Keyring is a launchr plugin and a service providing a password storage functionality encrypted with age. The storage is encrypted with a passphrase.
To add a new item with an interactive shell:
launchr loginIf an interactive shell is not available, credentials may be provided with flags:
launchr login \
--url=https://your.gitlab.com \
--username=USER \
--password=SECRETPASSWORD \
--keyring-passphrase=YOURPASSHRPASEFlag --keyring-passphrase is available for all launchr commands, for example:
launchr compose --keyring-passphrase=YOURPASSHRPASETo delete an item from the keyring:
launchr logout URL
launchr logout --allThe file is created in .launchr/keyring.yaml.age.
The content may be viewed/edited with age cli:
age -d .launchr/keyring.yaml.age
age -p .launchr/keyring.yaml > .launchr/keyring.yaml.ageAdd a module dependency:
go get -u github.com/launchrctl/keyringTo use the keyring in code, get the service from the app:
package main
import (
"github.com/launchrctl/keyring"
"github.com/launchrctl/launchr"
)
func GetPassword(app launchr.App, url string) (keyring.CredentialsItem, error) {
// Get the service by type from the app.
var k keyring.Keyring
app.GetService(k)
// Get by url. Error if the keyring could not be unlocked.
// Error keyring.ErrNotFound is returned if an item was not found.
creds, err := k.GetForURL(url)
if err != nil {
return keyring.CredentialsItem{}, err
}
return creds, nil
}Include with launchr build:
launchr build -p github.com/launchrctl/keyring