Integration with Git

Create a Keeper record

• Create a record in Keeper such as an SSH Key type or PAM User type.

• Generate a strong password

Generate SSH Key

Generate SSH key on your terminal with the password generated by Keeper. For example:

This will create the public and private keys locally on your machine.

For example:

Add Key to Record

Add the contents from the public and private keys generated in Step 2 into the Keeper record. Copy paste the Public Key and Private Key into the fields of Keeper.

Add Key to Github

• From Github.com, go to Settings > SSH and GPG keys > New SSH Key > and select Key type of "Authentication Key".

• Assign a title, and paste the public key contents from id_ecdsa.pub in Step 2.

• Save the key.

Add Key to SSH Agent

From the Keeper Desktop App, open Settings > Developer > SSH Agent > Edit and select your "Github Auth key" created in step3 from the list of available keys.

Click "Update" to save the settings.

Delete the local key

At this point, it's a good idea to delete the local key, since it is now stored and managed by Keeper. In this case, you can delete both the public and private key.

Authenticating with Github

From a terminal in some repo, perform an authorized request with Github:

This immediately will trigger a Keeper dialog to authorize the Github Authentication key.

Clicking "Authorize" will use the key stored in Keeper to authenticate with Github.

Your setup is complete.

Create a Keeper record

• Create a record in Keeper such as an SSH Key type or PAM User type.

• Generate a strong password

Generate SSH Key

Generate SSH key on your terminal with the password generated by Keeper. For example:

This will create the public and private keys locally on your machine.

For example:

Add Key to Record

Add the contents from the public and private keys generated in Step 2 into the Keeper record. Copy paste the Public Key and Private Key into the fields of Keeper.

Add Key to Github

• From Github, go to Settings > SSH and GPG keys > New SSH Key > and select Key type of "Signing Key".

• Assign a title, and paste the public key contents from Step 2.

• Save the key.

Add Key to SSH Agent

From Keeper, open Settings > Developer > SSH Agent > Edit and select the Github signing key.

Click "Update" to save the settings.

Delete the local private key

We will only delete the local private key, since it is now stored and managed by Keeper. The public key (xxx.pub) needs to stay, as it will be used for identifying which key to use for signing.

Let's also rename the public key to something more specific:

Place the username and the contents of the public key into a file called ~/.ssh/allowed_signers. For example:

In this example, the file looks like this:

Enable Git Signing

From the terminal, instruct Github to sign commits using this new key and allowed signers.

This basically has the effect of adding several lines to ~/.gitconfig and applies the changes globally. You can also configure individual repos instead of making these changes globally.

Verify Signing

From a repository, let's do a quick empty commit to test the signing process:

This immediately will trigger a Keeper dialog to authorize the key.

To verify that the signature was applied to the commit, run the following:

The response will display something like this:

Setup is complete.