Dear Fedora KDE team,
I am reaching out for assistance with an issue I'm encountering regarding the storage of SSH key passwords in the KDE Wallet. I have set up my environment to prompt for my SSH key password using a graphical dialog, but I am facing difficulties with having the password stored or reused by KDE Wallet.
1.
*Configuration Details*: I have configured my system by setting the SSH_ASKPASS and SSH_ASKPASS_REQUIRE environment variables in ~/.config/environment.d/ssh_askpass.conf with the following contents SSH_ASKPASS=/usr/bin/ksshaskpass SSH_ASKPASS_REQUIRE=prefer This setup successfully triggers a dialog box asking for my SSH key password. 2.
*Issue*: Although the dialog appears and allows me to enter my password, it does not store the password in the KDE Wallet, nor does it seem to retrieve or use any stored passwords from there. 3.
*Current Workaround*: Currently, the only method that results in the desired behavior is by exporting these variables directly in a terminal session, which is not ideal for system-wide or automated use. 4.
*Question*: Could you provide guidance on how this integration is supposed to function? Specifically, I am looking to understand the correct setup to ensure that SSH passwords are both stored in and retrieved from the KDE Wallet seamlessly.
I appreciate any documentation, tips, or personal experiences you could share regarding this matter. Thank you very much for your support and for the contributions you make to the Fedora KDE community.
Best regards,
On 9 May 2024, at 14:08, Lukas Ruzicka lruzicka@redhat.com wrote:
Current Workaround: Currently, the only method that results in the desired behavior is by exporting these variables directly in a terminal session, which is not ideal for system-wide or automated use.
Are you reporting that the env var are not setup from ~/.config/environment.d/ssh_askpass.conf ?
I set the env vars in my .bash_profile and ksshaskpass works for me.
I also load my keys into ssh agent on login as a start task. I use the line
ssh-add path-of-key </dev/null
The use of /dev/null is important to force the ask program to run.
On first use i was prompted to fill in the passphrase and layer logins no prompt as the passphrase to read from the wallet.
Barry
Hi Barry, thanks for your reply.
Are you reporting that the env var are not setup from ~/.config/environment.d/ssh_askpass.conf ?
I am not reporting this yet, I will need to investigate it a little bit more, but my first impression is that indeed, the variables do not work until I export them manually, or via .bash_profile.
I use the line
ssh-add path-of-key </dev/null
Are you using this command to add it into the ssh agent on every system start?
Barry
-- _______________________________________________ kde mailing list -- kde@lists.fedoraproject.org To unsubscribe send an email to kde-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/kde@lists.fedoraproject.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
On 14 May 2024, at 09:18, Lukas Ruzicka lruzicka@redhat.com wrote:
I use the line
ssh-add path-of-key </dev/nullAre you using this command to add it into the ssh agent on every system start?
On every login to plasma, yes.
Barry
I apologize in advance for this question but I'm trying to recreate this issue in a VM at the moment:
To confirm, it sounds like you're receiving the `ksshaskpass` dialog which would point to the environmental variables being properly set. Do you see `Remember Password` in that dialog and is it checked? So far, in the VM I have, following the steps that you listed successfully saves the password as long as I have the `Remember Password` checkbox checked.
-
Barry -
Lukas Ruzicka -
Timothy Arnold