Skip to content

supercaracal/scram-sha-256

1 Branch4 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

supercaracalsupercaracal
chore: rename some namings and add some profilings to the ci (#13)
Feb 12, 2024
ae445ef · Feb 12, 2024

History

34 Commits
.github/workflows
.github/workflows
Feb 12, 2024
cmd
cmd
Feb 12, 2024
docs
docs
Feb 12, 2024
pkg/pgpasswd
pkg/pgpasswd
Feb 12, 2024
.gitignore
.gitignore
Feb 12, 2024
.goreleaser.yaml
.goreleaser.yaml
Feb 10, 2024
LICENSE
LICENSE
Jun 26, 2021
Makefile
Makefile
Feb 12, 2024
README.md
README.md
Feb 12, 2024
go.mod
go.mod
Feb 9, 2024
go.sum
go.sum
Feb 9, 2024

Repository files navigation

scram-sha-256

This is a password-encryption tool for PostgreSQL with scram-sha-256. You can encrypt your raw password by the command-line tool or the GitHub Pages.

Installation

Please download an executable file from release pages.

Usage

$ scram-sha-256
Raw password:
SCRAM-SHA-256$4096:Wj5Wd30IrYzvZxJJ5NSuNg==$27HbcXbdKQd55FvzhEFq8DpPKQBRCvcnOOYFJ07Fr7s=:CibjLDWHtzbFjhSejBWcRkRGmuB2njOC8GxDh3gSwrE=

$ scram-sha-256 mysecret
SCRAM-SHA-256$4096:1Iuyc2XTVSv/GFgCWSv9Xw==$nU96dFyIuV+uWwiOly7HU5yinIJh55GsItyFAYrU2sc=:fEC668A2ufIsGS+9WC8xqD0hHvHQBbLiDxZ8hWlwkCw=

$ echo -n mysecret | scram-sha-256
SCRAM-SHA-256$4096:67e60Pre+3h6dhUm+K2tWA==$MRZtokLiZoWqNLf05HKH7STvtAtWEOy1CZU+vg9hj/M=:jzbp7PPDFT8aBPuFk91KBO2HswNJrvMMuMkUgR1LClI=

$ echo mysecret | scram-sha-256
SCRAM-SHA-256$4096:wvtRpXoTijsOR2py/yjIjQ==$iQV2GGKBAnN3v339hDOSZWxbl7YH8I3ERh+RCHjOqGQ=:Ea9Pyj4/IR53wmdCISCIOsSINUirJzz6EzD0NJqa05M=

import "github.com/supercaracal/scram-sha-256/pkg/pgpasswd"

func doSomething(rawPassword []byte) error {
    encrypted, err := pgpasswd.Encrypt(rawPassword)
    if err != nil {
        return err
    }

    // do something
    return nil
}

Build locally

$ git clone https://github.com/supercaracal/scram-sha-256.git
$ cd scram-sha-256/
$ make term
$ ./cmd/term/encrypt
Raw password:
SCRAM-SHA-256$4096:Mg8UNqSaPstxvBVRVYPQTw==$Zl7Rhln+rus3z+4YwC+7CgL/uKSUvqWH8mHMUizh1EI=:G9dSawW20CNLxTnZdcwHEHg9U9hG2noNEV2/t7ptq3s=

Testing

$ docker run --rm --name=test -e POSTGRES_PASSWORD=postgres -e POSTGRES_INITDB_ARGS=--auth-host=scram-sha-256 -e PGUSER=postgres postgres

$ docker exec -it test bash -c 'cat | psql'
## type the following SQL
CREATE ROLE test WITH LOGIN PASSWORD 'SCRAM-SHA-256$4096:Mg8UNqSaPstxvBVRVYPQTw==$Zl7Rhln+rus3z+4YwC+7CgL/uKSUvqWH8mHMUizh1EI=:G9dSawW20CNLxTnZdcwHEHg9U9hG2noNEV2/t7ptq3s='
## press Ctrl-D
CREATE ROLE

$ docker exec -it test psql -c 'SELECT usename, passwd FROM pg_catalog.pg_shadow'
 usename  |                                                                passwd                                                                 
----------+---------------------------------------------------------------------------------------------------------------------------------------
 postgres | SCRAM-SHA-256$4096:N+t+PZUQAu25roNaMJiQIw==$MNmcJjqjLwfWBTvKq2zRCWSWPFQX6KnDqqyrqA1XU5g=:jL3qX7jzS4wSP1rOmEbbmLReYL98WeKukK8SfLcdpvU= 
 test     | SCRAM-SHA-256$4096:Mg8UNqSaPstxvBVRVYPQTw==$Zl7Rhln+rus3z+4YwC+7CgL/uKSUvqWH8mHMUizh1EI=:G9dSawW20CNLxTnZdcwHEHg9U9hG2noNEV2/t7ptq3s= 
(2 rows)

$ docker exec -it test psql -h 127.0.0.1 -U test -W -d postgres -c 'SELECT 1'
Password:
 ?column?
----------
        1
(1 row)

$ docker stop test

About

Password-encryption tool for PostgreSQL with scram-sha-256

supercaracal.github.io/scram-sha-256/

Topics

postgresql scram-sha-256

Resources

Readme

License

MIT license
Activity

Stars

66 stars

Watchers

5 watching

Forks

6 forks
Report repository

Releases 4

v1.0.3 Latest
Feb 10, 2024
+ 3 releases

Languages