plugin:encryptedpasswords
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
plugin:encryptedpasswords [2016-06-24 16:24] – [Feature Requests] 213.48.152.100 | plugin:encryptedpasswords [2024-04-16 11:57] (current) – andi | ||
---|---|---|---|
Line 2: | Line 2: | ||
---- plugin ---- | ---- plugin ---- | ||
- | description: | + | description: |
- | author | + | author |
- | email : reszel@werbeagentur-willers.de | + | email : dokuwiki@cosmocode.de |
type : syntax, action | type : syntax, action | ||
- | lastupdate : 2015-09-25 | + | lastupdate : 2023-12-20 |
- | compatible : binky, " | + | compatible : Hogfather, Igor |
depends | depends | ||
- | conflicts | + | conflicts |
similar | similar | ||
tags : convert, encryption, password | tags : convert, encryption, password | ||
- | downloadurl: | + | downloadurl: |
- | bugtracker : https:// | + | bugtracker : https:// |
- | sourcerepo : https:// | + | sourcerepo : https:// |
---- | ---- | ||
- | Javascript must be enabled. | + | This plugin is useful if you want to store passwords, API Keys or other secrets directly within your page. The passwords are stored encrypted in the wiki source files, so nobody is able to find out the passwords through the file system. |
- | Based on the [[http:// | + | The encryption uses 256 bit AES-CBC symmetric encryption with the encryption key and IV derived from the given password using PKDF2 with SHA-256 using 10000 iterations. This is not the most secure mechanism available, but was chosen for it's compatibility with OpenSSL' |
- | ===== Download | + | All encryption |
- | Download and install the plugin | + | This plugin |
- | ===== Syntax and Usage ===== | + | The plugin is compatible with older releases of the plugin which used a MD5 based key derision function. Old style passwords will be decrypted using MD5 but any new encryption will use the new SHA-256 PKDF2 method. |
- | This plugin is useful if you want to store passwords directly within your page. The passwords are stored encrypted in the wiki source files, so nobody is able to find out the passwords through the file system. | ||
- | To encrypt text, just select your text and click the toolbar button with the grey key: '' | + | ===== Download |
- | ==== Example ==== | + | Search and install |
- | If you select "'' | + | |
- | foo | + | |
- | π 3.14159265358979 | + | |
- | the text will be converted in the editor after encryption: | + | Please note that the modern |
- | < | + | |
- | 5FdZupHudezVSbKhlF2tmg==</ | + | |
- | With version 2011-01-21 you can decrypt the text inside the editor by selecting a ''< | + | ==== Changes ==== |
+ | {{rss>https:// | ||
- | ===== Configuration | + | ===== Syntax |
- | The plugin can be configured | + | Passwords are encrypted and decrypted |
- | ^'' | + | ==== Editing ==== |
- | ===== Decryption outside of this plugin | + | Passwords are entered in the editor using the ''< |
- | If for any reason | + | When you save or preview |
- | < | + | To decrypt passwords in the editor (eg. to change them) use the " |
- | You can test it with password " | + | ==== Viewing |
- | ===== Development ===== | + | |
- | The plugin was first developed by Wolfgang Reszel, and had been available from:\\ [[http:// | + | When a page contains one or more encrypted passwords, they can be decrypted clicking the lock icon behind them. Clicking the lock icon will decrypt |
- | It found that the original download link and email contact are NOT reachable. | + | Clicking a encrypted or decrypted password will automatically copy the clear text password into your clipboard. |
- | For the moment, the plugin which is compatible with the DW " | + | |
- | https:// | + | |
- | --- [[user> | + | |
- | === Change Log from github repository === | ||
- | {{rss> | ||
- | === ToDo/Wish List === | + | ===== Configuration and Settings ===== |
- | * no immediate plan | + | |
- | ===== Known Bugs and Issues ===== | + | The plugin can be configured with the configuration manager in the admin menu. |
+ | ^'' | ||
- | ==== Does not work in Hrun ==== | + | ===== OpenSSL compatibility ===== |
- | In version Hrun, it says I can enter the password twice to confirm, but after I click OK, it fails to let me enter the password again and nothing happens. Also the icon is blank and has no key image on it. | + | |
- | * Hello, i could solved this problem with reinstalling this plugin. | + | This plugin |
