summaryrefslogtreecommitdiff
path: root/src/password-store.sh (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Don’t reencrypt data not managed by pass.Sebastian Reuße2017-02-251-2/+2
| | | | | | | | | | | | | | | When keeping the password-store under git, it can make sense using a git extension such as git-annex instead of the native git object store to store the encrypted files. Inter alia, this allows one to selectively expire old copies of the encrypted data, while otherwise, one would need to recreate the complete repository when a key should no longer have access to some of the data. Since using the git-annex object store means that *.gpg files (and directories named *.gpg) are kept under .git/… (non-writable), the reencryption logic used by pass currently fails. To remedy this, we now ignore everything kept under .git when looking for files to reencrypt or when grepping.
* show,generate: support qrcodesJason A. Donenfeld2017-01-011-15/+40
|
* extensions: introduce system extensionsJason A. Donenfeld2016-12-211-5/+14
|
* extensions: make opt-inJason A. Donenfeld2016-12-211-10/+14
|
* Add signaturesJason A. Donenfeld2016-12-211-0/+24
|
* Add extensionsJason A. Donenfeld2016-12-201-1/+14
|
* generate: use /dev/urandom directlyJason A. Donenfeld2016-12-201-5/+7
| | | | | | Passing to tr using the "pick and discard" technique is more straight- forwardly correct and less error-prone. It also allows users to select their own character sets to be passed to tr.
* Make gpg errors fatalJason A. Donenfeld2016-02-061-5/+5
|
* Revert "show: allow passing prefix to clip"Jason A. Donenfeld2016-02-061-9/+5
| | | | | | This reverts commit fcb92ed69fc191e39379bad715371d8c28410885. Needs more discussion.
* init: put path in commit messageJason A. Donenfeld2016-02-061-4/+4
|
* show: allow passing prefix to clipJason A. Donenfeld2016-02-061-5/+9
|
* show: better clip error messageJason A. Donenfeld2016-02-051-3/+3
|
* show: allow selecting which clip lineJason A. Donenfeld2016-02-051-6/+7
|
* generate: have a default length of 25Jason A. Donenfeld2016-02-051-4/+5
| | | | | | | | | | | | | Folks are lazy and don't want to type very much, so they'd like to have a default password length to generate that can be configured via environment variables per usual. I'm making the default 25. If the user forbids the use of symbols, pwgen will use a-zA-Z0-9, ensuring that at least one A-Z and at least one 0-9 is used. We want to have a password of at least 128-bits, so factoring in the issue with "at least one of this character type", 25 gets us there squarely. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
* Fix up moving ambiguity tooJason A. Donenfeld2016-02-051-5/+6
|
* Insert and edit work on files, so don't let the arguments be directoriesJason A. Donenfeld2016-02-051-2/+2
|
* Handle removal of directories and passwords with the same nameJason A. Donenfeld2016-02-051-5/+4
|
* Use 6 Xs for mktempJason A. Donenfeld2015-05-111-1/+1
|
* Fix .gpg strippingJason A. Donenfeld2015-05-111-2/+2
|
* add support for passing arbitrary options to all invocations of GPGDavid Adam2015-05-111-4/+4
| | | | | | Uses the PASSWORD_STORE_GPG_OPTS environment variable. Can be used to (e.g.) change the keyrings or trust model used.
* Exit 1 when gpg fails in multiline too.Anne Jan Brouwer2015-05-111-1/+1
| | | | Multiline insert errors gave a exit code of 0, now correctly propagated.
* Suppress output when original file does not existJason A. Donenfeld2015-02-111-1/+1
|
* Bump version1.6.5Jason A. Donenfeld2015-01-281-1/+1
|
* cygwin + gpg4win: convert paths to windows paths when calling gpg4win binary ↵Lenz Weber2015-01-281-1/+1
| | | | instead of cygwin's gpg binary
* Use more stable with-colons outputJason A. Donenfeld2015-01-281-1/+1
|
* Revert "Only examine subkeys that are capable of encrypting."Jason A. Donenfeld2015-01-281-1/+1
| | | | | | | This reverts commit ec8140b0f1a422aad16d41d0c322f3a6ceef74fe. The needed option is only available on GnuPG 2.1, and we need to support GnuPG 2.0 too.
