diff options
author | Robin Krahl <robin.krahl@ireas.org> | 2019-01-06 00:23:27 +0100 |
---|---|---|
committer | Daniel Mueller <deso@posteo.net> | 2019-01-13 18:37:13 -0800 |
commit | 1d1cc940f47c41637adea5c5a1e5d3c80807f9d7 (patch) | |
tree | 8a44a82430e3df7ade7a61a6e4e30f100268af2d /nitrocli/src/commands.rs | |
parent | cb5b22d0886a0a8c19cf1afeef55a8245357cf20 (diff) | |
download | nitrocli-1d1cc940f47c41637adea5c5a1e5d3c80807f9d7.tar.gz nitrocli-1d1cc940f47c41637adea5c5a1e5d3c80807f9d7.tar.bz2 |
Add the base32 format for OTP secrets
Many applications display OTP secrets in the base32 format (according to
RFC 4648).
This patch adds base32 as a possible value for the --format option to
the otp set subcommand.
Diffstat (limited to 'nitrocli/src/commands.rs')
-rw-r--r-- | nitrocli/src/commands.rs | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/nitrocli/src/commands.rs b/nitrocli/src/commands.rs index 71b2bdd..289c257 100644 --- a/nitrocli/src/commands.rs +++ b/nitrocli/src/commands.rs @@ -457,6 +457,13 @@ fn prepare_ascii_secret(secret: &str) -> Result<String> { } } +/// Prepare a base32 secret string for libnitrokey. +fn prepare_base32_secret(secret: &str) -> Result<String> { + base32::decode(base32::Alphabet::RFC4648 { padding: false }, secret) + .map(|vec| format_bytes(&vec)) + .ok_or_else(|| Error::Error("Could not parse base32 secret".to_string())) +} + /// Configure a one-time password slot on the Nitrokey device. pub fn otp_set( ctx: &args::ExecCtx, @@ -468,6 +475,7 @@ pub fn otp_set( ) -> Result<()> { let secret = match secret_format { args::OtpSecretFormat::Ascii => prepare_ascii_secret(&data.secret)?, + args::OtpSecretFormat::Base32 => prepare_base32_secret(&data.secret)?, args::OtpSecretFormat::Hex => data.secret, }; let data = nitrokey::OtpSlotData { secret, ..data }; |