager built upon redis-cache
+email: holy708145@gmail.com
+executables:
+- yamp
+extensions: []
+extra_rdoc_files: []
+files:
+- bin/yamp
+- lib/yamp.rb
+homepage: http://rubygems.org/gems/yamp
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - "~>"
+    - !ruby/object:Gem::Version
+      version: '2.0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements:
+- redis, see https://redis.io
+rubyforge_project: 
+rubygems_version: 2.6.13
+signing_key: 
+specification_version: 4
+summary: yet another minimalistic passwordmanager
+test_files: []