s83/YubiKey-Guide
1
0
Fork 0
mirror of https://github.com/drduh/YubiKey-Guide.git synced 2025-05-18 11:07:10 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

delint and print id strings

Browse source
This commit is contained in:
drduh 2025-05-10 17:25:26 -07:00
parent f48c9fa3ee
commit d66ac5381f
1 changed files with 28 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

43
scripts/generate.sh
View file

@ -16,6 +16,11 @@ print_cred () {
tput setaf 1 ; printf "%s\n" "${1}" ; tput sgr0 tput setaf 1 ; printf "%s\n" "${1}" ; tput sgr0
} }
print_id () {
# Print an identity string in yellow.
tput setaf 3 ; printf "%s\n" "${1}" ; tput sgr0
}
get_id_label () { get_id_label () {
# Returns Identity name/label. # Returns Identity name/label.
printf "YubiKey User <yubikey@example.domain>" printf "YubiKey User <yubikey@example.domain>"
@ -33,13 +38,13 @@ get_key_expiration () {
get_temp_dir () { get_temp_dir () {
# Returns temporary working directory path. # Returns temporary working directory path.
mktemp -d -t $(date +%Y.%m.%d)-XXXX mktemp -d -t "$(date +%Y.%m.%d)-XXXX"
} }
set_temp_dir () { set_temp_dir () {
# Exports and switches to temporary dir. # Exports and switches to temporary dir.
export GNUPGHOME="$(get_temp_dir)" export GNUPGHOME="$(get_temp_dir)"
cd "$GNUPGHOME" cd "$GNUPGHOME" || exit 1
printf "set temp dir (path='%s')\n" "$(pwd)" printf "set temp dir (path='%s')\n" "$(pwd)"
} }
@ -56,9 +61,9 @@ get_pass () {
# Returns random passphrase. # Returns random passphrase.
tr -dc "A-Z2-9" < /dev/urandom | \ tr -dc "A-Z2-9" < /dev/urandom | \
tr -d "IOUS5" | \ tr -d "IOUS5" | \
fold -w ${PASS_GROUPSIZE:-4} | \ fold -w "${PASS_GROUPSIZE:-4}" | \
paste -sd ${PASS_DELIMITER:--} - | \ paste -sd "${PASS_DELIMITER:--}" - | \
head -c ${PASS_LENGTH:-29} head -c "${PASS_LENGTH:-29}"
} }
set_pass () { set_pass () {
@ -106,29 +111,35 @@ list_keys () {
save_secrets () { save_secrets () {
# Exports secret keys to local files. # Exports secret keys to local files.
echo "$CERTIFY_PASS" | \ echo "$CERTIFY_PASS" | \
gpg --output $GNUPGHOME/$KEY_ID-Certify.key \ gpg --output "$GNUPGHOME/$KEY_ID-Certify.key" \
--batch --pinentry-mode=loopback --passphrase-fd 0 \ --batch --pinentry-mode=loopback --passphrase-fd 0 \
--armor --export-secret-keys $KEY_ID --armor --export-secret-keys "$KEY_ID"
echo "$CERTIFY_PASS" | \ echo "$CERTIFY_PASS" | \
gpg --output $GNUPGHOME/$KEY_ID-Subkeys.key \ gpg --output "$GNUPGHOME/$KEY_ID-Subkeys.key" \
--batch --pinentry-mode=loopback --passphrase-fd 0 \ --batch --pinentry-mode=loopback --passphrase-fd 0 \
--armor --export-secret-subkeys $KEY_ID --armor --export-secret-subkeys "$KEY_ID"
} }
save_pubkey () { save_pubkey () {
# Exports public key to local file. # Exports public key to local file.
gpg --output $GNUPGHOME/$KEY_ID-$(date +%F).asc \ gpg --output "$GNUPGHOME/$KEY_ID-$(date +%F).asc" \
--armor --export $KEY_ID --armor --export "$KEY_ID"
} }
finish () { finish () {
# Prints final message with credentials. # Prints final message with id and credentials.
printf "certify passphrase: " printf "\nidentity/key label: "
print_cred $CERTIFY_PASS print_id "$IDENTITY"
printf "key id/fingerprint: "
print_id "$KEY_ID"
print_id "$KEY_FP"
printf "subkeys expiration: "
print_id "$KEY_EXPIRATION"
printf "\ncertify passphrase: "
print_cred "$CERTIFY_PASS"
printf "encrypt passphrase: " printf "encrypt passphrase: "
print_cred $ENCRYPT_PASS print_cred "$ENCRYPT_PASS"
} }
set_temp_dir set_temp_dir