Add a pass backend as alternative to the Linux keyring to retrieve the shibboleth credentials
#32
Labels
enhancement
New feature or request
Comments
|
I'd accept this new option. KIT-ILIAS-downloader/src/cli.rs Line 150 in f21c024
FWIW, I'm currently using the secret service integration included in KeepassXC (because it can be set up to require confirmation on each password access, unlike KWallet). |
Ma27
added a commit
to Ma27/KIT-ILIAS-downloader
that referenced
this issue
Jul 10, 2022
`pass(1)`[1] is a small CLI-based password manager. When passing
`--pass-path edu/kit/uXXXX` to `KIT-ILIAS-Downloader`, it now attempts
to retrieve the password from `pass(1)`.
It is assumed that `pass(1)` is available in the `$PATH` of the process. If
that's not the case, it errors out with an error like this:
Error: credentials input failed
Caused by:
pass not found in $PATH!
It's also taken care of the case where the value `--pass-path` is not
present in the store, the error will look like this:
Error: credentials input failed
Caused by:
`pass` failed with non-zero exit code 1: Error: edu/kit/uXXXX is not in the password store.
Closes FliegendeWurst#32
[1] https://www.passwordstore.org/
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Rather than using e.g. KWallet or gnome-keyring, I prefer to manage all my credentials with
pass(1).I'm not aware of any integration between the freedesktop secret-manager standard and
pass, also it doesn't seem so uncommon to provide different backends depending on where to retrieve credentials, see for instance how aws-vault does this. The primary downside of course would be the increased maintenance load.The integration could basically look like this:
for using the system keyring or
with
--pass-prefixand--keyringbeing mutually exclusive.Would you be open to accept such a change? If yes, I may take some time soonish(tm) and implement that :)
The text was updated successfully, but these errors were encountered: