plugin:encryptedpasswords
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
plugin:encryptedpasswords [2018-04-27 11:43] – dead email asheenlevrai | plugin:encryptedpasswords [2024-04-16 11:57] (current) – andi | ||
---|---|---|---|
Line 2: | Line 2: | ||
---- plugin ---- | ---- plugin ---- | ||
- | description: | + | description: |
- | author | + | author |
- | email : reszel@werbeagentur-willers.de | + | email : dokuwiki@cosmocode.de |
type : syntax, action | type : syntax, action | ||
- | lastupdate : 2016-06-13 | + | lastupdate : 2023-12-20 |
- | compatible : " | + | compatible : Hogfather, Igor |
depends | depends | ||
- | conflicts | + | conflicts |
similar | similar | ||
tags : convert, encryption, password | tags : convert, encryption, password | ||
- | downloadurl: | + | downloadurl: |
- | bugtracker : https:// | + | bugtracker : https:// |
- | sourcerepo : https:// | + | sourcerepo : https:// |
---- | ---- | ||
- | NOTE: It seems like the email of the author (WR) is not responding anymore as of 20180427 (already mentioned | + | This plugin |
- | Javascript must be enabled. | + | The encryption uses 256 bit AES-CBC symmetric encryption with the encryption key and IV derived from the given password using PKDF2 with SHA-256 using 10000 iterations. This is not the most secure mechanism available, but was chosen for it's compatibility with OpenSSL' |
- | Based on the [[http:// | + | All encryption |
- | ===== Download | + | This plugin was originally written by [[reszel@werbeagentur-willers.de|Wolfgang Reszel]] but has been rewritten for updated cryptography |
- | Download and install the plugin | + | The plugin |
- | ===== Syntax and Usage ===== | ||
- | This plugin is useful if you want to store passwords directly within your page. The passwords are stored encrypted in the wiki source files, so nobody is able to find out the passwords through the file system. | + | ===== Download and Installation ===== |
- | To encrypt text, just select your text and click the toolbar button with the grey key: '' | + | Search |
- | ==== Example ==== | + | Please note that the modern encryption mechanisms used within this Plugin require a modern Browser, JavaScript enabled and a wiki served via HTTPS! |
- | If you select "'' | + | |
- | foo | + | |
- | π | + | |
- | the text will be converted in the editor after encryption: | + | ==== Changes ==== |
- | < | + | {{rss>https://github.com/cosmocode/ |
- | 5FdZupHudezVSbKhlF2tmg==< | + | |
- | With version 2011-01-21 you can decrypt the text inside the editor by selecting a ''< | ||
+ | ===== Syntax and Usage ===== | ||
- | ===== Configuration | + | Passwords are encrypted |
- | The plugin can be configured with the configuration manager in the admin menu. | + | ==== Editing ==== |
- | ^'' | + | Passwords are entered in the editor using the '' |
- | ===== Decryption outside of this plugin ===== | + | When you save or preview any text in the editor that contains the ''< |
- | If for any reason | + | To decrypt passwords |
- | < | + | ==== Viewing ==== |
- | You can test it with password " | + | When a page contains one or more encrypted passwords, they can be decrypted clicking the lock icon behind them. Clicking the lock icon will decrypt |
- | ===== Development ===== | + | |
- | The plugin was first developed by Wolfgang Reszel, and had been available from:\\ [[http:// | + | Clicking a encrypted or decrypted password will automatically copy the clear text password into your clipboard. |
- | It found that the original download link and email contact are NOT reachable. | ||
- | For the moment, the plugin which is compatible with the DW " | ||
- | https:// | ||
- | --- [[user> | ||
- | === Change Log from github repository | + | ===== Configuration and Settings ===== |
- | {{rss> | + | |
- | === ToDo/Wish List === | + | The plugin can be configured with the configuration manager in the admin menu. |
- | * no immediate plan | + | |
- | ===== Known Bugs and Issues ===== | + | ^'' |
+ | ===== OpenSSL compatibility ===== | ||
- | ==== Does not work in Hrun ==== | + | This plugin stores secrets |
- | In version Hrun, it says I can enter the password twice to confirm, but after I click OK, it fails to let me enter the password again and nothing happens. Also the icon is blank and has no key image on it. | + | |
