Setting up working FIDO2 key in Guix

all messages for Guix-related lists mirrored at yhetil.org
 help / color / mirror / code / Atom feed

From: Raymundo Soto <rsoto@secure.mailbox.org>
To: help-guix@gnu.org
Subject: Setting up working FIDO2 key in Guix
Date: Thu, 17 Oct 2024 12:56:06 +0000	[thread overview]
Message-ID: <ZxEJZsPPWeXMu0hl@dragonfly.saltpound.org> (raw)

Hi everyone!

I have been trying to follow `info guix' but I am feeling
a bit lost now regarding the subject topic.

Here are the relevant portions of my config.scm:

(use-modules
[...] (gnu services security-token) (guix packages) (guix download))

[...]

(define %nitrokey-udev-rules
  (origin
    (method url-fetch)
    (uri "[...]")
    (hash (content-hash "[...]"))))

[...]

(operating-system
[...]
  (services
    (append
      (list
        (udev-rules-service 'nitrokey $nitrokey-udev-rules)
        [...])
      %desktop-services))
  [...]

The Nitrokey is detected by the Kernel, and udevadvm monitor shows
events such as plugging and unplugging.

The Nitrokey has a couple of functions and, interestingly enough, I
had been able to use the functions for ssh-keygen with a non-admin
password even before adding the udev rules. But now I am trying to
use the FIDO2 functionality - which I am sure does not work because:

1.- Neither nitrocli nor the Nitrokey app detect the key
2.- A website supporting dongleauth/FIDO was not able to read data.

Am I missing some step here?

Any hints greatly appreciated.

Thanks,

Ray.-

next             reply	other threads:[~2024-10-17 17:23 UTC|newest]

Thread overview: 2+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2024-10-17 12:56 Raymundo Soto [this message]
2024-10-17 17:57 ` Setting up working FIDO2 key in Guix Aleksej via

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=ZxEJZsPPWeXMu0hl@dragonfly.saltpound.org \
    --to=rsoto@secure.mailbox.org \
    --cc=help-guix@gnu.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

Code repositories for project(s) associated with this external index

	https://git.savannah.gnu.org/cgit/guix.git

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.