TheLonelyGhost
commented
8 months ago The git-credential-keepassxc caller me function does 3 things from the freshly-installed state:
- Initializes a config file on the filesystem which tracks what processes have been authorized to connect to the configured KeePassXC database
- Adds the current shell (according to the path to the executable) and user (uid and gid)
- Enforces strict-caller mode for subsequent usage of
git-credential-keepassxc
If you change shells, users, or group identities it will deny you access. Working as designed, for better or worse. This leaves you with 2 options:
a. Find the shell already authorized and use it to authorize /usr/bin/zsh for your user
b. Reset the strict caller settings and re-connect git-credential-keepassxc to your KeePassXC database
For option a: git-credential-keepassxc caller add --uid 1000 --gid 1000 /usr/bin/zsh
For option b: there is a config file somewhere in one of the dot-files in your user's home directory that hints at being the git-credential-keepassxc config file. I don't recall the name or precise location of it, but if you find it, delete it. That will allow you to re-enable strict-caller from your new shell, if you desire.
Description
I'm encountering an issue with KeePassXC integration with git. Whenever I attempt to use git commands that require authentication, I receive the error "ERRO /usr/bin/zsh (uid=1000, gid=1000) is not allowed to call git-credential-keepassxc, Caused by: N/A". This issue occurs when I use command line git in zsh, but does not happen with GUI-based Git clients like GitHub Desktop and the built-in Git in Jetbrains products.
Environment
keepassxc --versionoutput:KeePassXC 2.7.5git-credential-keepassxc --versionoutput:git-credential-keepassxc 0.13.0 (strict-caller, notification, encryption, yubikey)Checklist
Configuration
I am using KeePassXC with git through zsh shell. I have set the git configuration to use 'keepassxc' as the credential helper.
Logs
Here is the error I get when I attempt to call git-credential-keepassxc: