mvdan
commented
4 years ago Thanks for filing this issue! This use case was actually precisely mine, when first writing this tool. I already use Bitwarden's firefox extension, so the only areas on my laptop which aren't covered are mainly command-line programs and scripts.
I don't use it this way, yet. I got far enough to make it functional, but two things are missing to my mind:
1) Implement the dbus protocol better. Right now, we only support passing secrets around in dbus in plaintext. There was a TODO for this, but not an issue, so I've raised https://github.com/mvdan/bitw/issues/17. 2) Support password prompts which aren't on the terminal. This is https://github.com/mvdan/bitw/issues/4.
For the sake of usability, I think we should also have PIN unlocking (https://github.com/mvdan/bitw/issues/7), as well as remembering the password/PIN for a configurable amount of time, like fifteen minutes (no issue filed for this yet).
All this stuff is definitely on my radar, but I jump between projects all the time. If you want to help with any of these issues, help is more than welcome - just be sure to add tests :)
sentriz
Hi! thanks for bitw, I like what I've used so far, except I have a question.
My dotfiles require some secrets - for example imgur api key for a screenshot tool, bank api keys for a bank balance applet, smtp passwords, etc.
I keep all these as encrypted gpg files in a syncthing mount, and wrote a little wrapper.
eg
$ secret imgur_api_keyor$ secret bank_api_key.it does a simple
gpg --decrypt, and prints to stdout. the nice thing about this is that "pinenty-gnome3" pops up asking for the passphase and caches it. so once booting, many of my dotfiles will subshellsecret, and the first will trigger the gui passphrase prompt, but they'll all get their secret.It think it would be cool to use bitw instead, perhaps replacing my
$ secretwith$ secret-tooland$ bitw servefor my dotfiles scripts. but I would be nice to have this gui password box for perhaps my bitwarden password.so the question is
thank you!