mirror of
https://github.com/wneessen/apg-go.git
synced 2024-11-24 06:40:50 +01:00
Add .gitgnore and SPDX headers in several files
This commit introduces the .gitignore configuration file and adds SPDX headers to several files including test and documentation files. The headers provide license information in a standardized format which can be easily picked up by automated tools for license compliance checks. Additionally, it deleted a .idea/.gitignore file, which is a project specific IDE configuration file not necessary for the repository. It also introduced a README.md file providing more insightful information about the project.
This commit is contained in:
parent
f2a57cf46f
commit
79f921f9ad
34 changed files with 405 additions and 19 deletions
4
.github/FUNDING.yml
vendored
4
.github/FUNDING.yml
vendored
|
@ -1,2 +1,6 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
github: wneessen
|
github: wneessen
|
||||||
ko_fi: winni
|
ko_fi: winni
|
||||||
|
|
6
.github/ISSUE_TEMPLATE/bug_report.md
vendored
6
.github/ISSUE_TEMPLATE/bug_report.md
vendored
|
@ -1,3 +1,9 @@
|
||||||
|
<!--
|
||||||
|
SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
|
||||||
|
SPDX-License-Identifier: CC0-1.0
|
||||||
|
-->
|
||||||
|
|
||||||
---
|
---
|
||||||
name: Bug report
|
name: Bug report
|
||||||
about: Create a report to help us improve
|
about: Create a report to help us improve
|
||||||
|
|
6
.github/ISSUE_TEMPLATE/feature_request.md
vendored
6
.github/ISSUE_TEMPLATE/feature_request.md
vendored
|
@ -1,3 +1,9 @@
|
||||||
|
<!--
|
||||||
|
SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
|
||||||
|
SPDX-License-Identifier: CC0-1.0
|
||||||
|
-->
|
||||||
|
|
||||||
---
|
---
|
||||||
name: Feature request
|
name: Feature request
|
||||||
about: Suggest an idea for this project
|
about: Suggest an idea for this project
|
||||||
|
|
4
.github/dependabot.yml
vendored
4
.github/dependabot.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
# To get started with Dependabot version updates, you'll need to specify which
|
# To get started with Dependabot version updates, you'll need to specify which
|
||||||
# package ecosystems to update and where the package manifests are located.
|
# package ecosystems to update and where the package manifests are located.
|
||||||
# Please see the documentation for all configuration options:
|
# Please see the documentation for all configuration options:
|
||||||
|
|
4
.github/workflows/codeql-analysis.yml
vendored
4
.github/workflows/codeql-analysis.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
# For most projects, this workflow file will not need changing; you simply need
|
# For most projects, this workflow file will not need changing; you simply need
|
||||||
# to commit it to your repository.
|
# to commit it to your repository.
|
||||||
#
|
#
|
||||||
|
|
4
.github/workflows/docker-publish.yml
vendored
4
.github/workflows/docker-publish.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: Docker
|
name: Docker
|
||||||
|
|
||||||
# This workflow uses actions that are not certified by GitHub.
|
# This workflow uses actions that are not certified by GitHub.
|
||||||
|
|
4
.github/workflows/release-bsd.yml
vendored
4
.github/workflows/release-bsd.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: Go
|
name: Go
|
||||||
|
|
||||||
on:
|
on:
|
||||||
|
|
4
.github/workflows/release-darwin.yml
vendored
4
.github/workflows/release-darwin.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: Go
|
name: Go
|
||||||
|
|
||||||
on:
|
on:
|
||||||
|
|
4
.github/workflows/release-linux.yml
vendored
4
.github/workflows/release-linux.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: Go
|
name: Go
|
||||||
|
|
||||||
on:
|
on:
|
||||||
|
|
4
.github/workflows/release-windows.yml
vendored
4
.github/workflows/release-windows.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: Go
|
name: Go
|
||||||
|
|
||||||
on:
|
on:
|
||||||
|
|
4
.github/workflows/sonarqube.yml
vendored
4
.github/workflows/sonarqube.yml
vendored
|
@ -1,3 +1,7 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
name: SonarQube
|
name: SonarQube
|
||||||
on:
|
on:
|
||||||
push:
|
push:
|
||||||
|
|
3
.gitignore
vendored
3
.gitignore
vendored
|
@ -1,4 +1,4 @@
|
||||||
# SPDX-FileCopyrightText: 2022 Winni Neessen <winni@neessen.dev>
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
#
|
#
|
||||||
# SPDX-License-Identifier: CC0-1.0
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
|
@ -27,5 +27,6 @@ examples/*
|
||||||
|
|
||||||
# IDEA specific ignores
|
# IDEA specific ignores
|
||||||
.idea/
|
.idea/
|
||||||
|
.idea/.gitignore
|
||||||
|
|
||||||
dist/
|
dist/
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
## SPDX-FileCopyrightText: 2022 Winni Neessen <winni@neessen.dev>
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
##
|
#
|
||||||
## SPDX-License-Identifier: MIT
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
[run]
|
[run]
|
||||||
go = "1.20"
|
go = "1.20"
