smimesign icon indicating copy to clipboard operation
smimesign copied to clipboard
verified publisher icon github

credentail-cache

Open ghost opened this issue 2 years ago • 3 comments

Hi together, I am thinking about an in-memory-cache for entering the smartcard-pin when using smimesign. I saw this already in other programs like git with the credentials-helper, which supports an in-memory-cache. Wouldn't that be a great feature to add this as a commandline-flag? Used with git for signing commits would then not require entering the scmartcard-pin for every commt. Glad to hear what you think.

ghost avatar Apr 10 '24 10:04 ghost

Hi!

Interested in this feature as well.

tduraide avatar Apr 12 '24 07:04 tduraide

The PIV standard requires no cache for signing. Some smartcards / yubikey can be configured for caching the authentication of a key. But I guess the signing software will not be able to control this.

lvandenb avatar Apr 12 '24 10:04 lvandenb

I also "need" this, my employeer started to use GitLab self-host, and we started to use x509 to sign the commits. But when I got a branch which I need do a rebase, it asked me 42x to inform the pin to unlock the smartcard to read the certificated...

gbschenkel avatar Jul 08 '24 20:07 gbschenkel