search

indigo-dc / oidc-agent

oidc-agent for managing OpenID Connect tokens on the command line
MIT License
115 stars 30 forks source link

oidc-gen `--pw-keyring` not supported like oidc-add #500

Closed bdellegrazie closed 1 year ago

bdellegrazie commented 1 year ago

Hi,

Is it possible to support --pw-keyring in oidc-gen like in oidc-add?

Thanks!

zachmann commented 1 year ago

Actually, we plan to drop support for --pw-keyring in oidc-agent 5. It brings additional complexity and we didn't see it widely used.

Is it crucial for you to have this option?

Another approach to use the system keyring would be through the secret-tool package. You can store a password with the following command:

secret-tool store --label="Password for oidc-agent <shortname>" oidc-agent <shortname>

and then used it in oidc-add or oidc-gen with the --pw-cmd="secret-tool lookup oidc-agent <shortname>" option.

bdellegrazie commented 1 year ago

Yes, that makes sense - thank you.