Confusing UI when reencrypting with identities file referencing multiple Yubikeys
VlkrS opened this issue · 0 comments
VlkrS commented
To reproduce:
- create
.passage/identitiesand.passage/store/.age-recipientswith identities found on two different Yubikeys
$ passage generate test
Unplug one of the two YubiKeys, then
$ rm .passage/store/.age-recipients
$ passage mv test test_new
What happens now is that for some reason, passage is asking for the PIN for the Yubikey present and for the second Yubikey to be inserted at the same time, so it's very unclear what to enter. I've tried 2 to skip and typing in the PIN, but neither worked for me ...
This might lead to users inadvertently exhausting their PIN entry attempts ...
EDIT: Probably that is due to the PIN being needed for the decryption, and the missing YubiKey to get the public key?