One more comment I have after skimming through the source: I'm pretty sure the user defaults are not a suitable place for storing git credentials or key pass phrases. Those should probably rather go into the key chain instead (which AFAIK was made exactly for storing these things). I also wonder if the key pass phrase should be persisted in the app at all.
On Sun, Feb 19, 2017 at 7:45 AM, Johannes Marbach <[email protected] > wrote: > Actually I just realised that the store could already be sycned over wifi > with a local git server. For the key, maybe scanning from a QR code would > be nice (see e.g. https://github.com/4bitfocus/asc-key-to-qr-code). > Otherwise I don't really see how to securely get my key into the app. > > On Sat, Feb 18, 2017 at 8:43 PM, Johannes Marbach < > [email protected]> wrote: > >> This looks really interesting. Would it be possible to add support for >> syncing both the key and the password store over wifi? >> >> On Fri, Feb 17, 2017 at 2:50 PM, Bob Sun <[email protected]> wrote: >> >>> -----BEGIN PGP SIGNED MESSAGE----- >>> Hash: SHA256 >>> >>> Hi all, >>> >>> I'm writing an iOS client compatible with Pass command line >>> toolhttps://www.passwordstore.org. Pass for iOS is a password manager using >>> GPG for >>> encryption and Git for version control. The app is written in Swift, and its >>> source code is released in GitHub https://github.com/mssun/pass-ios under >>> MIT >>> license. >>> >>> If you are interested in Pass for iOS, please register as an external >>> TestFlight >>> user at https://pass-ios.herokuapp.com. Reply me for the registration >>> password >>> (since this is the initial external test, I can only handle a small group of >>> people). >>> >>> The detailed usage can be found at https://github.com/mssun/pass-ios/wiki. >>> The >>> beta version still have many bugs and may crash. Please report issues on >>> Github >>> page. Thank you. >>> >>> Features >>> * Try to be compatible with Password Store command line tool >>> * Support to view, copy, add, edit password entries >>> * Encrypt and decrypt password entries by PGP keys >>> * Synchronise with you password Git repository >>> * User-friendly interface >>> * Written in Swift >>> * No need to jailbreak your devices >>> * Get from App Store (stay tuned, under review) >>> >>> Usage >>> * Generate a PGP key pair >>> * Use the pass command line tool >>> * Push encrypted password store to a private Git repository >>> * Build Pass for iOS by yourself or download from App Store >>> * Start to use Pass for iOS on your iPhone/iPad >>> For more, please read the wiki page. >>> >>> Best, >>> Bobhttps://mssun.me >>> >>> -----BEGIN PGP SIGNATURE----- >>> Version: Mailvelope v1.6.5 >>> Comment: https://www.mailvelope.com >>> >>> wsFcBAEBCAAQBQJYpv7iCRAFoE3x05JNmQAA+10QAIoGMUGjNYPHyIJnXmlp >>> JL2+L4IEHMF9DbvB2DSBil5gpgmh68md+TtvYEcznBwZK2/4jz0eMNqR8yvQ >>> gtv6l07s2wCyKNkg8Kmc2/+e3dIe1dMEiFjgMIqcp6c/EFdwcnQbGv4SiGBX >>> u9hxPqveQewyr32EzNxbe8Q1FyDTapmyIEIbi+UfJmWZiOQlc4y/So7ScWDH >>> L05rI3iSR+OVDFyPA+uLQQCqwRYFfdzhRms4o+UUSDuvFNOlqNRkksC7lGer >>> 2/tXEDbJjXvhcFLvqGxu8zZqfcrGo3n4DRB+LsrdLxPzHUtMIdrhQg99FXvc >>> CGCw2S/WcX5gU8y4iX2CmxMP14X9uMrKr/yVtzxxJVDAbXJXaT+oz9Zo7Bxw >>> A7hc4pkewrY1/ClUuvGMN877s5hAiBkNAvJSs1DsASv3R3cimIJPev3h3u6w >>> t0QhUCY3kyXyCctshsXfUuuVH4T7pz/o+KbRtTWeYrsaBelhUhNmuNdNH48e >>> 6KvdRivkH4H2vKSRnw3NVzN3Fq8vWuJSsC9te2atoMy9Z5ZZQray5LtXuDTO >>> 3goXCkAHhEKnATOSvF25S3pWsGwLr9e4dcdZsngJsNurojl9MLOqhOuHjyZ+ >>> nvgpjKQ3h7cSG95bAMviPYp5WW83HPd7sRILi0frSA3MA9Z41nYMo5trmxVE >>> K/41 >>> =CKPY >>> -----END PGP SIGNATURE----- >>> >>> >>> _______________________________________________ >>> Password-Store mailing list >>> [email protected] >>> https://lists.zx2c4.com/mailman/listinfo/password-store >>> >>> >> >
_______________________________________________ Password-Store mailing list [email protected] https://lists.zx2c4.com/mailman/listinfo/password-store
