maxgoedjen
Compatibility with PIV authentication via ssh-agent?
I don't know if this is even plausible, but one of the things I really like about having a yubikey as my ssh key is that I can add it on any computer and have my key; however, Secretive only works on macos, so while it's great that I can use it there it's disappointing that the keys it finds on the cards don't seem to be compatible with the ones that show up in ssh-agent when I use pkcs#11 certificates.
Since I don't know why they are different I don't know if it's possible or not, but is there a way to allow a mode where the keys secretive uses would be the same ones used by ssh-agent in PKCS#11 mode (e.g ssh-add -e /usr/local/lib/libykcs11.dylib)?
Love the project!
Related request: if I use the PIV keys from my yubikey via secretive it'd be nice to have those keys take precedence over the keys it stores in secure enclave -- whether by default or only via an option.
I'm loving this tool, but it'd be nice if I could plug my USB key in to stop needing to authenticate with touchid -- as it is I can technically do that but I have to cancel the request for it to fall back to the key from my USB key.