unofficial mirror of help-guix@gnu.org 
 help / color / mirror / Atom feed
* Setting up working FIDO2 key in Guix
@ 2024-10-17 12:56 Raymundo Soto
  2024-10-17 17:57 ` Aleksej via
  0 siblings, 1 reply; 3+ messages in thread
From: Raymundo Soto @ 2024-10-17 12:56 UTC (permalink / raw)
  To: help-guix

Hi everyone!

I have been trying to follow `info guix' but I am feeling
a bit lost now regarding the subject topic.

Here are the relevant portions of my config.scm:

(use-modules
[...] (gnu services security-token) (guix packages) (guix download))

[...]

(define %nitrokey-udev-rules
  (origin
    (method url-fetch)
    (uri "[...]")
    (hash (content-hash "[...]"))))

[...]

(operating-system
[...]
  (services
    (append
      (list
        (udev-rules-service 'nitrokey $nitrokey-udev-rules)
        [...])
      %desktop-services))
  [...]

The Nitrokey is detected by the Kernel, and udevadvm monitor shows
events such as plugging and unplugging.

The Nitrokey has a couple of functions and, interestingly enough, I
had been able to use the functions for ssh-keygen with a non-admin
password even before adding the udev rules. But now I am trying to
use the FIDO2 functionality - which I am sure does not work because:

1.- Neither nitrocli nor the Nitrokey app detect the key
2.- A website supporting dongleauth/FIDO was not able to read data.

Am I missing some step here?

Any hints greatly appreciated.

Thanks,

Ray.-


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: Setting up working FIDO2 key in Guix
  2024-10-17 12:56 Setting up working FIDO2 key in Guix Raymundo Soto
@ 2024-10-17 17:57 ` Aleksej via
  0 siblings, 0 replies; 3+ messages in thread
From: Aleksej via @ 2024-10-17 17:57 UTC (permalink / raw)
  To: help-guix

Hi! As far as I know we have an older version of nitrokey app, that does not support NitroKey 3 series. (see <https://github.com/Nitrokey/nitrokey-app2>). For the FIDO2, I can't tell anything right now, but I'll start investigating as soon as I receive my NitroKey. 

Thanks,
Lesik Edelweiss

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Setting up working FIDO2 key in Guix
@ 2024-10-31 16:22 Jonathan Brielmaier
  0 siblings, 0 replies; 3+ messages in thread
From: Jonathan Brielmaier @ 2024-10-31 16:22 UTC (permalink / raw)
  To: rsoto; +Cc: help-guix

Hey Ray,

I'm using a Nitrokey 3A NFC under Guix System.

I have the following in my config.scm:
(use-package-modules security-token)
[...]
(udev-rules-service 'nitrokey libnitrokey)

And FIDO in the web browser does work for me (e.g. gitlab.com or
webauthn.io).

~Jonathan


^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2024-10-31 16:22 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2024-10-17 12:56 Setting up working FIDO2 key in Guix Raymundo Soto
2024-10-17 17:57 ` Aleksej via
  -- strict thread matches above, loose matches on Subject: below --
2024-10-31 16:22 Jonathan Brielmaier

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).