search

cpoppema / pass-browser-firefox

pass-browser-firefox is a browser plugin for firefox with web-extensions support (v48+) that brings your secrets managed by `pass` to your browser; requires a self hosted pass-server
GNU General Public License v3.0
8 stars 1 forks source link

Only some passwords listed #4

Closed ams-123 closed 5 years ago

ams-123 commented 5 years ago

Hi,

I've been through the setup and used NPM to run a local server. All working, but I only see a few passwords listed - probably about 10% of the total. Is pass-browser caching? If so, how do I refresh to include all passwords?

Thanks Andy

cpoppema commented 5 years ago

Hello @ams-123, thanks for giving this a try!

The add-on is not supposed to do any caching. Does the other 90% perhaps not exist in a subfolder ?

Since I've originally written to be used inside of a browser, the server only exposes secrets that exist inside a subfolder.

https://github.com/cpoppema/pass-server-node/blob/master/SPEC.rst

While searching in PASSWORD_STORE_DIR certain secrets are excluded: those that are not placed inside a directory (since the directory name is used as the domain). I.e. there could be a hundred .gpg-files inside the directory ~/.password-store/, but none would be exposed by a pass server. Other files, like contains-very-secret-notes.txt are not recognized as a .gpg-file and are ignored in building the list of secrets.

If you start the server with LOG_LEVEL=debug and use the plugin, it will output a list of added and skipped secrets. Can you check if those match ? For example, for my testing directory:

 $    pass list
Password Store
├── anime-planet.com
│   └── cpoppema
├── bitbucket.org
│   └── cpoppema
├── github.com
│   └── cpoppema
├── hub.docker.com
│   ├── cpoppema
│   └── cpoppema-otp
├── justasecret
├── store.steampowered.com
│   └── cpoppema
└── www.netflix.com
    └── cpoppema

The server output is:

[26/Jan/2019 15:43:31] DEBUG Building list of secrets.
[26/Jan/2019 15:43:31] DEBUG Skipping from "./": ".gpg-id".
[26/Jan/2019 15:43:31] DEBUG Skipping from "./": "justasecret.gpg".
[26/Jan/2019 15:43:31] DEBUG Add from "./www.netflix.com": "www.netflix.com/cpoppema".
[26/Jan/2019 15:43:31] DEBUG Add from "./store.steampowered.com": "store.steampowered.com/cpoppema".
[26/Jan/2019 15:43:31] DEBUG Add from "./hub.docker.com": "hub.docker.com/cpoppema-otp".
[26/Jan/2019 15:43:31] DEBUG Add from "./hub.docker.com": "hub.docker.com/cpoppema".
[26/Jan/2019 15:43:31] DEBUG Add from "./github.com": "github.com/cpoppema".
[26/Jan/2019 15:43:31] DEBUG Add from "./bitbucket.org": "bitbucket.org/cpoppema".
[26/Jan/2019 15:43:31] DEBUG Add from "./anime-planet.com": "anime-planet.com/cpoppema".

Note that justasecret.gpg is not added to the response because it's not in a subfolder. If you have everything in a subfolder, I'm curious to hear if those are actually shown as added or skipped.