* Bump version1.6.4Jason A. Donenfeld2015-01-281-1/+1
|
* Strip ".gpg" from symlinks as wellTheo Chatzimichos2015-01-271-2/+2
| | | | | | | | | | | | | | | Symlinks inside password-store make sense when using passff in firefox, and have the same LDAP password in different websites. In order to have passff working correctly then, we need to strip the .gpg extension from symlinks as well. Example output of `pass find site1` or `pass | grep site1` before this commit: site1.job.com.gpg -> site2.job.com and after: site1.job.com -> site2.job.com
* clip: Show an error message if xclip returns a non-zero exit codeWieland Hoffmann2015-01-191-3/+2
| | | | | | | | | | | xclip will return a non-zero exit code if $DISPLAY is not set, which might happen, for example, if you're running pass in a tmux session remotely or something like that. xclip itself will also show an error message ("Can't open display") which provides enough context to figure out what the problem is. There might be other reasons for xclip to return a non-zero exit code, but the man page doesn't list them.
* Correct path for top level grepJason A. Donenfeld2015-01-191-2/+3
|
* Do not use hidden recipientsJason A. Donenfeld2015-01-131-1/+1
|
* Only examine subkeys that are capable of encrypting.Jason A. Donenfeld2015-01-121-1/+1
|
* agent-check: goodbyeJason A. Donenfeld2014-12-241-11/+0
| | | | | The latest gpg-agent from the 2.1 series no longer requires these environment variables and will instead start gpg-agent as it needs.
* Keep track of correct TTY for pinentry at start of script, in case we take ↵Jason A. Donenfeld2014-12-241-0/+1
| | | | over stdin later.
* Do not make commit with edit if password is unchanged.Jason A. Donenfeld2014-12-231-0/+1
|
* tree listing: remove .gpg at the end, but keep bash colorzingLenz Weber2014-12-231-1/+1
|
* Alias insert to add.Jason A. Donenfeld2014-09-211-1/+1
|
* clip: use CLIP_TIME in messagesJason A. Donenfeld2014-07-241-1/+1
|
* grep: no trailing slashJason A. Donenfeld2014-07-241-1/+1
|
* Follow symbolic links.Jason A. Donenfeld2014-07-081-1/+1
|
* Bump version.1.6.3Jason A. Donenfeld2014-07-011-1/+1
|
* edit: bsd mktemp needs nothing after the XsJason A. Donenfeld2014-06-301-1/+2
|
* tmpdir: more cross platform solution, and .txt file endingJason A. Donenfeld2014-06-301-4/+3
|
* edit: Don't go into a crazy loop. Instead prompt.Jason A. Donenfeld2014-06-291-2/+1
|
* git: do not trap tmpdir removalJason A. Donenfeld2014-06-291-1/+0
|
* darwin: properly ejects ramdisksJason A. Donenfeld2014-06-291-5/+10
| | | | | | | In the move away from extensive global variables and improved cleanup routines, we forgot to fix the darwin platform file, which means temporary ramdisks never got unmounted. This patch cleans up the general cleanup trap logic routines.
* Allow options in EDITOR variableJason A. Donenfeld2014-06-291-1/+1
| | | | | | | | This is required by most graphical editors, as the shell command they provide needs to be told to wait until the file has been closed. This reverts '311c98c9140205f32be2720db9261c67da658c4c'. We thus use PATH so that the tests still pass in directories with spaces.
* Update for new URL.Jason A. Donenfeld2014-05-271-1/+1
|
* Bump version1.6.2Jason A. Donenfeld2014-05-141-1/+1
|
* Don't define tmpdir on git init.Jason A. Donenfeld2014-05-141-4/+3
|