top | item 45914732

(no title)

s20n | 3 months ago

Not having gpg-agent is a huge deal breaker for me. I feel gpg-agent doesn't get enough love. Not only can it do all the ssh-agent operations, it can also be used with gpgme-json[1] to do web authentication with your [A] key. It's truly a shame that hardly any applications leverage the powerful cryptography afforded by GPG.

[1]: https://manpages.debian.org/trixie/gpgme-json/gpgme-json.1.e...

discuss

ognarb|3 months ago

I knew about gpgme-json, but I didn't knew, you could do web auth with that. I though the usecase was mainly mailvelope. How does that work?

Ciantic|3 months ago

I want to know as well, I just read gpgme-json page posted, but it doesn't include anything about WebAuthn (aka passkeys).

Can you use GPG-agent for non-resident passkey challenges?

I also have Yubikey setup, but haven't thought of this.

unknown|3 months ago

[deleted]

Avamander|3 months ago

> Not only can it do all the ssh-agent operations

It can not. Doesn't work with PKCS#11 PIV. In general GPG's behavior with SmartCards is idiotic and interferes with many other applications.

It's good that people don't use GPG more often and I can just purge it from my systems.

johnisgood|3 months ago

What do you mean? I use GPG with SSH (or SSH with GPG) all the time, and I need gpg-agent for that. GPG's agent replaces ssh-agent and serves SSH keys derived from your GPG key.

Can you do this with Age? If not, then I am going to stick to GPG.