password manager with openssl

gistfile1.sh

# To create a new credential file, use:
echo "credential file created on $(date +%Y%m%d)" |openssl aes-256-ecb -e -a -salt -out credential_file.encrypted


# =======================================


#!/usr/bin/env bash
# --- getpassword.sh
# opens the credential file and display it in the terminal

if [[ -x "$1" || ! -r "$1" ]]; then
echo "usage: $0 <ciphered file>"
    exit 1
fi
SECFILE=$1
CLEARTEXT=$(openssl aes-256-ecb -d -a -salt -in $SECFILE)
if [ $? -gt 0 ]; then
echo "Wrong password, cannot decrypt"
    exit $?
else
echo "$CLEARTEXT"
fi


# =======================================


#!/usr/bin/env bash
# --- storepassword.sh
# store a password in the credential file

if [[ $1 = "" || ! -r $1 ]]; then
echo "usage: $0 <ciphered file>"
    exit 1
fi
SECFILE=$1

# decipher access file
echo -n "enter crypto password > "
read -s CRYPTOPASSWD
echo
CLEARTEXT=$(openssl aes-256-ecb -d -a -salt -in $SECFILE -pass pass:$CRYPTOPASSWD)
if [ $? -gt 0 ]; then
echo "Wrong password, cannot decrypt"
    exit $?
fi

# get new value to store
echo "enter value to append (1 line)"
echo -n "> "
read PASSWD
UPDATED_CLEARTEXT=$(echo -e "$CLEARTEXT\n$PASSWD")

# cipher access file and delete temporary file
echo "$UPDATED_CLEARTEXT"| openssl aes-256-ecb -e -a -salt -out $SECFILE.updated -pass pass:$CRYPTOPASSWD
if [ $? -gt 0 ]
then
echo "Password encryption failed, password not stored in $SECFILE"
exit $?
else
mv $SECFILE.updated $SECFILE
    echo "information successfully encrypted and store in $SECFILE"
fi