Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

'init' command doesn't work #63

Open
cttillman opened this issue Jun 21, 2022 · 7 comments
Open

'init' command doesn't work #63

cttillman opened this issue Jun 21, 2022 · 7 comments

Comments

@cttillman
Copy link

cttillman commented Jun 21, 2022
edited
Loading 

caleb@jet:~$ onlykey-cli init




Press the Enter key once you are done



Press the Enter key once you are done


 for second profile

Press the Enter key once you are done
 for second profile


Press the Enter key once you are done




Press the Enter key once you are done



Press the Enter key once you are done

These prompts are vague and unclear. What exactly am I supposed to do?

I do not know if it is relevant to the main problem, but I also cannot list credentials without getting an error saying AttributeError: 'Fido2Client' object has no attribute 'client_pin'

I am running the latest version of Debian.
@onlykey
Copy link
Contributor

onlykey commented Jun 21, 2022

Have you followed setup instruction here for OnlyKey https://onlykey.io/start or here for OnlyKey DUO https://onlykey.io/duo

@cttillman
Copy link
Author

cttillman commented Jun 21, 2022 via email
edited
Loading

@onlykey
Copy link
Contributor

onlykey commented Jun 22, 2022

If you followed those instructions and set up OnlyKey per the users guide then your key is initialized. There would be no need to use the init command to set a PIN as you would already have a PIN set.

AttributeError: 'Fido2Client' object has no attribute 'client_pin'

This is because you have not used your security key to store credentials, FIDO2 requires setting a client pin to store credentials. There are no credentials to list.

@cttillman
Copy link
Author

Set-pin gives the same error.

Set new FIDO PIN, this is the PIN entered via keyboard and used for FIDO2 register/login (not the OnlyKey PIN entered on device).

The only PIN I created during setup was the device PIN. Even if it is already set, why can't I make a new one with this command?

@Kleptoid
Copy link

I'm getting the same error attempting to list credentials or set the fido2 PIN using onlykey-cli on NixOS. The onlykey is already initialised, it all works just fine on Ubuntu.

@onlykey
Copy link
Contributor

onlykey commented Dec 19, 2022

@Kleptoid You can only list credentials if there are FIDO2 resident credentials to list and a FIDO2 PIN has been set.

@Kleptoid
Copy link

@Kleptoid You can only list credentials if there are FIDO2 resident credentials to list and a FIDO2 PIN has been set.

Yes, there are credentials and a pin has been set on the Ubuntu machine, on that machine listing credentials works as expected. On the NixOS machine it doesn't, giving the stated error. It may be a problem with the NixOS package or environment, but since it seems to be happening on someone's Debian as well I though I'd mention it :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Kleptoid @onlykey @cttillman