gopass
gopass copied to clipboard
gopasspw
[FR] libsecret integration?
Summary
Hi, there is a plan to support exporting/importing from/to freedesktop-libsecret? (Gnome-keyring and kwallet are based on this specification)
Additional context
More info:
https://wiki.gnome.org/Projects/Libsecret https://specifications.freedesktop.org/secret-service/ https://developer.gnome.org/libsecret/0.18/
I have not yet heard nor read anyone talking about this with regards to gopass. But it surely seems interesting. Would you mind elaborating a bit more on how gopass could integrate? :+1:
Sorry for late reply..
Gnome (Gui: sea-horse; passbook) and kde (Gui: kwallet) use libsecret to store all password, some application do the same (pidgin, remmina and more) with a master password.
Screenshot:
so list of possibly integration:
-
import features: This is the number 1 in my opinion: a way to import from system DE libsecret database to gopass.
-
export features: like import but export from gopass to libsecret
-
sync check if we need to import new entry/export to libsecrete
-
portfolio (gopass collection) Complete integration: if i create a entry on gopass i find the same entry on libsecret database in gopass "collection"
I'm sorry cant provide anything coded but i don't know golang
edit: typo, sorry for my bad english
I'd propose creating a gopass D-Bus daemon that works as a libsecret backend.
That sounds very interesting. I have not much experience with D-Bus so far and probably no time to work on this anytime soon, but I'd be happy to review and test any contributions to this idea.
Ok, I've looked at it a bit more in detail. We would have to implement this api: https://people.gnome.org/~stefw/secrets/org.freedesktop.Secrets.xml via https://github.com/godbus/dbus. One question: Should the keyrings be stored in a hardcoded manner in a subdir (like currently done for git credentials) or would it slowly be time to add a auto-prompting mapping/linking mechanism that prompts the user to select (or create a new) secret when some kind of backend requests it (ssh, secret-api, git, etc)
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.
![stale[bot] avatar](https://avatars.githubusercontent.com/in/1724?v=4 "Published by a pub.dev verified publisher"){kind=small}
Readable code, but undocumented. Nevertheless, it is on topic, i.e. the API. https://github.com/gsterjov/go-libsecret
is there a daemon running already in gopass? that would seem like the first requirement for this to work at all, otherwise dbus will not have anyone to talk to.
gopass jsonapi listen. Nothing prevent one from adding another command that would do just that (expose a dbus interface), or even a completely separate executable. This command or executable would most likely be launched via systemd using the dbus service type on most linux distros. Such an integration is pretty much linux specific anyway unless gnome / kde keyrings can be run on windows too.
this feature would make gopass as alternative to gnome-keyring or xkeepass. For small environments like i3 or Qtile it would be the primary choice. It would gain more popularity for gopass
I am considering picking this feature up. Is anybody working on this? I found this repository that already seems to be doing something similar with pypass.
@petrmanek I'm not aware of anyone working on this, yet. Feel free to go ahead :+1:
Appreciating this feature as aerc mail client only supports this way of password managing besides hacking them into your plain text config files. See password manager integration | aerc wiki
@marcofeltmann I've never used aerc, but the wiki page is using a bash script. You can just put gopass in there instead of secret-tool.