Project

can

0.0
No commit activity in last 3 years
No release in over 3 years
canptdorf/canHomepageDocumentationSource CodeBug Tracker
Can stores encrypted goods using symmetric cryptography (AES-256-CBC)
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Popularity
Downloads
17,522
Stars
0
Forks
0
Watchers
2
 Releases
Current version
0.10.13
Total releases
1
First release
2020-09-01
Latest release
2020-09-01
 Pull Requests
Open Pull Requests
0
Closed Pull Requests
0
Merged Pull Requests
2
Pull Request Acceptance Rate
100%
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2020-04-01
Reverse Dependencies
0

 Dependencies

Development

rake
>= 0

Runtime

base62-rb
>= 0
tablelize
>= 0
thor
>= 0
 Project Readme

Can

A small cli tool that stores encrypted goods.

It uses symmetric cryptography with the cipher AES-256-CBC. The file database of secrets is ascii based so feel free to commit it.

Installation

gem install can

Usage

$ can set test ok       # Stores a secret
Key test was stored.
$ can get test          # Copy that secret to the clipboard
Password:
Key test was copied to the clipboard.

Commands

$ can
Commands:
    can decrypt DATA         # Decrypts data
    can encrypt DATA         # Encrypts data
    can get KEY              # Copies a KEY to the clipboard
    can help [COMMAND]       # Describe available commands or one specific command
    can ls [TAG]             # Lists all keys (filter optionally by TAG)
    can password             # Change the can password
    can random [LENGTH]      # Generates a random password
    can rename KEY NEW_NAME  # Renames a secret
    can rm KEY               # Removes a key
    can set KEY [VALUE]      # Stores a value (empty VALUE show the prompt; use '@rando...
    can tag KEY TAG          # Tags a key
    can tags [KEY]           # Show all tags (filter for a key)
    can untag KEY TAG        # Untags a tag from a key
    can version              # Show the current version

Options:
    -p, [--password=PASSWORD]
    -v, [--verbose], [--no-verbose]
    -f, [--file=FILE]

Using another can file

Use the CAN_FILE environment variable or pass the --file FILE (or -f FILE) param option to use another can file:

$ export CAN_FILE="$HOME/secrets/main.can"
$ can ls
aws-root
azure-aad
vpn-demo

$ can ls --file $HOME/secrets/main.can
aws-root
azure-aad
vpn-demo

Lookup chain

If you don't pass an explicit --file or -f or set the CAN_FILE the code will check some locations in order. The first one to exist is used.

The code checks first these files first:

`~/.config/can/main.can`
`~/.can` # Legacy

The second file is legacy. By new default one is ~/.config/can/main.can.

If you pass the --name NAME (or -n NAME) argument, the code will try to find the first file that exists with a <NAME>.can name in these directories:

`~/.config/can`
`/etc/can`

The first one to exist is used. You can also set the CAN_NAME environment variable instead too. As usual, cli arguments override environment variables.

Avoid the password prompt

Use the CAN_PASSWORD environment variable to avoid the password prompt:

$ export CAN_PASSWORD="secret"
$ can ls
aws-root
azure-aad
vpn-demo

Passing the password as an arg option (--password PASSWORD or -p PASSWORD) is now disabled. This prevents the password from being recorded in the shell history.