Crate lair_keystore_lib[−][src]
Expand description
Secret lair private keystore
lair-keystore --help
lair_keystore 0.1.0-alpha.5
secret lair private keystore
USAGE:
lair-keystore [OPTIONS] <SUBCOMMAND>
FLAGS:
-h, --help Prints help information
-V, --version Prints version information
OPTIONS:
-r, --lair-root <lair-root> Lair root storage and config directory [env: LAIR_ROOT=] [default: .]
SUBCOMMANDS:
help Prints this message or the help of the given subcommand(s)
import-seed Load a seed bundle into this lair-keystore instance.
Note, this operation requires capturing the pid_file,
make sure you do not have a lair-server running.
Note, we currently only support importing seed bundles
with a pwhash cipher. We'll try the passphrase you
supply with all ciphers used to lock the bundle.
init Set up a new lair private keystore.
server Run a lair keystore server instance. Note you must
have initialized a config file first with
'lair-keystore init'.
url Print the connection_url for a configured lair-keystore
server to stdout and exit.
lair-keystore init --help
lair-keystore-init 0.1.0-alpha.5
Set up a new lair private keystore.
USAGE:
lair-keystore init [FLAGS]
FLAGS:
-h, --help Prints help information
-p, --piped Instead of the normal "interactive" method of passphrase
retrieval, read the passphrase from stdin. Be careful
how you make use of this, as it could be less secure,
for example, make sure it is not saved in your
`~/.bash_history`.
-V, --version Prints version information
lair-keystore url --help
lair-keystore-url 0.1.0-alpha.5
Print the connection_url for a configured lair-keystore
server to stdout and exit.
USAGE:
lair-keystore url
FLAGS:
-h, --help Prints help information
-V, --version Prints version information
lair-keystore import-seed --help
lair-keystore-import-seed 0.1.0-alpha.5
Load a seed bundle into this lair-keystore instance.
Note, this operation requires capturing the pid_file,
make sure you do not have a lair-server running.
Note, we currently only support importing seed bundles
with a pwhash cipher. We'll try the passphrase you
supply with all ciphers used to lock the bundle.
USAGE:
lair-keystore import-seed [FLAGS] <tag> <seed-bundle-base64>
FLAGS:
-d, --deep-lock Specify that this seed should be loaded as a
"deep-locked" seed. This seed will require an
additional passphrase specified at access time
(signature / box / key derivation) to decrypt the seed.
-h, --help Prints help information
-p, --piped Instead of the normal "interactive" method of passphrase
retreival, read the passphrase from stdin. Be careful
how you make use of this, as it could be less secure.
Passphrases are newline delimited in this order:
- 1 - keystore unlock passphrase
- 2 - bundle unlock passphrase
- 3 - deep lock passphrase
(if -d / --deep-lock is specified)
-V, --version Prints version information
ARGS:
<tag> The identification tag for this seed.
<seed-bundle-base64> The base64url encoded hc_seed_bundle.
lair-keystore server --help
lair-keystore-server 0.1.0-alpha.5
Run a lair keystore server instance. Note you must
have initialized a config file first with
'lair-keystore init'.
USAGE:
lair-keystore server [FLAGS]
FLAGS:
-h, --help Prints help information
-p, --piped Instead of the normal "interactive" method of passphrase
retreival, read the passphrase from stdin. Be careful
how you make use of this, as it could be less secure,
for example, make sure it is not saved in your
`~/.bash_history`.
-V, --version Prints version information
Modules
re-exported dependencies
Utilities for dealing with pid files.
standalone binary server
lair store backed by a sqlite / sqlcipher database file
Constants
Lair Version