Signing back into the Community for the first time? You'll need to reset your password to access your account.  Find out more.

Forum Discussion

dmacx's avatar
dmacx
Occasional Contributor
4 years ago

Working in VSC with 1p-SSH keys / Unlock 1p many times a day

I love to have SSH keys stored in 1password and not on the local disc any more. This makes my keys more "mobile".

But now with my setup on my daily basis I really have to often unlock 1password (with the fingerprint) within Visual Studio Code. When I leve the Mac and come back later, I have to unlock it again. And again. And again.'

In know: This is security basis of 1password. But with the comfort of have the SSH keys with me, I lost the comfort while using VSC. Is it possible to grand access for a session within VSC?

1Password Version: 8.6.0
Extension Version: 2.3.0
OS Version: maxOS 12.2.1

SSH
  • floris_1P's avatar
    floris_1P
    Icon for 1Password Team rank1Password Team
    2 years ago

    We're now suppressing SSH prompts from apps that run in the background to avoid unexpected prompts. This makes Git autofetch a more attractive option again.

  • XIII's avatar
    XIII
    Trusted Contributor
    4 years ago

    I also ran into this, but I use SSH within VS Code so infrequently that I decide to disable/remove the remote/SSH plugin…

    (Might revert that if 1Password has a better solution)

  • Former Member's avatar
    Former Member
    4 years ago

    This is something I was going to raise as well, I understand the security implications so it would be good to perhaps have a configurable amount of time. At least have the SSH Agent follow the same logic as Auto-lock from the settings.

    With my previous setup my keys would get unlocked by passphrase each login and that was it, whereby now I have having to pass biometric auth quite frequently. Windows Hello is good, but it isn't that good and it's slowing me down.

  • whitw's avatar
    whitw
    New Contributor
    3 years ago

    This is always a solution (depends on your own threat-tolerance):

    cli
    [manjaro ~]# cat /etc/polkit-1/rules.d/10-ssh.rules

    javascript
    /* Allow users in UPDATE_WITH_YOUR_USER_GROUP group to use 1Password SSH agent without authentication */
    polkit.addRule(function(action, subject) {
    if (action.id == "com.1password.1Password.authorizeSshAgent" &&
    subject.isInGroup("UPDATE_WITH_YOUR_USER_GROUP")) {
    return polkit.Result.YES;
    }
    });

  • Former Member's avatar
    Former Member
    3 years ago

    I also have this problem with IntelliJ IDEA, which does git fetch in the background quite frequently. I want to only authorize the program once per session, not every time it needs a key!

  • Former Member's avatar
    Former Member
    3 years ago

    I haven't been able to get 1password ssh to work with Visual Studio remote servers at all. Regardless of how I configure ssh config VS still prompts me via in-app dialog for SSH password. Can someone walk me through how to get Visual Studio to connect to a remote development server using 1password?

  • Former Member's avatar
    Former Member
    3 years ago

    Running into the same issue with git fetch. Did anybody found a solution?

  • Former Member's avatar
    Former Member
    3 years ago

    I am having the same issue, which is actually a bit weird as the docs mention: "After approving, you can continue using the same SSH key from the same terminal window, IDE, or Git client without being prompted again, until 1Password locks.", which doesn't seem to be the case for me when using VS Code.