- | * Hello, i could solved this problem | + | Passwords encrypted |
- | + | < | |
- | + | $> echo ' | |
- | + | enter aes-256-cbc decryption password: test | |
- | ===== Known Bugs and Issues until 2013-03-13 release ===== | + | hello world |
- | https:// | + | |
- | + | ||
- | ==== Does not escape HTML characters ==== | + | |
- | + | ||
- | Using jQuery' | + | |
- | <code javascript> | + | |
- | jQuery(c).text(e).after('< | + | |
</ | </ | ||
- | ==== Broken by Ponder Stibbons release ==== | ||
- | First off, it appears the author' | ||
- | <code javascript> | ||
- | var selection = DWgetSelection(document.getElementById(' | ||
- | </ | ||
- | ==== Conflict with issuetracker ==== | + | Passwords encrypted using older versions of this plugin can be decrypted like this: |
- | The 2011-01-21 version of encryptedpasswords conflicts with [[doku>plugin: | + | <code> |
- | <code javascript> | + | $> echo 'U2FsdGVkX1/oynrOig+RoUwMNCHvJH2bcmQeAq2xaLI=' | openssl base64 -d |openssl aes-256-cbc -d -md md5 |
- | if (!Array.indexOf) { | + | enter aes-256-cbc decryption password: test |
- | Array.prototype.indexOf = function(a, b) { | + | *** WARNING : deprecated key derivation used. |
- | for (var i = (b || 0); i < this.length; | + | Using -iter or -pbkdf2 would be better. |
- | if (this[i] == a) { | + | hello world |
- | return i | + | |
- | } | + | |
- | } | + | |
- | return | + | |
- | } | + | |
- | } | + | |
</ | </ | ||
- | > Thanks for the report. I updated the plugin for Dokuwiki Angua and also replaced the old Gibberish AES with the latest Version which has not that conflicting code. I hope this will fix this issue too. -- Wolfgang | ||
- | |||
- | |||
- | ==== JS compression is breaking code ==== | ||
- | |||
- | > Hi, it seems that the JAVASCRIPT compression is breaking your code. At least I get an error in file '' | ||
- | |||
- | ==== Not compatible with Ponder Stibbons (?) ==== | ||
- | |||
- | After dokuwiki update for Ponder Stibbons, I had problems when editing or creating encrypted content. I have not done an isolated test yet (new installation with this plugin only). As soon as I test it, I'll post the results. Thanks. | ||
- | |||
- | ==== Fix for Ponder Stibbons release ==== | ||
- | |||
- | Hi everyone, We only need to change a line in // | ||
- | |||
- | // | ||
- | <code javascript> | ||
- | var selection = getSelection(document.getElementById(' | ||
- | </ | ||
- | |||
- | //After// | ||
- | <code javascript> | ||
- | var selection = DWgetSelection(document.getElementById(' | ||
- | </ | ||
- | |||
- | > See above [[#Broken by Ponder Stibbons release]] | ||
- | ===== Feature Requests ===== | ||
- | Thank you very much for this plugin, it is really a pleasure to use it. But after using it for a while i have two feature-requests, | ||
- | |||
- | 1. If you decrypt something, the page hops to the top. This is anoying especially for long pages, would be nice if the page stays where it was. | ||
- | |||
- | 2. If you decrypt something, everything with the same key will be decrypted too. Would be nice to set an option to choose if all are encrypted at once. I solved this temporary by adding an random generated number to the link, but thats not really well solved. Thank you very much. | ||
- | |||
- | 3. I use a modified DW template with a black background (text color is white). Now, whenever I encode some password using this plugin, the little dots replacing the password are blue (as a link) and they are located inside a white rectangle (I guess this one is not visible on a white background). Upon decryption of the encoded password, the text is displayed in **white** inside the white rectangle and is thus unreadable (I can " | ||
- | |||
- | --- [[user> | ||
- | Great great plugin! thanks a lot! I've only a request to make that plugin perfect: When I decrypt the page if I export to PDF I export the encrypted password only, would be great to export to pdf the clear text passwords if they are decrpyted before. Thankyou very much! | ||
- | |||
- | 5. Hi it is possible to make this plugin compatible with the plugin edtitable? https:// | ||
- | 6. A global encryption key would be great rather than setting it for each password. | ||
- | > --- [[user> |
plugin/encryptedpasswords.1524822197.txt.gz · Last modified: 2018-04-27 11:43 by asheenlevrai