key file support - Githubissues

clach04 / puren_tonbo

Plain text notes Tombo (chi) alternative, also supports, ccrypt, GnuPG (OpenPGP, gpg), OpenSSL AES-256-CBC, AES-256 ZIP AE-1/AE-2 and VimCrypt encrypted files. Integrates with VIM. WIP

https://pypi.org/project/puren-tonbo/

GNU Lesser General Public License v2.1

1 stars 0 forks source link

key file support #40

Open clach04 opened 1 year ago

clach04 commented 1 year ago

PT (like Tombo, VimVry6, and AESZip) use a passphrase only (possibly with key derivation function) for encryption/decryption
Many tools (like Opengpg, age, etc.) Use a key file (typically on disk, but not always) that is protected by a passphrase (typically, but not always) that maybe accessed via an agent or keyring. For: a. Symmetric encryption/decryption. b. Public/private key pair encryption/decryption.

Many tools transparently will handle 2.b. for decryption. For 2.a and 2.b (for encryption) what would the work flow/UX be for an end user of PT?

clach04 commented 1 year ago

Environment variables

Environment variables could name key, either generic variable or one variable per encryption backend. Example:

gpg - PT_KEY_GPG
age - PT_KEY_AGE
etc.

Config file

Right now, encryption classes do not have access to config.

overload passphrase

Passphrase could be keyname:passphrase for key.