secret-key
Advanced tools
A simple generator and validator for human-readable Base32-Crockford encoded Secret Keys.
A simple generator and validator for human-readable Base32-Crockford encoded Secret Keys.
You can install secret-key with NPM.
npm install secret-key
const secretKey = require('secret-key');
console.log(secretKey.create('1EEA6DC-JAM4DP2-PHVYPBN-V0XCJ9X'));
Output:
{ secret: 'CDDPMWJ-EYEZXNC-2K39BYN',
iv: '64d8291b-5ede-4a81-8c29-4decf35f4b85',
timestamp: 1499292145146 }
secret-key installs with a command line tool. The tool is available using the command secretKeyTool which can be install globally using:
npm install secret-key -g
$ secretkeyTool.js
Usage: secretKeyTool [options]
Options:
-V, --version output the version number
-g, --generate Create a new Secret Key using the encryption key (-e) provided.
-c, --check Check the Secret Key against the Encryption Key, IV, and timestamp
-e, --enckey <enckey> Encryption Key to use for generation and checking
-i, --iv <iv> Initialization Vector used to create or check a secret key. Note: This should be a UUID.
-t, --timestamp <timestamp> Timestamp used to create or check a secret key. Note: This should be a UNIX timestamp integer.
-s, --secret <secret> Secret Key to check
-h, --help output usage information
$ secretkeyTool.js -g -e MySecret
EncKey(MySecret)
Secret(SY9X853-WGJJTF2-5EVFGXR)
IV(036a41f6-f143-4dcf-bff6-d39381ba2ff6)
timestamp(1508266932343)
$ secretkeyTool.js -c -e 12341234 -t 1508266623562 -i 43c74c93-5a29-486a-adc4-7bbdfd723513 -s XR2WF03-RPVR95E-5ES44JM
Secret & Generation Values [EncKey, IV, Timestamp] match [true]
Tests that a secret matches the passphrase, iv, and timestamp provided. Throws a ReferenceError if any of the parameters are missing.
let passphrase = '1EEA6DC-JAM4DP2-PHVYPBN-V0XCJ9X';
let secret = 'CDDPMWJ-EYEZXNC-2K39BYN';
let iv = '64d8291b-5ede-4a81-8c29-4decf35f4b85';
let timestamp = 1499292145146;
secretKey.check(passphrase, secret, iv, timestamp);
Output:
true
Tests that the source secret matched the target secret. Throws a ReferenceError if any of the parameters are missing.
let source = 'HQYOT19-JMXGQLH-333GFQK';
let target = 'HQY0T19-JMXGQ1H-333GFQK';
secretKey.compare(source, target);
Output:
true
Returns a new secret key with iv and timestamp for reverse verification. If no iv is passed, then a new uuid created and used. If no timestamp is passed, then the current time is used. If no passphrase is passed, then a ReferenceError is thrown indicating that the required parameter is missing
secretKey.create('1EEA6DC-JAM4DP2-PHVYPBN-V0XCJ9X');
Output:
{ secret: 'CDDPMWJ-EYEZXNC-2K39BYN',
iv: '64d8291b-5ede-4a81-8c29-4decf35f4b85',
timestamp: 1499292145146 }
Copyright © 2017-2021 Jay Reardon -- Licensed under the MIT license.
FAQs
A simple generator and validator for human-readable Base32-Crockford encoded Secret Keys.
We found that secret-key demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
OpenAI rotated macOS signing certificates after a malicious Axios package reached its CI pipeline in a broader software supply chain attack.
Security News
Open source is under attack because of how much value it creates. It has been the foundation of every major software innovation for the last three decades. This is not the time to walk away from it.
Security News
Socket CEO Feross Aboukhadijeh breaks down how North Korea hijacked Axios and what it means for the future of software supply chain security.