|
||||||
|
|
|
@ -1,10 +1,6 @@
|
||||||
# This is an example .goreleaser.yml file with some sensible defaults.
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
# Make sure to check the documentation at https://goreleaser.com
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
# The lines below are called `modelines`. See `:help modeline`
|
|
||||||
# Feel free to remove those if you don't want/need to use them.
|
|
||||||
# yaml-language-server: $schema=https://goreleaser.com/static/schema.json
|
|
||||||
# vim: set ts=2 sw=2 tw=0 fo=cnqoj
|
|
||||||
|
|
||||||
version: 1
|
version: 1
|
||||||
|
|
||||||
|
|
8
.idea/.gitignore
vendored
8
.idea/.gitignore
vendored
|
@ -1,8 +0,0 @@
|
||||||
# Default ignored files
|
|
||||||
/shelf/
|
|
||||||
/workspace.xml
|
|
||||||
# Editor-based HTTP Client requests
|
|
||||||
/httpRequests/
|
|
||||||
# Datasource local storage ignored files
|
|
||||||
/dataSources/
|
|
||||||
/dataSources.local.xml
|
|
278
README.md
Normal file
278
README.md
Normal file
|
@ -0,0 +1,278 @@
|
||||||
|
<!--
|
||||||
|
SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
|
||||||
|
SPDX-License-Identifier: CC0-1.0
|
||||||
|
-->
|
||||||
|
|
||||||
|
# A "Automated Password Generator"-clone
|
||||||
|
[![Go Reference](https://pkg.go.dev/badge/github.com/wneessen/apg-go.svg)](https://pkg.go.dev/github.com/wneessen/apg-go) [![Go Report Card](https://goreportcard.com/badge/github.com/wneessen/apg-go)](https://goreportcard.com/report/github.com/wneessen/apg-go) [![Build Status](https://api.cirrus-ci.com/github/wneessen/apg-go.svg)](https://cirrus-ci.com/github/wneessen/apg-go) ![CodeQL workflow](https://github.com/wneessen/apg-go/actions/workflows/codeql-analysis.yml/badge.svg) <a href="https://ko-fi.com/D1D24V9IX"><img src="https://uploads-ssl.webflow.com/5c14e387dab576fe667689cf/5cbed8a4ae2b88347c06c923_BuyMeACoffee_blue.png" height="20" alt="buy ma a coffee"></a>
|
||||||
|
|
||||||
|
_apg-go_ is a simple APG-like password generator written in Go. It tries to replicate the
|
||||||
|
functionality of the
|
||||||
|
"[Automated Password Generator](https://web.archive.org/web/20130313042424/http://www.adel.nursat.kz:80/apg)",
|
||||||
|
which hasn't been maintained since 2003. Since more and more Unix distributions are abondoning the tool, I was
|
||||||
|
looking for an alternative. FreeBSD for example recommends "security/makepasswd", which is written in Perl
|
||||||
|
but requires a lot of dependency packages and doesn't offer the feature-set/flexibility of APG.
|
||||||
|
|
||||||
|
Since FIPS-181 (pronouncable passwords) has been withdrawn in 2015, apg-go does not follow this standard. Instead
|
||||||
|
it implements the [Koremutake Syllables System](https://shorl.com/koremutake.php) in its pronouncable password mode.
|
||||||
|
|
||||||
|
## Installation
|
||||||
|
|
||||||
|
### Docker
|
||||||
|
There is a ready-to-use Docker image hosted on Github.
