goldwarden: init at 0.2.7 #278362
goldwarden: init at 0.2.7 #278362
Conversation
|
@quexten I looked at the aur package and it only seems to install a binary and a polkit rule, that's what is being done here. Are there any other steps needed in the package? |
|
If selinux is present (does nix have it?), the polkit rule's permissions need to be adjusted as well. Other than that no, it's just installing the binary. Do beware that you do need at least dbus, and a pinentry client (https://pkg.go.dev/github.com/twpayne/go-pinentry#section-readme) are required to use the package. I'm not sure if these are present on a default nixos installation. |
|
Oh, since I do see darwin listed above, I will note that while packages are built for darwin in the project's GitHub CI at the moment, they are very much untested and some features are missing. I'm not sure they should be released for darwin just yet until more testing has been done there. quexten/goldwarden#4 |
Understood, I'll mark it as linux-only and link the issue. |
arthsmn
force-pushed
the
goldwarden
branch
2 times, most recently
from
951c003 to
91d7d71
Compare
No, we currently don't support SELinux. I added the packages to the binary's path, so they'll always be there. |
arthsmn
force-pushed
the
goldwarden
branch
2 times, most recently
from
6aa91fe to
a125b09
Compare
arthsmn
force-pushed
the
goldwarden
branch
2 times, most recently
from
f428548 to
48f4801
Compare
ofborg
bot
added
8.has: package (new)
eclairevoyant
added
the
12.approvals: 1
|
I think the required system services should be directly be installed in the package or setup by a NixOS module. The imperative |
I couldn't find the required file, so I think it is generated at runtime. @quexten what do you think? Do you have plans to have a preset file so we can copy from? Do you want to have a hardcoded file or let upstream handle the service? Keep in mind that it would be desirable to have a service in NixOS in case your app gets options to be enabled etc. |
|
For the other packaging formats I have the upstream issue quexten/goldwarden#12, which I have not been able to deal with just yet. For now, the service file is a hard-coded string https://github.com/quexten/goldwarden/blob/e15cee5aa92749b395960498dd069b8794025e68/cmd/setup_linux.go#L69-L77, but if it helps you, I can make this a dedicated file upstream that you can just use. This is installed as a user-service. |
This would be awesome! Thanks! |
|
I gave this a try, but it would never show a pinentry for me, even after I added pinentry-gtk2 to the system packages. (Maybe I should have restarted or at least re-logged-in?) But somehow the journal log says without any indication that it couldn’t fin a pinenry or so? Maybe the package should have a suitable pinentry as a runtime dependency so that it will work for everyone? Not sure. |
|
Probably a good idea. Upstream has a GTK based custom pinentry fallback for the UI, which is currently only available as a Flatpak, but @SuperSandro2000 is looking into packaging the full UI version without flatpak for nix which would also have this fallback: #293117 |
|
Yeah, just found that PR and saw it installs |
Description of changes
Homepage: https://github.com/quexten/goldwarden
Closes: #278180
Things done
nix.conf? (See Nix manual)sandbox = relaxedsandbox = truenix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/)Add a 👍 reaction to pull requests you find important.