Open AdrianKoshka opened 6 years ago
bilelmoussaoui
commented
6 years ago That would be awesome! I need this in order to encrypt some sensitive data using a private/public key. Currently, I had to give the application a full access to ~.gnupg directory, which is not a good solution at all...
A6GibKm
commented
5 years ago Same issue while trying to do a variety of tasks in emacs, signing commits, read a password from a encrypted file, etc.
TingPing
commented
5 years ago To make progress here I'd say an application that relies on this needs to write out its API needs (and ideally make an implementation).
muelli
commented
3 years ago seems nobody has suggested to use the Seahorse API just yet, but it may be worth a shot.
RomanRiabenko
commented
1 year ago --socket=gpg-agent was added with flatpak/flatpak#4958 in version 1.14.0.
TingPing
commented
1 year ago I don't believe that invalidates this issue. gpg-socket is a sandbox bypass and not a portal.
nanonyme
commented
1 year ago @TingPing does the agent leak secret material to sandbox though? If not, the difference isn't that big.
Heyo, I recently made Thunderbird available as a fatpak on flathub, but right now Enigmail/GnuPG functionality doesn't work. I don't want to expose the entire gpg directory, keys and all, to applications for it though if possible.