|
||||||
|
|
||||||
|
* Download the image:
|
||||||
|
```shell
|
||||||
|
$ docker pull ghcr.io/wneessen/apg-go:main
|
||||||
|
```
|
||||||
|
* Run the image:
|
||||||
|
```shell
|
||||||
|
$ docker run ghcr.io/wneessen/apg-go:main
|
||||||
|
```
|
||||||
|
|
||||||
|
### Ports/Packages
|
||||||
|
#### FreeBSD
|
||||||
|
apg-go can be found as `/security/apg` in the [FreeBSD ports](https://cgit.freebsd.org/ports/tree/security/apg)
|
||||||
|
tree.
|
||||||
|
#### Arch Linux
|
||||||
|
Find apg-go in [Arch Linux AUR](https://aur.archlinux.org/packages/apg-go/). \
|
||||||
|
Alternatively use the [PKGBUILD](https://github.com/wneessen/apg-go/tree/main/buildfiles/arch-linux) file
|
||||||
|
in this git repository
|
||||||
|
### Binary releases
|
||||||
|
#### Linux/BSD/MacOS
|
||||||
|
* Download release
|
||||||
|
```sh
|
||||||
|
$ curl -LO https://github.com/wneessen/apg-go/releases/download/v<version>/apg-v<version>-<os>-<architecture>.tar.gz
|
||||||
|
$ curl -LO https://github.com/wneessen/apg-go/releases/download/v<version>/apg-v<version>-<os>-<architecture>.tar.gz.sha256
|
||||||
|
```
|
||||||
|
* Verify the checksum
|
||||||
|
```sh
|
||||||
|
$ sha256 apg-v<version>-<os>-<architecture>.tar.gz
|
||||||
|
$ cat apg-v<version>-<os>-<architecture>.tar.gz.sha256
|
||||||
|
```
|
||||||
|
**Make sure the checksum of the downloaded file and the checksum in the .sha256 match**
|
||||||
|
* Extract archive
|
||||||
|
```sh
|
||||||
|
$ tar xzf apg-v<version>-<os>-<architecture>.tar.gz
|
||||||
|
```
|
||||||
|
* Execute
|
||||||
|
```sh
|
||||||
|
$ ./apg
|
||||||
|
```
|
||||||
|
#### Windows
|
||||||
|
* Download release
|
||||||
|
```PowerShell
|
||||||
|
PS> Invoke-RestMethod -Uri https://github.com/wneessen/apg-go/releases/download/v<version>/apg-v<version>-windows-<architecture>.zip -OutFile apg-v<version>-windows-<architecure>.zip
|
||||||
|
PS> Invoke-RestMethod -Uri https://github.com/wneessen/apg-go/releases/download/v<version>/apg-v<version>-windows-<architecture>.zip.sha256 -OutFile apg-v<version>-windows-<architecure>.zip.sha256
|
||||||
|
```
|
||||||
|
* Verify the checksum
|
||||||
|
```PowerShell
|
||||||
|
PS> Get-FileHash apg-v<version>-windows-<architecture>.zip | Format-List
|
||||||
|
PS> type apg-v<version>-windows-<architecture>.zip.sha256
|
||||||
|
```
|
||||||
|
**Make sure the checksum of the downloaded file and the checksum in the .sha256 match**
|
||||||
|
* Extract archive
|
||||||
|
```PowerShell
|
||||||
|
PS> Expand-Archive -LiteralPath apg-v<version>-windows-<architecture>
|
||||||
|
```
|
||||||
|
* Execute
|
||||||
|
```PowerShell
|
||||||
|
PS> cd apg-v<version>-windows-<architecture>
|
||||||
|
PS> apg.exe
|
||||||
|
```
|
||||||
|
|
||||||
|
### Sources
|
||||||
|
* Download sources
|
||||||
|
```sh
|
||||||
|
$ curl -LO https://github.com/wneessen/apg-go/archive/refs/tags/v<version>.tar.gz
|
||||||
|
```
|
||||||
|
* Extract source
|
||||||
|
```sh
|
||||||
|
$ tar xzf v<version>.tar.gz
|
||||||
|
```
|
||||||
|
* Build binary
|
||||||
|
```sh
|
||||||
|
$ cd apg-go-<version>
|
||||||
|
$ go build -o apg ./...
