Feature Request: Reading/Writing secrets using a command #122
Description
Current:
client_secretsis a path to a file egclient_secrets = "/path/to/client_secret.json"- tokens are written to config dir
would it be possible to have these values not be as file but rather made available as commands (to work with secret stores eg. mac os security find-generic-password ... and security add-generic-password ?
Maybe something along the line of
read.command = ["/Users/jdoe/.config/msgvault/read.sh"]
write.command = ["/Users/jdoe/.config/msgvault/write.sh"]
- names are WIP,
write.commandforwards token via STDIN to cmd- additional config checks need to be made if
client_secretsis already defined.
Advantages:
- secrets are not unencrypted on disk
Disadvantages:
- extra config work