+ | Passwords encrypted with the current version of the plugin can be decrypted like this: | ||
- | + | < | |
- | + | $> echo ' | |
- | ===== Known Bugs and Issues until 2013-03-13 release ===== | + | enter aes-256-cbc decryption password: test |
- | https:// | + | hello world |
- | + | ||
- | ==== Does not escape HTML characters ==== | + | |
- | + | ||
- | Using jQuery' | + | |
- | <code javascript> | + | |
- | jQuery(c).text(e).after('< | + | |
</ | </ | ||
- | ==== Broken by Ponder Stibbons release ==== | ||
- | First off, it appears the author' | ||
- | <code javascript> | ||
- | var selection = DWgetSelection(document.getElementById(' | ||
- | </ | ||
- | ==== Conflict with issuetracker ==== | + | Passwords encrypted using older versions of this plugin can be decrypted like this: |
- | The 2011-01-21 version of encryptedpasswords conflicts with [[doku>plugin: | + | <code> |
- | <code javascript> | + | $> echo 'U2FsdGVkX1/oynrOig+RoUwMNCHvJH2bcmQeAq2xaLI=' | openssl base64 -d |openssl aes-256-cbc -d -md md5 |
- | if (!Array.indexOf) { | + | enter aes-256-cbc decryption password: test |
- | Array.prototype.indexOf = function(a, b) { | + | *** WARNING : deprecated key derivation used. |
- | for (var i = (b || 0); i < this.length; | + | Using -iter or -pbkdf2 would be better. |
- | if (this[i] == a) { | + | hello world |
- | return i | + | |
- | } | + | |
- | } | + | |
- | return | + | |
- | } | + | |
- | } | + | |
</ | </ | ||
- | > Thanks for the report. I updated the plugin for Dokuwiki Angua and also replaced the old Gibberish AES with the latest Version which has not that conflicting code. I hope this will fix this issue too. -- Wolfgang | ||
- | |||
- | |||
- | ==== JS compression is breaking code ==== | ||
- | |||
- | > Hi, it seems that the JAVASCRIPT compression is breaking your code. At least I get an error in file '' | ||
- | |||
- | ==== Not compatible with Ponder Stibbons (?) ==== | ||
- | |||
- | After dokuwiki update for Ponder Stibbons, I had problems when editing or creating encrypted content. I have not done an isolated test yet (new installation with this plugin only). As soon as I test it, I'll post the results. Thanks. | ||
- | |||
- | ==== Fix for Ponder Stibbons release ==== | ||
- | |||
- | Hi everyone, We only need to change a line in // | ||
- | |||
- | // | ||
- | <code javascript> | ||
- | var selection = getSelection(document.getElementById(' | ||
- | </ | ||
- | |||
- | //After// | ||
- | <code javascript> | ||
- | var selection = DWgetSelection(document.getElementById(' | ||
- | </ | ||
- | |||
- | > See above [[#Broken by Ponder Stibbons release]] | ||
- | ===== Feature Requests ===== | ||
- | Thank you very much for this plugin, it is really a pleasure to use it. But after using it for a while i have two feature-requests, | ||
- | |||
- | 1. If you decrypt something, the page hops to the top. This is anoying especially for long pages, would be nice if the page stays where it was. | ||
- | |||
- | 2. If you decrypt something, everything with the same key will be decrypted too. Would be nice to set an option to choose if all are encrypted at once. I solved this temporary by adding an random generated number to the link, but thats not really well solved. Thank you very much. | ||
- | |||
- | 3. I use a modified DW template with a black background (text color is white). Now, whenever I encode some password using this plugin, the little dots replacing the password are blue (as a link) and they are located inside a white rectangle (I guess this one is not visible on a white background). Upon decryption of the encoded password, the text is displayed in **white** inside the white rectangle and is thus unreadable (I can " | ||
- | |||
- | --- [[user> | ||
- | Great great plugin! thanks a lot! I've only a request to make that plugin perfect: When I decrypt the page if I export to PDF I export the encrypted password only, would be great to export to pdf the clear text passwords if they are decrpyted before. Thankyou very much! | ||
- | |||
- | 5. Hi it is possible to make this plugin compatible with the plugin edtitable? https:// | ||
- | 6. A global encryption key would be great rather than setting it for each password. |
plugin/encryptedpasswords.1466778298.txt.gz · Last modified: 2016-06-24 16:24 by 213.48.152.100