|
||||||
|
```
|
||||||
|
* Execute the brand new binary
|
||||||
|
```sh
|
||||||
|
$ ./apg
|
||||||
|
```
|
||||||
|
|
||||||
|
### Systemwide installation
|
||||||
|
It is recommed to install apg in a directory of your ```$PATH``` environment. To do so run:
|
||||||
|
(In this example we use ```/usr/local/bin``` as system-wide binary path. YMMV)
|
||||||
|
```sh
|
||||||
|
$ sudo cp apg /usr/local/bin/apg
|
||||||
|
```
|
||||||
|
|
||||||
|
## Programmatic interface
|
||||||
|
Since v0.4.0 the CLI and the main package functionality have been separated from each other, which makes
|
||||||
|
it easier to use the `apg-go` package in other Go code as well. This way you can make of the password
|
||||||
|
generation in your own code without having to rely on the actual apg-go binary.
|
||||||
|
|
||||||
|
Code examples on how to use the package can be found in the [example-code](example-code) directory.
|
||||||
|
|
||||||
|
## Usage examples
|
||||||
|
### Default behaviour
|
||||||
|
By default apg-go will generate 6 passwords, with a minimum length of 12 characters and a
|
||||||
|
maxiumum length of 20 characters. The generated password will use a character set constructed
|
||||||
|
from lower case, upper case and numeric characters.
|
||||||
|
```shell
|
||||||
|
$ ./apg-go
|
||||||
|
R8rCC8bw5NvJmTUK2g
|
||||||
|
cHB9qogTbfdzFgnH
|
||||||
|
hoHfpWAHHSNa4Q
|
||||||
|
QyjscIsZkQGh
|
||||||
|
904YqsU5SnoqLo2w
|
||||||
|
utdFKXdeiXFzM
|
||||||
|
```
|
||||||
|
### Modifying the character sets
|
||||||
|
#### Old style
|
||||||
|
Let's assume you want to generate a single password, constructed out of upper case, numeric
|
||||||
|
and special characters. Since lower case is part of the default set, you would need to disable them
|
||||||
|
by setting the `-L` parameter. In addition you would set the `-S` parameter to enable special
|
||||||
|
characters. Finally the parameter `-n 1` is needed to keep apg-go from generating more than one
|
||||||
|
password:
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -L -S
|
||||||
|
XY7>}H@5U40&_A1*9I$
|
||||||
|
```
|
||||||
|
|
||||||
|
#### New/modern style
|
||||||
|
Since the old style switches can be kind of confusing, it is recommended to use the "new style"
|
||||||
|
parameters instead. The new style is all combined in the `-M` parameter. Using the upper case
|
||||||
|
version of a parameter argument enables a feature, while the lower case version disabled it. The
|
||||||
|
previous example could be represented like this in new style:
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -M lUSN
|
||||||
|
$</K?*|M)%8\U$5JA5~
|
||||||
|
```
|
||||||
|
|
||||||
|
#### Human readability
|
||||||
|
Generated passwords can sometimes be a bit hard to read for humans, especially when ambiguous
|
||||||
|
characters are part of the password. Some characters in the ASCII character set look similar to
|
||||||
|
each other. In example it can be hard to differentiate an upper case I from a lower case l.
|
||||||
|
Same applies to the number zero (0) and the upper case O. To not run into issues with human
|
||||||
|
readability, you can set the `-H` parameter to toggle on the "human readable" feature. When the
|
||||||
|
option is set, apg-go will avoid using any of the typical ambiguous characters in the generated
|
||||||
|
passwords.
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -M LUSN -H
|
||||||
|
YpranThY3b6b5%\6ARx
|
||||||
|
```
|
||||||
|
|
||||||
|
#### Character exclusion
|
||||||
|
Let's assume, that for whatever reason, your generated password can never include a colon (:) sign. For
|
||||||
|
this specific case, you can use the `-E` parameter to specify a list of characters that are to be excluded
|
||||||
|
from the password generation character set:
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -M lUSN -H -E :
|
||||||
|
~B2\%E_|\VV|/5C7EF=
|
||||||
|
```
|
||||||
|
|
||||||
|
#### Complex passwords
|
||||||
|
If you want to generate complex passwords, there is a shortcut for this as well. By setting the `-C`
|
||||||
|
parameter, apg-go will automatically default to the most secure settings. The complex parameter
|
||||||
|
basically implies that the password will use all available characters (lower case, upper case,
|
||||||
|
numeric and special) and will make sure that human readability is disabled.
