https://bugs.kde.org/show_bug.cgi?id=476095
--- Comment #1 from Balázs Róbert Börcsök <pauljou...@protonmail.com> --- I have not tried using SDDM, but it seems like there are other people as well with this issue, I am assuming they are using that: https://unix.stackexchange.com/questions/763714/how-to-unlock-kdewallet-with-fido2-key Also, I tried adding the relevant PAM configuration lines (see: https://wiki.archlinux.org/title/KDE_Wallet#Configure_PAM), to GDM, but it asks for the user password (I suppose logically, as KDE Wallet probably doesn't handle non password, like FIDO2 based encryption). If not supplying anything the login proceeds without the Wallet unlocking (logically). I think that the underlying problem is that there is no support for FIDO2 in KDE Wallet, the cleanest and most future-proof solution in my opinion would be add that and then build an SSO-like experience (I login with my strong authentication, namely my FIDO2 key, which unlocks my KDE wallet, then it reprompts either for my FIDO2 key's password again or in addition or instead of that my wallet's password). This is a really big topic actually, I am not sure if similar stuff is being worked on, maybe I will open a feature request in addition to this and somehow link this bug report there. This should be worked out well, with clear requirements, because this is the closest we could get to other platforms' SSO experience, I think. -- You are receiving this mail because: You are watching all bug changes.
