borgmatic-collective/borgmatic
10
71
Fork 42
Code Issues 49 Pull Requests 6 Actions 1 Packages Releases 153 Activity

Fully support keepassxc-cli options #1047

New Issue
Closed
opened 2025-03-27 12:46:04 +00:00 by aledeg · 11 comments
aledeg commented 2025-03-27 12:46:04 +00:00
Copy Link

What I'd like to do and why

TL;DR: Add support for --key-file and --yubikey while using keepassxc for credentials

I have my passwords stored in a keepassxc file and I want to use those directly with borgmatic. Unfortunately, I cannot retrieve them since I am using a key file on top of my master password.

I've ran the keepassxc-cli with the --key-file option to validate that I can access my keepassxc file from the command line and it's working fine.
I've ran my borgmatic script with the secret stored in my keepassxc file and it's working fine.
I've checked the keepassxc.py file and I could not find a way to add options while invoking the CLI program.

Is there something I am missing?

I also want to use a yubikey in the future. It would be nice if the --yubikey option is also supported.

Other notes / implementation ideas

No response

### What I'd like to do and why **TL;DR**: Add support for `--key-file` and `--yubikey` while using keepassxc for credentials ----- I have my passwords stored in a keepassxc file and I want to use those directly with borgmatic. Unfortunately, I cannot retrieve them since I am using a key file on top of my master password. I've ran the keepassxc-cli with the `--key-file` option to validate that I can access my keepassxc file from the command line and it's working fine. I've ran my borgmatic script with the secret stored in my keepassxc file and it's working fine. I've checked the keepassxc.py file and I could not find a way to add options while invoking the CLI program. Is there something I am missing? I also want to use a yubikey in the future. It would be nice if the `--yubikey` option is also supported. ### Other notes / implementation ideas _No response_
witten commented 2025-03-28 19:51:37 +00:00
Owner
Copy Link

Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this:

keepassxc:
    keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile
Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this: ```yaml keepassxc: keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile ```
witten added the good first issue label 2025-03-28 19:51:42 +00:00
witten commented 2025-03-28 20:03:33 +00:00
Owner
Copy Link

FYI it looks like your email provider is blocking emails from projects.torsion.org, so if you're not receiving ticket notifications, that's why.

FYI it looks like your email provider is blocking emails from projects.torsion.org, so if you're not receiving ticket notifications, that's why.
👍 1
aledeg commented 2025-03-28 21:28:52 +00:00
Author
Copy Link

Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this:

keepassxc:
    keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile

I'll give it a try later. Thank you for considering that.

> Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this: > > ```yaml > keepassxc: > keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile > ``` I'll give it a try later. Thank you for considering that.
👍 1
aledeg commented 2025-03-28 21:41:08 +00:00
Author
Copy Link

Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this:

keepassxc:
    keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile

I've tried that and it does not work. The order of the argument is not render in a way that is understood by the cli tool.
I have something like the following

keepassxc-cli --key-file </path/to/key> show --show-protected --attributes Password </path/to/safe> <attribute>

With this syntax, here is the error generated Invalid command </path/to/key>

> Thanks for filing this... These seem like reasonable additions to me! In the meantime, try something like this: > > ```yaml > keepassxc: > keepassxc_cli_command: keepassxc-cli --key-file /path/to/your/keyfile > ``` I've tried that and it does not work. The order of the argument is not render in a way that is understood by the cli tool. I have something like the following ``` keepassxc-cli --key-file </path/to/key> show --show-protected --attributes Password </path/to/safe> <attribute> ``` With this syntax, here is the error generated `Invalid command </path/to/key>`
aledeg commented 2025-03-28 21:41:45 +00:00
Author
Copy Link

FYI it looks like your email provider is blocking emails from projects.torsion.org, so if you're not receiving ticket notifications, that's why.

I know, I've had hard time to validate my email when creating my account.

> FYI it looks like your email provider is blocking emails from projects.torsion.org, so if you're not receiving ticket notifications, that's why. I know, I've had hard time to validate my email when creating my account.
😕 1
witten commented 2025-03-28 23:15:52 +00:00
Owner
Copy Link

I've tried that and it does not work. The order of the argument is not render in a way that is understood by the cli tool.

Ah that's unfortunate! I guess this ticket really needs to be implemented for this functionality to work.

> I've tried that and it does not work. The order of the argument is not render in a way that is understood by the cli tool. Ah that's unfortunate! I guess this ticket really needs to be implemented for this functionality to work.
❤️ 1
gautamaggarwal2810 commented 2025-03-29 12:29:30 +00:00
Contributor
Copy Link

I would like to work on this issue!!

I would like to work on this issue!!
🎉 1
witten commented 2025-03-29 16:14:23 +00:00
Owner
Copy Link

Sounds good! It's hopefully pretty straightforward, but please let me know if you have any questions along the way.

Sounds good! It's hopefully pretty straightforward, but please let me know if you have any questions along the way.
witten commented 2025-04-03 18:29:56 +00:00
Owner
Copy Link

This is now implemented in main by @gautamaggarwal2810 and will be part of the next release!

This is now implemented in main by @gautamaggarwal2810 and will be part of the next release!
❤️ 1
aledeg commented 2025-04-03 20:51:12 +00:00
Author
Copy Link

Great! Thank you for that.

Great! Thank you for that.
witten commented 2025-04-06 15:43:22 +00:00
Owner
Copy Link

Released in borgmatic 2.0.0!

Released in borgmatic 2.0.0!
🎉 1
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
blocked
breaking
bug
data loss
design finalized
good first issue
new feature area
question / support
security
waiting for response
No Label good first issue
Milestone
No items
No Milestone
Assignees
Clear assignees
witten
No Assignees
3 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: borgmatic-collective/borgmatic#1047
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?