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -C
|
||||||
|
{q6cvz9le5_fo"X7
|
||||||
|
```
|
||||||
|
|
||||||
|
### Password length
|
||||||
|
By default, apg-go will generate a password with a random length between 12 and 20 characters. If you
|
||||||
|
want to be more specific, you can use the `-m` and `-x` parameters to override the defaults. Let's
|
||||||
|
assume you want a single complex password with a length of exactly 32 characters, you can do so by
|
||||||
|
running:
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -C -m 32 -x 32
|
||||||
|
5lc&HBvx=!EUY*;'/t&>B|~sudhtyDBu
|
||||||
|
```
|
||||||
|
|
||||||
|
### Password spelling
|
||||||
|
If you need to read out a password, it can be helpful to know the corresponding word for that character in
|
||||||
|
the phonetic alphabet. By setting the `-l` parameter, agp-go will provide you with the phonetic spelling
|
||||||
|
(english language) of your newly created password:
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -n 1 -M LUSN -H -E : -l
|
||||||
|
fUTDKeFsU+zn3r= (foxtrot/Uniform/Tango/Delta/Kilo/echo/Foxtrot/sierra/Uniform/PLUS_SIGN/zulu/november/THREE/romeo/EQUAL_SIGN)
|
||||||
|
```
|
||||||
|
|
||||||
|
### Pronouncable passwords
|
||||||
|
Since v0.4.0 apg-go supports pronouncable passwords, anologous to the original c-apg using the `-a 0`
|
||||||
|
flag. The original c-apg implemented FIPS-181, which was withdrawn in 2015 for generating pronouncable
|
||||||
|
passwords. Since the standard is not recommended anymore, `apg-go` instead make use of the
|
||||||
|
[Koremutake Syllables System](https://shorl.com/koremutake.php). Similar to the original apg, `agp-go`
|
||||||
|
will automatically randomly add special characters and number (from the human-readable pool) to each
|
||||||
|
generated pronouncable password. Additionally it will perform a "coinflip" for each Koremutake syllable
|
||||||
|
and decided if it should switch the case of one of the characters to an upper-case character.
|
||||||
|
|
||||||
|
Using the `-t` parameter, `apg-go` will display a spelled out version of the pronouncable password, where
|
||||||
|
each syllable or number/special character is seperated with a "-" (dash) and if the syllable is not a
|
||||||
|
Koremutake syllable the character will be spelled out the same was as with activated `-l` in the
|
||||||
|
non-pronouncable password mode (`-a 1`).
|
||||||
|
|
||||||
|
**Note on password length**: The `-m` and `-x` parameters will work in prouncable password mode, but
|
||||||
|
please keep in mind, that due to the nature how syllables work, your generated password might exceed
|
||||||
|
the desired length by one complete syllable (which can be up to 3 characters long).
|
||||||
|
|
||||||
|
**Security consideration:** Please keep in mind, that pronouncable passwords are less secure then truly
|
||||||
|
randomly created passwords, due to the nature how syllables work. As a rule of thumb, it is recommended
|
||||||
|
to multiply the length of your generated pronouncable passwords by at least 1.5 times, compared to truly
|
||||||
|
randomly generated passwords. It might also be helpful to run the pronoucable password mode with enabled
|
||||||
|
"[HIBP](#have-i-been-pwned)" flag, so that each generated password is automatically checked against "Have I Been Pwned"
|
||||||
|
database.
|
||||||
|
```shell
|
||||||
|
$ ./apg-go -a 0 -n 1
|
||||||
|
KebrutinernMy
|
||||||
|
|
||||||
|
$ ./apg-go -a 0 -n 1 -m 15 -x 15 -t
|
||||||
|
pEnbocydrageT*En (pEn-bo-cy-dra-geT-ASTERISK-En)
|
||||||
|
```
|
||||||
|
|
||||||
|
### Have I Been Pwned
|
||||||
|
Even though, the passwords that apg-go generated for you, are secure, there is a minimal chance, that
|
||||||
|
someone on the planet used exactly the same password before and that this person was part of an
|
||||||
|
internet leak or hack, which exposed the password to the public. Such passwords are not considered
|
||||||
|
secure anymore as they usually land on public available password lists, that are used by crackers.
|
||||||
|
|
||||||
|
To be on the safe side, you can use the `-p` parameter, to enable a HIBP check. When the feature is
|
||||||
|
enabled, apg-go will check the HIBP database at https://haveibeenpwned.com if that password has been
|
||||||
|
leaked before and provide you with a warning if that is the case.
|
||||||
|
|
||||||
|
Please be aware, that this is a live check against the HIBP API, which not only requires internet
|
||||||
|
connectivity, but also might take between 500ms to 1s to complete. When you generating a bigger list
|
||||||
|
of password `-n 100`, the process could take much longer than without the `-p` feature enabled.
