Skip to content

Latest commit

 

History

History
60 lines (37 loc) · 2.85 KB

README.md

File metadata and controls

60 lines (37 loc) · 2.85 KB

pass-server-node

pass-server-node is a read-only portal to pass. Read all about pass here.

How to use

If you have not installed a compatible client yet, you can just install one:

For this setup to work, secrets must be stored in the format url/username, for example: github.com/cpoppema. You can still categorize secrets since the server assumes the filename is the username and the directory the secrets exists in is the url. Multiline secrets are not an issue since the browser plugin only uses the first line of your secret as the password.

How to install

This project is exposing the password store managed by pass using HTTP, making your secrets more easily accessible from anywhere.

The only things required are that you have Node 4.x and a decent version of NPM installed.

To start things after you cloned this repository you simply install the modules and start the server with:

npm install
npm start

Configuration

This application uses two variables to determine what port to bind to and the location of the password store. You can provide those in three ways:

npm --port=8080 --password_store_dir=~/.password-store-dir start
PORT=8080 PASSWORD_STORE_DIR=~/.password-store-dir npm start
npm config set pass-server-node:port 8080
npm config set pass-server-node:password_store_dir /password-store-dir
npm start

The variables are also read in this order. If you do not change them, the config in package.json will be used. If you want to reset the values set with npm config, remove those from ~/.npmrc or wherever your npmrc exists.

Debugging

If something is not working like you think it should, you can enable more verbose logging by changing variables LOG_LEVEL and LOG_DIR. LOG_LEVEL controls how verbose the server logs messages, there are four levels: debug, info, warn, error (default). LOG_DIR controls in what directory these log files are created: "server.log" and "error.log" (default directory: "./log"). If you don't want any file output, you can set LOG_DIR to a blank value (empty string). Logfiles are limited to 1 MB and are rotated with a maximum of 1 file besides the current one.

Both these variables can be set the same way as shown above with the port and password store directory.

Notes

This application only binds to localhost. You should always use HTTPS to serve this application. Please use any web server (like Nginx) configured to serve this through an HTTPS-enabled reverse proxy.

Credits

  • Jason for writing pass.