UNPKG

keepasshttp-client

Version:

Node.js module for interaction with KeePassHTTP

github.com/vladimiry/keepasshttp-client

vladimiry/keepasshttp-client

146 lines (117 loc) 5.61 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
# keepasshttp-client is a Node.js module for interaction with [KeePassHTTP](https://github.com/pfn/keepasshttp). [![Build Status: Linux / MacOS](https://travis-ci.org/vladimiry/keepasshttp-client.svg?branch=master)](https://travis-ci.org/vladimiry/keepasshttp-client) ## Notes - Supported request types: `test-associate`, `associate`, `get-logins`, `get-logins-count`, `set-login`. Respective methods return ES2015 Promises. ## Usage Examples Using TypeScript and async/await: ```typescript import {KeePassHttpClient, Model as KeePassHttpClientModel} from "keepasshttp-client"; import {Model as StoreModel, Store} from "fs-json-store"; import {EncryptionAdapter} from "fs-json-store-encryption-adapter"; type KeePassHttpSettings = Partial<StoreModel.StoreEntity> & KeePassHttpClientModel.Common.KeyId; const password = process.env.PASSWORD; if (!password) { throw new Error("Empty password is not allowed"); } // it's generally not secure to store the key/id values in the unencrypted form // since basically a smart/targeted computer virus/trojan can read the unencrypted key/id values // and fetch/modify your passwords interacting with the KeepassHttp using that key/id pair // so we are going to use a simple encrypted storage const store = new Store<KeePassHttpSettings>({ file: ".keepasshttp-client.json", adapter: new EncryptionAdapter( password, { keyDerivation: {type: "sodium.crypto_pwhash", preset: "mode:moderate|algorithm:default"}, encryption: {type: "sodium.crypto_secretbox_easy", preset: "algorithm:default"}, }, ), }); const examplesSequence = [ // associating with KeePassHttp and storing received key/id pair async () => { const client = new KeePassHttpClient(/*{url: "http://localhost:19455"}*/); await client.associate(); // at this stage - after the successful associating with KeePassHttp // the key/id values are wired into the "client" instance // so now we are ready to initiate the getting password records request // but let's first cache the received key/id values for future use await store.write({key: client.key, id: client.id}); // passwords requesting const records = await client.getLogins({url: "http://domain.com"}); console.log(JSON.stringify(records, null, 2)); }, // requesting passwords using previously cached key/id pair async () => { const client = new KeePassHttpClient({ // url: "http://localhost:19455", keyId: await store.read(), }); const records = await client.getLogins({url: "http://domain.com"}); console.log(JSON.stringify(records, null, 2)); }, ]; (async () => { for (const example of examplesSequence) { await example(); } })(); ``` Using JavaScript and Promises: ```javascript const {KeePassHttpClient} = require("keepasshttp-client"); const {Store} = require("fs-json-store"); const {EncryptionAdapter} = require("fs-json-store-encryption-adapter"); const password = process.env.PASSWORD; if (!password) { throw new Error("Empty password is not allowed"); } // it's generally not secure to store the key/id values in the unencrypted form // since basically a smart/targeted computer virus/trojan can read the unencrypted key/id values // and fetch/modify your passwords interacting with the KeepassHttp using that key/id pair // so we are going to use a simple encrypted storage const store = new Store({ file: ".keepasshttp-client.json", adapter: new EncryptionAdapter( password, { keyDerivation: {type: "sodium.crypto_pwhash", preset: "mode:moderate|algorithm:default"}, encryption: {type: "sodium.crypto_secretbox_easy", preset: "algorithm:default"}, }, ), }); const examplesSequence = [ // associating with KeePassHttp and storing received key/id pair () => { const client = new KeePassHttpClient(/*{url: "http://localhost:19455"}*/); return client.associate() // at this stage - after the successful associating with KeePassHttp // the key/id values are wired into the "client" instance // so now we are ready to initiate the getting password records request // but let's first cache the received key/id values for future use .then(() => store.write({key: client.key, id: client.id})) // passwords requesting .then(() => client.getLogins({url: "http://domain.com"})) .then((records) => console.log(JSON.stringify(records, null, 2))); }, // requesting passwords using previously cached key/id pair () => { return store.read() .then((keyId) => new KeePassHttpClient({ // url: "http://localhost:19455", keyId, })) .then((client) => client.getLogins({url: "http://domain.com"})) .then((records) => console.log(JSON.stringify(records, null, 2))); }, ]; examplesSequence.reduce( (accumulator, example) => accumulator.then(example), Promise.resolve(), ); ``` ## Links * [KeePass](http://keepass.info/) - original "Keepass Password Safe" password manager. * [KeePassHTTP](https://github.com/pfn/keepasshttp) - KeePass plugin that exposes passwords entries via HTTP for clients to consume. * [KeePassXC](https://github.com/keepassxreboot/keepassxc) - cross-platform community-driven port of the Windows application "Keepass Password Safe". It has built-in KeePassHTTP protocol support.