Welcome to enpassreaderlib’s documentation!¶
Contents:
enpassreaderlib¶
A library implementing the decrypting and retrieving secrets from an enpass 6 database.
Documentation: https://enpassreaderlib.readthedocs.org/en/latest
Development Workflow¶
The workflow supports the following steps
lint
test
build
document
upload
graph
These actions are supported out of the box by the corresponding scripts under _CI/scripts directory with sane defaults based on best practices. Sourcing setup_aliases.ps1 for windows powershell or setup_aliases.sh in bash on Mac or Linux will provide with handy aliases for the shell of all those commands prepended with an underscore.
The bootstrap script creates a .venv directory inside the project directory hosting the virtual environment. It uses pipenv for that. It is called by all other scripts before they do anything. So one could simple start by calling _lint and that would set up everything before it tried to actually lint the project
Once the code is ready to be delivered the _tag script should be called accepting one of three arguments, patch, minor, major following the semantic versioning scheme. So for the initial delivery one would call
$ _tag –minor
which would bump the version of the project to 0.1.0 tag it in git and do a push and also ask for the change and automagically update HISTORY.rst with the version and the change provided.
So the full workflow after git is initialized is:
repeat as necessary (of course it could be test - code - lint :) )
code
lint
test
commit and push
develop more through the code-lint-test cycle
tag (with the appropriate argument)
build
upload (if you want to host your package in pypi)
document (of course this could be run at any point)
Important Information¶
This template is based on pipenv. In order to be compatible with requirements.txt so the actual created package can be used by any part of the existing python ecosystem some hacks were needed. So when building a package out of this do not simple call
$ python setup.py sdist bdist_egg
as this will produce an unusable artifact with files missing. Instead use the provided build and upload scripts that create all the necessary files in the artifact.
Project Features¶
See USAGE.rst.
Can retrieve single entries
Can iterate over all entries
Can do fuzzy matching of entries while searching
Installation¶
At the command line:
$ pip install enpassreaderlib
Or, if you have virtualenvwrapper installed:
$ mkvirtualenv enpassreaderlib
$ pip install enpassreaderlib
Or, if you are using pipenv:
$ pipenv install enpassreaderlib
Or, if you are using pipx:
$ pipx install enpassreaderlib
Important note for pysqlcipher3:
pysqlcipher3 needs to compile on your workstation and it might not succeed if header files are missing. On my Mac I had to follow something like the below process:
brew install sqlcipher
# Assuming the version installed is 4.4.3 adjust accordingly
export C_INCLUDE_PATH=$BREWPATH/Cellar/sqlcipher/4.4.3/include
export LIBRARY_PATH=$BREWPATH/Cellar/sqlcipher/4.4.3/lib
# Activate the virtual environment that the project is installed to fix the installation
. .venv/bin/activate
pip install pysqlcipher3
On linux based systems probably sqlcipher-dev will need to be installed for the package to succesfully compile.
Usage¶
To develop on enpassreaderlib:
# The following commands require pipenv as a dependency
# To lint the project
_CI/scripts/lint.py
# To execute the testing
_CI/scripts/test.py
# To create a graph of the package and dependency tree
_CI/scripts/graph.py
# To build a package of the project under the directory "dist/"
_CI/scripts/build.py
# To see the package version
_CI/scripts/tag.py
# To bump semantic versioning [--major|--minor|--patch]
_CI/scripts/tag.py --major|--minor|--patch
# To upload the project to a pypi repo if user and password are properly provided
_CI/scripts/upload.py
# To build the documentation of the project
_CI/scripts/document.py
To use enpassreaderlib in a project:
from enpassreaderlib import EnpassDB
enpass = EnpassDB('db_file_path', 'db_master_password', 'optional_key_file')
# Get a specific entry
entry = enpass.get_entry('ENTRY_TITLE')
entry.password
# Search with fuzzy searching
for entry in enpass.search_entries('SOME_PART_OF_A_PASSWORD_TITLE'):
print(f'{entry.title} {entry.password}')
# Iterate over all the entries of the database
for entry in enpass.entries:
print(f'{entry.title} {entry.password}')
Contributing¶
# Based on work shown at https://github.com/HazCod/enpass-cli/issues/16
Contributions are welcome, and they are greatly appreciated! Every little bit helps, and credit will always be given.
Submit Feedback¶
If you are proposing a feature:
Explain in detail how it would work.
Keep the scope as narrow as possible, to make it easier to implement.
Get Started!¶
Ready to contribute? Here’s how to set up enpassreaderlib for local development. Using of pipenv is highly recommended.
Clone your fork locally:
$ git clone https://github.com/costastf/enpassreaderlib
Install your local copy into a virtualenv. Assuming you have pipenv installed, this is how you set up your clone for local development:
$ cd enpassreaderlib/ $ pipenv install --ignore-pipfile
Create a branch for local development:
$ git checkout -b name-of-your-bugfix-or-feature
Now you can make your changes locally. Do your development while using the CI capabilities and making sure the code passes lint, test, build and document stages.
Commit your changes and push your branch to the server:
$ git add . $ git commit -m "Your detailed description of your changes." $ git push origin name-of-your-bugfix-or-feature
Submit a merge request
enpassreaderlib¶
enpassreaderlib package¶
Submodules¶
enpassreaderlib.enpassreaderlib module¶
Main code for enpassreaderlib.
- class enpassreaderlib.enpassreaderlib.EnpassDB(database_path, password, keyfile=None, pbkdf2_rounds=100000)[source]¶
Bases:
objectManages the database object exposing useful methods to interact with it.
- property cipher_key¶
The cipher key to decrypt entries in the database.
- Returns:
The cipher key to decrypt the database entries.
- Return type:
cipher_key (string)
- property entries¶
All the entries in the database.
- Returns:
The password entries in the database.
- Return type:
entries (list)
- get_entry(name)[source]¶
Retrieves a single entry matching the name.
- Parameters:
name – The name of the password entry to retrieve.
- Returns:
A password entry object if match found else None.
- Return type:
entry (Entry)
- property master_password¶
The master password calculated along with the key if provided else the password provided.
- Returns:
The master password to decrypt the database.
- Return type:
master_password (bytearray)
- class enpassreaderlib.enpassreaderlib.Entry(database_row)[source]¶
Bases:
objectModels a password entry and exposes some useful attributes about it.
- property password¶
The plaintext password of the entry.
- Returns:
The plaintext password of the entry.
- Return type:
password (text)
- property totp_seed¶
enpassreaderlib.enpassreaderlibexceptions module¶
Custom exception code for enpassreaderlib.
Module contents¶
enpassreaderlib package.
Import all parts from enpassreaderlib here
Credits¶
Development Lead¶
Costas Tyfoxylos <costas.tyf@gmail.com>
Contributors¶
None yet. Why not be the first?
History¶
0.0.1 (25-03-2021)¶
First code creation
0.1.0 (25-03-2021)¶
First release with basic required functionality.
0.1.1 (25-03-2021)¶
Loosely pinned dependencies and updated the usage and installation notes a bit.
0.1.2 (07-07-2021)¶
Added pipeline.
0.2.0 (02-03-2023)¶
Expose totp seeds for passwords that support it.
0.2.1 (02-03-2023)¶
Fix linting.
0.2.2 (02-03-2023)¶
Fix for entries with no password.