Skip to main content
September 23, 2022
Question

request: remember application approval for SSH agent

  • September 23, 2022
  • 24 replies
  • 2407 views

my intelliJ app has Git Toolbox plugin which checks git via SSH every 10 minutes. Due to this, I continuously get 1Password 8 on macOS asking if I want to allow this PHPStorm to access the SSH key.
Can you please add an option to remember the setting? Otherwise I need to revert moving to the 1password 8 SSH agent.


1Password Version: 8.9.4
Extension Version: Not Provided
OS Version: macOS
Browser:_ Not Provided

24 replies

floris_1P
1Password Employee
May 26, 2023

We have made a bunch of improvements in this area. Prompts from background apps are now being silenced automatically to avoid unexpected interruptions, and you there's now a authorization model you can choose that's closer to the OpenSSH agent model.

June 9, 2023

I'm facing similar but opposite issue. Whenever I'm doing git fetch/push through vscode or Github Desktop, 1Password just silently shows red circle on tray icon(Windows). To sign commit I need to click tray icon, click on 'SSH Request waiting approval', and do it again right after to sign commit with my key. I guess github/vscode spawns new instances of git, so it triggers new confirmations. It would be great to atleast have some approval screens in that case, instead of hunting tray icon. Ideally 1Password should somehow understand that requests comes from same source and was authorized already.

floris_1P
1Password Employee
June 12, 2023

@truecarry Which version of 1Password for Windows are you using? We've recently made some improvements in this area.

September 5, 2023

I'm also experiencing the behavior mentioned in the original post. I have "Remember key approval" set to 4 hours, but every time I make a git commit, I have to type in my password to use the GPG signing key, and every time I fetch/pull/push, I have to type in my password to use the GitHub auth key (all of these happening within ~10 minutes of each other).

Using 1Password for Linux 8.10.13 (81013005)

To note, I often experienced the same problem as @truecarry , but I haven't used Windows in a while, so I assume that's better.

September 7, 2023

Same here ... I have to unlock 1Password to push to github and when I deploy just a few seconds later (through ssh / php deployer), the terminal asks for my SSH key password. Then I have to Control+C the command in the terminal, open and unlock 1Password, start the deployment again and authorise it when the modal from 1Password pops up.

MacOS 13.5.1, PhpStorm 2023.1, 1Password for Mac 8.10.16 (81016015)

December 18, 2023

+1 this feature is unusable in its current form. Please just tie it to my login keychain. I want to store my keys securely with 1Password but I have no desire to approve every single access. I just want 1 password for storing/syncing of keys. Please stop prompting me every time an app needs a key. This is ridiculous.

June 2, 2024

We should have the "Always approve for this application" option, and not just the "Approve for all applications" option, because some development tools access ssh keys frequently.

August 20, 2024

@"brian.f_1P" said:

Under Preferences -> Developer, you could set it to remember an application until it or 1Password quits.

I realize this is almost 2 years old, but I don't see that option in modern versions. I see remembering until 1Password quits, but there is no mention of application handling.

From my naive reading of the prompts and https://developer.1password.com/docs/ssh/get-started/, it seems I can only authorize that EVERY application can use a key indefinitely. I like/prefer being prompted by each application that does... but I don't want to keep approving the same app (my IDE) over and over and over again.

October 20, 2024

I'd like to reiterate the want for a "Always approve for this application". It's quite tedious to have to re-approve more than one key each time I reboot an application or 1password itself when I update them and reboot them. I appreciate the default being to have low trust, but I trust these applications and their supply chains so I don't worry that it could be exploited.

1P_Tommy
1Password Employee
October 29, 2024

@francislavoie

Thank you for sharing that this type of enhancement would be a benefit to how you use 1Password. I have passed this along to the products team for further consideration. While I can't guarantee a specific outcome, I can advocate for your position.

ref: PB-43755828