Feature name
- for better integration of the tool into different scripts will be great to support feature touchid confirmation on password extraction
Feature function
- What will this feature do differently?
I want to get password to one of my secured services that I trigger via CLI, and to make it more secured I want to force unlock by touchId
- What benefits will this feature bring?
user can run the script with a shared via bitwarden password and at the same time will be asked for “human” (biometric) confirmation during this process
- Remember to add a tag for each client application that will be affected
Tags: #keychain #touchid #macos #cli #biometric #sharedpassword
Related topics + references
Major idea is to have a keychain on a local compute that contains shared (or personal) passwords and secure them by biometrics in addition to session id
as alternative instead of touchid, can be requested yubikey physical button press to confirm that its a real human interact with the keychain.
p.s. keychain is a specific MacOS thing, bitwarden has a chance to provide a cross-platform keychain that all the developers will love to use.