|
||||||
|
|
||||||
|
## CLI parameters
|
||||||
|
_apg-go_ replicates most of the parameters of the original c-apg. Some parameters are different though:
|
||||||
|
|
||||||
|
- `-a <algorithm>`: Choose password generation algorithm (Default: 1)
|
||||||
|
- `0`: Pronouncable password generation (Koremutake syllables)
|
||||||
|
- `1`: Random password generation according to password modes/flags
|
||||||
|
- `-m <length>`: The minimum length of the password to be generated (Default: 12)
|
||||||
|
- `-x <length>`: The maximum length of the password to be generated (Default: 20)
|
||||||
|
- `-n <number of passwords>`: The amount of passwords to be generated (Default: 6)
|
||||||
|
- `-E <list of characters>`: Do not use the specified characters in generated passwords
|
||||||
|
- `-M <[LUNSHClunshc]>`: New style password parameters (upper-case enables, lower-case disables)
|
||||||
|
- `-L`: Use lower-case characters in passwords (Default: on)
|
||||||
|
- `-U`: Use upper-case characters in passwords (Default: on)
|
||||||
|
- `-N`: Use numeric characters in passwords (Default: on)
|
||||||
|
- `-S`: Use special characters in passwords (Default: off)
|
||||||
|
- `-H`: Avoid ambiguous characters in passwords (i. e.: 1, l, I, o, O, 0) (Default: off)
|
||||||
|
- `-C`: Generate complex passwords (implies -L -U -N -S and disables -H) (Default: off)
|
||||||
|
- `-l`: Spell generated passwords in random password mode (Default: off)
|
||||||
|
- `-t`: Spell generated passwords in pronouncable password mode (Default: off)
|
||||||
|
- `-p`: Check the HIBP database if the generated passwords was found in a leak before (Default: off) // *this feature requires internet connectivity*
|
||||||
|
- `-h`: Show a CLI help text
|
||||||
|
- `-v`: Show the version number
|
||||||
|
|
||||||
|
## Contributors
|
||||||
|
Thanks to the following people for contributing to the apg-go codebase:
|
||||||
|
* [Romain Tartière](https://github.com/smortex)
|
||||||
|
* [Abraham Ingersoll](https://github.com/aberoham)
|
||||||
|
* [Vinícius Zavam](https://github.com/egypcio) (Maintaining the FreeBSD port)
|
4
algo.go
4
algo.go
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
// Algorithm is a type wrapper for an int type to represent different
|
// Algorithm is a type wrapper for an int type to represent different
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import "testing"
|
import "testing"
|
||||||
|
|
4
apg.go
4
apg.go
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
// VERSION represents the version string
|
// VERSION represents the version string
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
// Package main is the APG command line client that makes use of the apg-go library
|
// Package main is the APG command line client that makes use of the apg-go library
|
||||||
|
|
||||||
package main
|
package main
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
// List of default values for Config instances
|
// List of default values for Config instances
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
4
go.mod
4
go.mod
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
module src.neessen.cloud/wneessen/apg-go
|
module src.neessen.cloud/wneessen/apg-go
|
||||||
|
|
||||||
go 1.22
|
go 1.22
|
||||||
|
|
3
go.sum.license
Normal file
3
go.sum.license
Normal file
|
@ -0,0 +1,3 @@
|
||||||
|
SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
|
||||||
|
SPDX-License-Identifier: MIT
|
4
hibp.go
4
hibp.go
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
// KoremutakeSyllables is a slightly modified Koremutake syllables list based on
|
// KoremutakeSyllables is a slightly modified Koremutake syllables list based on
|
||||||
|
|
4
mode.go
4
mode.go
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1 +1,5 @@
|
||||||
|
# SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
#
|
||||||
|
# SPDX-License-Identifier: CC0-1.0
|
||||||
|
|
||||||
sonar.projectKey=apg-go
|
sonar.projectKey=apg-go
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
|
@ -1,3 +1,7 @@
|
||||||
|
// SPDX-FileCopyrightText: 2021-2024 Winni Neessen <wn@neessen.dev>
|
||||||
|
//
|
||||||
|
// SPDX-License-Identifier: MIT
|
||||||
|
|
||||||
package apg
|
package apg
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
|
Loading…
Reference in a new issue