From 1169e6390c01adbc40a28587b19c794d5d6ca91d Mon Sep 17 00:00:00 2001 From: Ayrris Aunario Date: Thu, 27 Jun 2024 17:28:54 -0500 Subject: [PATCH] KeePass export: add support for Pleasant Password's TOTP-data schema (KC-786) --- keepercommander/importer/keepass/keepass.py | 7 ++++ keepercommander/utils.py | 40 ++++++++++++++++++++- 2 files changed, 46 insertions(+), 1 deletion(-) diff --git a/keepercommander/importer/keepass/keepass.py b/keepercommander/importer/keepass/keepass.py index 652f88c92..a1040281f 100644 --- a/keepercommander/importer/keepass/keepass.py +++ b/keepercommander/importer/keepass/keepass.py @@ -28,6 +28,7 @@ Record, Folder, SharedFolder, BytesAttachment, RecordField from ... import utils from ...display import bcolors +from ...utils import parse_totp_uri _REFERENCE = r'\{REF:([TUPAN])@([IT]):([^\}]+)\}' @@ -326,6 +327,12 @@ def do_export(self, filename, records, file_password=None, **kwargs): for cf in r.fields: if cf.type == 'oneTimeCode': entry.otp = cf.value + # Set custom fields for Pleasant Password TOTP compatibility + totp_props = parse_totp_uri(cf.value) + for key in ['secret', 'period', 'issuer', 'digits']: + val = totp_props.get(key) + val and entry.set_custom_property(f'TOTP{key.capitalize()}', str(val)) + continue if cf.type and cf.label: title = f'${cf.type}:{cf.label}' diff --git a/keepercommander/utils.py b/keepercommander/utils.py index 5d70a8918..1278dc76c 100644 --- a/keepercommander/utils.py +++ b/keepercommander/utils.py @@ -14,7 +14,7 @@ import math import re import time -from urllib.parse import urlparse +from urllib.parse import urlparse, parse_qs, unquote from . import crypto from .constants import EMAIL_PATTERN @@ -320,3 +320,41 @@ def size_to_str(size): # type: (int) -> str return f'{size:.2f} Mb' size = size / 1024 return f'{size:,.2f} Gb' + +def parse_totp_uri(uri): # type: (str) -> Dict[str, Union[str, int, None]] + def parse_int(val): + return val and int(val) + + def decode_uri_component(component): # type: (str) -> str + return unquote(component or '').strip() + + result = dict() + + if not uri: + return result + + parsed = urlparse(uri) + if parsed.scheme == 'otpauth': + label = re.sub(r'^/+', '', parsed.path or '') + parts = re.split(r':|%3A', label) + parts = [part for part in parts if part] + account_name = len(parts) and parts.pop() + issuer = len(parts) and parts.pop() + + parsed = parse_qs(parsed.query) + + issuers = parsed.get('issuer') + secrets = parsed.get('secret') + algorithms = parsed.get('algorithm') + digits_vals = parsed.get('digits') + periods = parsed.get('period') + result = { + 'issuer': decode_uri_component(issuers and next(iter(issuers)) or issuer), + 'account': decode_uri_component(account_name), + 'secret': secrets and next(iter(secrets)), + 'algorithm': algorithms and next(iter(algorithms)) or 'SHA1', + 'digits': parse_int(digits_vals and next(iter(digits_vals))) or 6, + 'period': parse_int(periods and next(iter(periods))) or 30 + } + + return result