rae
December 2, 2024, 10:12pm
1
Is there a better way to install 1Password other than via rpm-ostree? Of course there is a Flatpak version but I need system integration to unlock it using my fingerprint reader (as far as I’m aware and have tried).
I also saw this somewhere but I have no idea how to use it or if it works in Bluefin: modules/modules/bling/installers/1password.sh at c0943c009d578214d8bd3d6f185a106420dc034e · blue-build/modules · GitHub
I know there has to be other 1Password users here. How are y’all using it in Bluefin?
1 Like
j0rge
December 2, 2024, 10:16pm
2
There’s some inprogress sysexts here: GitHub - travier/fedora-sysexts: Example sysexts for Fedora image based systems
I haven’t had a chance to play with 1password yet though.
ledif
December 2, 2024, 10:58pm
3
I just tried out the 1password-gui sysext and it seems to work fine, but the instructions are a bit different for ublue images.
The first bit of instructions are the same:
sudo install -d -m 0755 -o 0 -g 0 /var/lib/extensions /var/lib/extensions.d /etc/sysupdate.d
sudo restorecon -RFv /var/lib/extensions /var/lib/extensions.d /etc/sysupdate.d
SYSEXT="1password-gui"
RELEASE_TAG="fedora-kinoite-41"
URL="https://github.com/travier/fedora-sysexts/releases/download/${RELEASE_TAG}/${SYSEXT}.conf"
curl --silent --location "${URL}" | sudo tee "/etc/sysupdate.d/${SYSEXT}.conf"
However, we have to modify the sysupdate file to point to the correct variant. In my case, I had to update it to Kinoite because I’m using Aurora (%o-%W-%w was expanding to aurora-aurora-dx-41 which is totally wrong), but the process should be similar for Bluefin:
DIFF=$(cat <<EOF
6c6
< Path=https://github.com/travier/fedora-sysexts/releases/download/%o-%W-%w/
---
> Path=https://github.com/travier/fedora-sysexts/releases/download/fedora-kinoite-%w/
EOF
)
echo "$DIFF" | sudo patch -p0 "/etc/sysupdate.d/${SYSEXT}.conf"
After that, the instructions are the same:
sudo /usr/lib/systemd/systemd-sysupdate list
sudo /usr/lib/systemd/systemd-sysupdate update
sudo systemctl restart systemd-sysext.service
systemd-sysext status
It succesfully installed 1password into /usr/bin. I can’t quite get the fingerprint reader to work, but that’s probably an unrelated issue on my side.
2 Likes
jay-t
December 3, 2024, 9:18am
4
Is the flatpak listed here not an option?
ledif
December 3, 2024, 4:32pm
5
The Flatpak has a few limitations, as listed on that website:
You’ll need to lock and unlock 1Password in your browser separately from the app.
You won’t be able to unlock 1Password or 1Password CLI with system authentication .
You won’t be able to use the SSH agent .
These limitations should go away if using the rpm or a sysext, in theory.
2 Likes
jay-t
December 3, 2024, 11:56pm
6
Ok, yeah that makes sense. I think you are right, a sysext/layered package shouldn’t have the restrictions.