Pinentry programs not offering to save passwords

Mihir Rabade mihirrabade at gmail.com
Mon Oct 14 05:18:05 CEST 2024 

I'm using KDE Plasma 6.2.0
I have disabled KDE Wallet integration.
I have enabled KeepassXC's Secret Integration.
I'm using Endeavour OS which is arch based.

Earlier I referred https://wiki.archlinux.org/title/GnuPG#pinentry so I
switched between pinentry, pinentry-gnome3, -gtk, -qt, -qt5, but it didn't
work.

Then I added in ~/.bashrc this: (and also checked https://dev.gnupg.org/D599
for any syntax issue)

> export PINENTRY_KDE_USE_WALLET=1


Rebooted, switched through all pinentry programs (reloading gpg-agent on
every switch).
Still didn't work as expected, i.e., pinentry program didn't offer to save
password.

The result I'm expecting:
Pinentry will offer to save passwords. And those passwords will get saved
inside KeepassXC (as I enabled secret service integration)

Steps I'm performing:
I created a fresh new local git repository inside VS Code
Created a new file
Used commit editor in VS Code to write my commit
Click on Commit button
Pinentry pops up - doesn't offer to save password, let alone auto retrieve
from KeepassXC

On Mon, 14 Oct 2024 at 02:43, Ingo Klöcker <kloecker at kde.org> wrote:

> On Sonntag, 13. Oktober 2024 10:32:01 MESZ Mihir Rabade via Gnupg-users
> wrote:
> > I have configured git commit signing, which uses gpg. While trying to
> > commit, a pinentry gui popup comes up where I enter the password for my
> gpg
> > key.
> > I also configured KeepassXC's Freedesktop secret service integration to
> > save passwords after disabling kwallet & uninstalling gnome keyring.
> > Installed apps are correctly querying the API & keepassxc notifies which
> > process queried for password. (For eg Neochat, VS Code, Zed editor, etc)
> >
> > Now my issue is, that pinentry program is not offering to save passwords.
> > Nor does it query for gpg password.
> > This was working perfectly in KDE Neon with pinentry-gnome3.
> > But not Fedora 40 or EndeavourOS. I even tried other pinentry programs
> > (-gtk, -qt, -tty, -qt5, -gnome3...), but all of them ask for password on
> > prompt and none offer to save password.
>
> The possibility to use a password manager via the secret service API is
> available in pinentry-qt*. I don't know anything about the others.
>
> Are you using KDE Plasma? In this case you will have to set the
> environment
> variable PINENTRY_KDE_USE_WALLET to a non-empty value. By default,
> pinentry-
> qt* will disable support for secret service if it detects that it's
> running in
> KDE Plasma to prevent a deadlock with KWallet using gpg to protect the
> passwords.
>
> Regards,
> Ingo
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users at gnupg.org
> https://lists.gnupg.org/mailman/listinfo/gnupg-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20241014/ca16f355/attachment.html>

More information about the Gnupg-users mailing list