Generate Google Service Account tokens with your YubiKey
Project description
google-yubikey
Generate Google Service Account tokens with your YubiKey!
This is perhaps the most secure way to use Google credentials outside of Google Cloud, since the private key never leaves the device, and so it cannot be leaked or stolen without physically stealing the YubiKey.
Requirements
YubiKey 4+
Setup
pip3 install google-yubikey
Usage
-
Run this only once to set up a private key on the YubiKey, or to renew it after expiration:
google-yubikey private-key
-
Run this once to register YubiKey with each Service Account:
google-yubikey public-key -a <service_account_email>
-
Run this every time you'd like to generate a Service Account token:
google-yubikey token -a <service_account_email>
-
Further customization options are available through:
google-yubikey [<command>] -h
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
google-yubikey-0.1.1.tar.gz
(5.1 kB
view hashes)
Built Distribution
Close
Hashes for google_yubikey-0.1.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | b0627c246fb2eaad0882361b7e32e26ee7162456388cfbba25ea73365ae57143 |
|
MD5 | 4a9a4200f96ee22e369267a2897f43c0 |
|
BLAKE2b-256 | 8c8c95ede7dc4102793b564aa44edf3a5b174ce71b7300586f8aeab113f9cd37 |