Go to file

Franzi f04b211516 release 1.0.2		2021-07-03 19:45:29 +02:00
.gitignore	add dist/ to .gitignore	2021-07-02 16:46:54 +02:00
LICENSE	add LICENSE	2021-07-02 16:45:48 +02:00
README.md	add README	2021-07-02 16:44:35 +02:00
bwpass.py	do not try to parse lines which do not conform to the browserpass format	2021-07-03 19:44:28 +02:00
setup.py	release 1.0.2	2021-07-03 19:45:29 +02:00

README.md

Use secrets from pass in your BundleWrap repo.

Installation

pip install bundlewrap-pass

Setup

There's no setup needed. Please note bundlewrap-pass will override your PASSWORD_STORE_DIR to the content of BW_PASS_DIR, which in turn will default to ~/.password-store. Keep this in mind if you want to use a custom path to your passwordstore repo.

usage

bundlewrap-pass will use the first line of pass output to get its password attribute. You can also retrieve any other saved attributes, as long as your pass entries conform to the format which browserpass uses:

my_super_secure_password
custom_attribute: foo
another_attr: bar

You can then retrieve those attributes using the attr method of bundlewrap-pass.

Example nodes.py:

import bwpass

nodes = {
    'somenode': {
        'metadata': {
            'my_secret': bwpass.password('my_identifier'),
            'my_custom_attr': bwpass.attr('my_identifier', 'custom_attribute'),
        },
    },
}

Note: This will insert a proxy object into your metadata, the actual secret is not retrieved until you convert it to a string (e.g. by inserting it in a template or calling str() explicitly).