Skip to content

ansd/lastpass-resource

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
assets
assets
 
 
test
test
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

Concourse LastPass Resource

Tracks LastPass items.

Use Cases

  • Get notified whenever someone adds or updates an item (e.g. in a shared folder).
  • Incremental backups.

Source Configuration

  • username: Required. LastPass account user name.

  • password: Required. LastPass account master password.

Example

This pipeline prints each added or updated LastPass item:

---
resource_types:
- name: lpass-type
  type: docker-image
  source:
    repository: ansd/lastpass
    tag: 0.1.1

resources:
- name: lpass-res
  type: lpass-type
  source:
    username: ((username))
    password: ((masterpassword))

jobs:
- name: lpass-job
  plan:
  - get: lpass-res
    trigger: true
    version: every
  - task: print-item
    config:
      platform: linux
      image_resource:
        type: docker-image
        source: {repository: alpine}
      inputs:
        - name: lpass-res
      run:
        path: cat
        args: ["lpass-res/item"]

Behavior

check: Check for new and updated items.

All LastPass items are listed, and any items modified after the given version's last_modified_gmt timestamp are returned.

The version consists of <last_modified_gmt>_<id>.

If no version is given, the latest modified item is returned.

in: Show the item with the given ID.

Writes the JSON representation of the item with the given id and last_modified_gmt to the file called item.

out: No-op.

Notes

  • Two-factor authentication should be disabled (unless you want to manually approve push notifications for every new Concourse LastPass resource container).
  • There is a paid plan called "LastPass Identity". With this plan, you can create a separate CI user and assign this user an IP policy that whitelists the public IP addresses of the Concourse workers blocking all other IP addresses by default. You can also whitelist the DNS name of the Concourse workers (based on reverse DNS lookup of their IP addresses). This adds security given that two-factor authentication is disabled.
  • If you don't want to pay for "LastPass Identity", make sure to at least restrict logins to the country where the Concourse workers run in Account Settings -> General -> Show Advanced Settings -> Country Restriction.
  • If the first Concourse containers are failing you should check your inbox for e-mails with the subject LastPass Verification Email to verify the new location or device. You can disable e-mail verification in Account Settings -> General -> Show Advanced Settings -> Disable Email Verification.

Development

Running the tests

make tests

About

Concourse LastPass Resource

Topics

pipeline ci concourse concourse-resource lastpass

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

2 tags

Packages

No packages published

Languages