CLI version: Store hash of master password; previous domains
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
PySGP |
Triaged
|
Wishlist
|
Unassigned |
Bug Description
The Command-Line version should store settings locally, with a few things to go in there.
Firstly, there should be the option of storing the master password hash locally, allowing the program to warn you if you get it wrong, as with the bookmarklet version. Also, there could be an option to store the actual master password locally, so the program does not need to prompt you at all - however, like the bookmarklet version, this will be extremely discouraged.
We can also (as suggested by Tim Cuthbertson) store a list of domains which have previously been entered. This serves a few purposes. Firstly, we can do a spell-check like feature. If you type a domain similar to one you have already used, it will say "did you mean...?" Secondly, the list of domains itself is useful, because it lets you know which sites you have used SGP with (in case you want to change your master password, this is a list of sites you need to update).
Changed in pysgp: | |
importance: | Undecided → Wishlist |
Changed in pysgp: | |
status: | New → Triaged |
sgp-platform already manages a list of domains in ~/.supergenpass .domains when you use the --remember or --forget flags. (at least in the git version).
It also allows you to save the password in the system store using --save. This uses keytool on OSX, and seahorse in GNOME. I'd be weary of implementing our own password storage...