GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → umputun → Secrets

umputun / Secrets

Licence: apache-2.0
secrets kept safe

Programming Languages

javascript
184084 projects - #8 most used programming language

Labels

communicationsecretspassword-store

Projects that are alternatives of or similar to Secrets

secrets
Not Yet Another Password Manager written in Go using libsodium
Stars: ✭ 28 (-67.06%)
Mutual labels:  secrets, password-store
Secretserver
Secret Server PowerShell Module
Stars: ✭ 82 (-3.53%)
Mutual labels:  secrets
Secrethub Go
Go client library for the SecretHub Secrets Management API
Stars: ✭ 50 (-41.18%)
Mutual labels:  secrets
Cserialport
The latest modified version of Remon Spekreijse's serial port class
Stars: ✭ 64 (-24.71%)
Mutual labels:  communication
Pass Extension Tail
A pass extension to avoid printing the password to the console
Stars: ✭ 53 (-37.65%)
Mutual labels:  password-store
Rxbus
Android reactive event bus that simplifies communication between Presenters, Activities, Fragments, Threads, Services, etc.
Stars: ✭ 79 (-7.06%)
Mutual labels:  communication
Writetothem
Write to your MP, MEP, & other elected representatives.
Stars: ✭ 44 (-48.24%)
Mutual labels:  communication
Techleading
Resources for tech leads
Stars: ✭ 84 (-1.18%)
Mutual labels:  communication
Can library
Multiplatform Arduino library for supporting the native CAN controller on Due (SAM3X) and Teensy 3.1 (K2X) as well as MCP2515 through SPI
Stars: ✭ 81 (-4.71%)
Mutual labels:  communication
Helm Secrets
DEPRECATED A helm plugin that help manage secrets with Git workflow and store them anywhere
Stars: ✭ 1,129 (+1228.24%)
Mutual labels:  secrets
Masterpassword
Project moved to https://gitlab.com/spectre.app
Stars: ✭ 1,122 (+1220%)
Mutual labels:  password-store
Awesome Osx
📦 Awesome stuff for OSX
Stars: ✭ 54 (-36.47%)
Mutual labels:  communication
Mraa
Linux Library for low speed IO Communication in C with bindings for C++, Python, Node.js & Java. Supports generic io platforms, as well as Intel Edison, Intel Joule, Raspberry Pi and many more.
Stars: ✭ 1,220 (+1335.29%)
Mutual labels:  communication
Solid
Solid - Re-decentralizing the web (project directory)
Stars: ✭ 8,083 (+9409.41%)
Mutual labels:  communication
Envkey App
Secure, human-friendly, cross-platform secrets and config.
Stars: ✭ 83 (-2.35%)
Mutual labels:  secrets
Aws Secrets Manager Credentials Provider Plugin
AWS Secrets Manager Credentials Provider for Jenkins
Stars: ✭ 45 (-47.06%)
Mutual labels:  secrets
Hrim
An information model for robot hardware. Facilitates interoperability across modules from different robot manufacturers. Built around ROS 2.0
Stars: ✭ 61 (-28.24%)
Mutual labels:  communication
Terraform Provider Credstash
Terraform provider for secrets stored with credstash
Stars: ✭ 68 (-20%)
Mutual labels:  secrets
Bigbluebutton
Package that provides easily communicate between bigbluebutton server and laravel framework
Stars: ✭ 85 (+0%)
Mutual labels:  communication
Arduino Robust Serial
A simple and robust serial communication protocol. It was designed for Arduino but can be used for other purposes (e.g. bluetooth, sockets). Implementation in C Arduino, C++, Python and Rust.
Stars: ✭ 83 (-2.35%)
Mutual labels:  communication
View All Similar Projects ➔

Safe Secrets - safe(r) and easy way to transfer passwords

The primary use-case is sharing sensitive data by making the information self-destructed, accessible only once and protected by easy-to-share PIN code. I just needed a simple and better alternative to the most popular way of passing passwords, which is why this project was created. Doing this by email always made me concerned about the usual "security" of sending user and password info in two different emails - which is just a joke.

Usage

It runs on safesecret.info for real. Feel free to use it if you are crazy enough to trust me, or just run your own from prepared docker image. And of course, you can build from sources as well.

Create a safesecret link to your message by entering 3 things:

  • Content of your secret message
  • Expiration time of your secret message
  • Secret PIN

This will give you a link which you can send by email, chat or share by using any other means. As soon as your recipient opens the link they will be asked for the secret PIN and see your secret message. The PIN is (typically) numeric and easy to pass by a voice call or text message. Each link can be opened only once and the number of attempts to enter a wrong PIN is limited to 3 times by default.

ScreenShot

How safe is this thing

  • It doesn't keep your original message or PIN anywhere, but encrypts your message with PIN (hashed as well)
  • It doesn't keep any sensitive info in any logs
  • It doesn't keep anything on a disk in any form (in case of default engine)
  • As soon as a message is read or expired it will be deleted and destroyed permanently
  • In order to steal your message, bad guys would need access to your link as well as PIN code

Feel free to suggest any other ways to make the process safer.

Installation

  1. Download docker-compose.yml and secrets-nginx.conf
  2. Adjust your local docker-compose.yml with:
    • TZ - your local time zone
    • SIGN_KEY - something long and random
    • MAX_EXPIRE - maximum lifetime period, default 24h
    • PIN_SIZE - size (in characters) of the pin, default 5
    • PIN_ATTEMPTS - maximum number of failed attempts to enter pin, default 3
  3. Setup SSL:
    • The system can make valid certificates for you automatically with integrated nginx-le. Just set:
    • In case you have your own certificates, copy them to etc/ssl and set:
      • SSL_CERT - SSL certificate (file name, not path)
      • SSL_KEY - SSL key (file name, not path)
  4. Run the system with docker-compose up -d. This will download a prepared image from docker hub and start all components.
  5. if you want to build it from sources - docker-compose build will do it, and then docker-compose up -d.

See docker-compose.yml for more details

Technical details

Safesecret usually deployed via docker-compose and has two containers in:

  • application secrets container providing both backend (API) and frontend (UI)
  • nginx-le container with nginx proxy and let's encrypt SSL support

Application container is fully functional without nginx proxy and can be used in stand-alone mode. You may want such setup in case you run safesecret behind different proxy, i.e. haproxy, AWS ELB/ALB and so on.

API

Safesecret provides trivial REST to save and load messages.

Save message

POST /api/v1/message, body - {"message":"some top secret info", "exp": 120, "pin": "12345"}

  • exp expire in N seconds
  • pin fixed-size pin code 
        $ http POST https://safesecret.info/api/v1/message pin=12345 message=testtest-12345678 exp:=1000

    HTTP/1.1 201 Created

    {
        "exp": "2016-06-25T13:33:45.11847278-05:00",
        "key": "f1acfe04-277f-4016-518d-16c312ab84b5"
    }

Load message

GET /api/v1/message/:key/:pin

```
    $ http GET https://safesecret.info/api/v1/message/6ceab760-3059-4a52-5670-649509b128fc/12345

    HTTP/1.1 200 OK

    {
        "key": "6ceab760-3059-4a52-5670-649509b128fc",
        "message": "testtest-12345678"
    }
```

ping

GET /api/v1/ping

```
$ http https://safesecret.info/api/v1/ping

HTTP/1.1 200 OK

pong
```

Get params

GET /api/v1/params

```
$ http https://safesecret.info/api/v1/params

HTTP/1.1 200 OK

{
    "max_exp_sec": 86400,
    "max_pin_attempts": 3,
    "pin_size": 5
}
```
Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].