Improve path_to_fido2_key #83

New issue

Closed

opened 2025-10-13 11:33:18 +02:00 by mfocko · 1 comment

mfocko commented 2025-10-13 11:33:18 +02:00

Owner

Copy link

Currently path_to_fido2_key script deduces at least one connected Yubikey, but my git setup supports multiple sources of keys:

• implicit SSH agent (for macOS default from nixpkg, for Linux-based keyrings) that handles Yubikeys as well
• Bitwarden SSH agent
• 1password SSH agent
• GPG SSH agent

Notes

It may not be possible to support 1password's for git signing, as it has additional setup within gitconfig.

GPG SSH agent should be fine, as it enrolls the key in the SSH agent.

Probably the best approach is taking whatever's enrolled in the current SSH agent.

Currently `path_to_fido2_key` script deduces at least one connected Yubikey, but my git setup supports multiple sources of keys: - implicit SSH agent (for macOS default from nixpkg, for Linux-based keyrings) that handles Yubikeys as well - Bitwarden SSH agent - 1password SSH agent - GPG SSH agent ## Notes It may not be possible to support 1password's for git signing, as it has additional setup within gitconfig. GPG SSH agent should be fine, as it enrolls the key in the SSH agent. Probably the best approach is taking whatever's enrolled in the current SSH agent.

mfocko added the

roles

git

kind

feature

labels 2025-10-13 11:33:23 +02:00

mfocko commented 2025-11-29 15:16:29 +01:00

Author

Owner

Copy link

Probably the best approach is taking whatever's enrolled in the current SSH agent.

I call bullshit, doesn't mean that key can be used for signing 🤦

> Probably the best approach is taking whatever's enrolled in the current SSH agent. I call bullshit, doesn't mean that key can be used for signing 🤦

mfocko referenced this issue from a commit 2025-11-29 15:44:59 +01:00

fix(git): dynamically resolve SSH key for signing

mfocko closed this issue 2025-11-29 15:44:59 +01:00

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

feat/hashicorp_vault

chore/rename-roles

todo

No results found.

Labels

Clear labels   

blocker

Blocked issue or PR

  

distro

fedora

  

distro

openSUSE

  

kind

bug

  

kind

feature

  

kind

research

  

roles

git

  

roles

shell_zsh

  

roles

terminal_ghostty

  

server

No labels

blocker

distro

fedora

distro

openSUSE

kind

bug

kind

feature

kind

research

roles

git

roles

shell_zsh

roles

terminal_ghostty

server

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

mfocko/dotfiles#83

No description provided.