<p dir="ltr">Thanks, I'll take a look at adding this soon. SeeĀ <a href="https://github.com/tadfisher/pass-otp/issues/34">https://github.com/tadfisher/pass-otp/issues/34</a> for updates.</p>
<br><div class="gmail_quote"><div dir="ltr">On Thu, Nov 30, 2017, 3:11 PM Lenz Weber <<a href="mailto:mail@lenzw.de">mail@lenzw.de</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">>> As for OTP: yes that is a planned feature and from the passB side, it's<br>
>> quite easy to integrate for example with tadfisher/pass-otp. The only<br>
>> problem is that it's currently not really possible to detect which files<br>
>> contain OTP tokens, so all I could currently do is offer the "generate<br>
>> OTP" menu option for every entry, or decrypt every single entry when<br>
>> passB scans for pass entries. Both of those are not really solutions I<br>
>> would enjoy doing.<br>
>> So either I'm gonna add an extension for passB that maybe offers otp for<br>
>> all entries that follow a naming convention of .otp - which would be<br>
>> kind of a hack, or I'll wait for tadfisher to implement some sort of<br>
>> `pass otp ls` command that somehow caches that information - which I<br>
>> currently would prefer most.<br>
><br>
> From my understanding there is some semi-standard way to store metadata,<br>
> as long as the password is on the first line. Subsequent lines can have the<br>
> OTP: qualifier, or something similar.<br>
<br>
When I have an already decrypted entry, locating the OTP metadata is no<br>
real problem (I can simply look for the line starting with "otpauth://").<br>
My point is that in the context of the addon, you have a tree of entries<br>
and every tree node has associated actions like "show password" and<br>
"fill password". Of course, I could also always offer "show OTP" for<br>
every entry, but if I would want to offer that action in a<br>
context-sensitive only on entries that really contain "otpauth://", I<br>
have to decrypt all of those before rendering the tree. (Or do a `pass<br>
grep "otpauth://" which would essentially do the same)<br>
Not only is this a lot of unnecessary decrypting, it also takes quite<br>
long. I have around 600 entries and am using a smartcard, so I have to<br>
wait like five minutes to get a result. That just takes too long to be<br>
of any use.<br>
So I'm hoping for tadfisher to add a `pass otp ls` command with some<br>
kind of metadata cache.<br>
<br>
><br>
> Personally what I am currently doing is storing the otp string separately, and<br>
> I have to revert back to using the Pass CLI whenever I want to use it.<br>
> So for example I would have:<br>
><br>
> acount/<a href="mailto:name@email.com" target="_blank">name@email.com</a><br>
> account/otp<br>
><br>
<br>
Yes, that would be the naming approach, which would be easier to<br>
implement. But as I said, I also think it's a bit of a hack.<br>
_______________________________________________<br>
Password-Store mailing list<br>
<a href="mailto:Password-Store@lists.zx2c4.com" target="_blank">Password-Store@lists.zx2c4.com</a><br>
<a href="https://lists.zx2c4.com/mailman/listinfo/password-store" rel="noreferrer" target="_blank">https://lists.zx2c4.com/mailman/listinfo/password-store</a><br>
</blockquote></div>