fscotto/infra
1
0
Fork 0
mirror of https://github.com/fscotto/infra.git synced 2026-05-30 15:39:58 +00:00
Code Issues Packages Projects Releases Wiki Activity

Fix GNOME keyring alias detection

Browse Source 
Parse the Secret Service default alias object path so iCloud password storage only skips when the login keyring is actually unset. Remove the unused scripts placeholder file.
This commit is contained in:
Fabio Scotto di Santolo
2026-03-18 13:15:35 +01:00
parent c798bcffda
commit 69e6306eda
2 changed files with 20 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
ansible/roles/profile_desktop_i3/tasks/main.yml
View File

@@ -137,6 +137,23 @@
- (vault_icloud_mail_password | default('')) | length > 0 - (vault_icloud_mail_password | default('')) | length > 0
- desktop_user_bus_address | default('') | length > 0 - desktop_user_bus_address | default('') | length > 0
- name: Set GNOME Keyring default collection path
ansible.builtin.set_fact:
icloud_keyring_default_alias_path: >-
{{
(
icloud_keyring_default_alias.stdout
| default('')
| regex_findall("objectpath '([^']+)'")
| first
)
| default('')
}}
when:
- (vault_icloud_mail_password | default('')) | length > 0
- desktop_user_bus_address | default('') | length > 0
- icloud_keyring_default_alias.rc | default(1) == 0
- name: Store iCloud mail password in GNOME Keyring - name: Store iCloud mail password in GNOME Keyring
ansible.builtin.command: ansible.builtin.command:
cmd: secret-tool store --label="iCloud Mail" icloud-mail icloud cmd: secret-tool store --label="iCloud Mail" icloud-mail icloud
@@ -156,7 +173,8 @@
- (vault_icloud_mail_password | default('')) | length > 0 - (vault_icloud_mail_password | default('')) | length > 0
- desktop_user_bus_address | default('') | length > 0 - desktop_user_bus_address | default('') | length > 0
- icloud_keyring_default_alias.rc | default(1) == 0 - icloud_keyring_default_alias.rc | default(1) == 0
- "\"/\" not in (icloud_keyring_default_alias.stdout | default(''))" - (icloud_keyring_default_alias_path | default('')) | length > 0
- (icloud_keyring_default_alias_path | default('')) != '/'
- name: Warn when iCloud keyring storage is skipped - name: Warn when iCloud keyring storage is skipped
ansible.builtin.debug: ansible.builtin.debug:
@@ -166,7 +184,7 @@
No saved DBus session address was found in {{ user_home }}/.dbus-session-bus-address. No saved DBus session address was found in {{ user_home }}/.dbus-session-bus-address.
{% elif icloud_keyring_default_alias.rc | default(1) != 0 %} {% elif icloud_keyring_default_alias.rc | default(1) != 0 %}
The Secret Service default alias could not be queried for {{ username }}. The Secret Service default alias could not be queried for {{ username }}.
{% elif '"/"' in (icloud_keyring_default_alias.stdout | default('')) %} {% elif (icloud_keyring_default_alias_path | default('')) == '/' %}
The Secret Service default alias is unset, so the login keyring is not initialized. The Secret Service default alias is unset, so the login keyring is not initialized.
{% endif %} {% endif %}
Ensure a graphical user session is active, the login keyring exists and is unlocked, then run: Ensure a graphical user session is active, the login keyring exists and is unlocked, then run:

0
scripts/.gitkeep
View File