2ami

Your easy 2FA companion that keep the secrets secret.

2ami is a two factor authenticator for the CLI that stores 2FA secrets in system keyring, avoiding storing them in cleartext on your computer.

OTP Secret keys are saved and retrieved from system keyring at each use, so are not being kept in process active memory if not during operation explicitly requiring them.

Security considerations: the secrets are still being loaded in memory when adding a new key and generating a new token, even if for a small amount of time. I believe this is a safe enough approach (in a normal threat model, please consider yours), and is surely better than plain secrets on file system. Happy to discuss security improvements! :)

Note: This software has not been security reviewed by a third party.

Interested in using it? Look at the getting started page.

What to dig deeper? Go to the project wiki.

Known issues

None.

Name		Name	Last commit message	Last commit date
Latest commit History 203 Commits
.github/workflows		.github/workflows
images		images
script		script
.deepsource.toml		.deepsource.toml
.gitignore		.gitignore
.tool-versions		.tool-versions
LICENSE		LICENSE
README.md		README.md
Taskfile.yml		Taskfile.yml
backup.go		backup.go
build.sh		build.sh
disabled.travis.yml		disabled.travis.yml
dump.go		dump.go
formatter.go		formatter.go
formatter_test.go		formatter_test.go
go.mod		go.mod
go.sum		go.sum
key.go		key.go
key_test.go		key_test.go
keyring.go		keyring.go
main.go		main.go
main_test.go		main_test.go
misc.go		misc.go
release.sh		release.sh
secret-string.go		secret-string.go
storage.go		storage.go
test.db		test.db

License

endorama/2ami

Folders and files

Latest commit

History

Repository files navigation

2ami

Known issues

Stargazers

Contributors

About

Topics

Resources

License

Stars

Watchers

Forks

Languages