From 5d2f84db883af6d000c7f5c44302a2f624363fb9 Mon Sep 17 00:00:00 2001 From: cyqsimon <28627918+cyqsimon@users.noreply.github.com> Date: Fri, 17 Nov 2023 11:44:42 +0800 Subject: [PATCH 1/2] Recommend a wider selection of libsecret-compatible password managers --- src/doc/src/reference/registry-authentication.md | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/src/doc/src/reference/registry-authentication.md b/src/doc/src/reference/registry-authentication.md index f07bf7066a5..79fd4664015 100644 --- a/src/doc/src/reference/registry-authentication.md +++ b/src/doc/src/reference/registry-authentication.md @@ -10,7 +10,7 @@ provider is used if no providers are configured. Cargo also includes platform-specific providers that use the operating system to securely store tokens. The `cargo:token` provider is also included which stores credentials in unencrypted plain -text in the [credentials](config.md#credentials) file. +text in the [credentials](config.md#credentials) file. ## Recommended configuration It's recommended to configure a global credential provider list in `$CARGO_HOME/config.toml` @@ -71,8 +71,12 @@ The Keychain Access app can be used to view stored tokens. ### `cargo:libsecret` Uses [libsecret](https://wiki.gnome.org/Projects/Libsecret) to store tokens. -On GNOME, credentials can be viewed using [GNOME Keyring](https://wiki.gnome.org/Projects/GnomeKeyring) -applications. +Any password manager with libsecret support can be used to view stored tokens. +The following are a few examples (non-exhaustive): + +- [GNOME Keyring](https://wiki.gnome.org/Projects/GnomeKeyring) +- [KDE Wallet Manager](https://apps.kde.org/en-gb/kwalletmanager5/) (since KDE Frameworks 5.97.0) +- [KeePassXC](https://keepassxc.org/) (since 2.5.0) ### `cargo:token-from-stdout ` Launch a subprocess that returns a token on stdout. Newlines will be trimmed. From 400a833bb51492d36216aa3d4896e40a53d6807a Mon Sep 17 00:00:00 2001 From: cyqsimon <28627918+cyqsimon@users.noreply.github.com> Date: Fri, 17 Nov 2023 15:29:30 +0800 Subject: [PATCH 2/2] Avoid locale-specific link --- src/doc/src/reference/registry-authentication.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/src/doc/src/reference/registry-authentication.md b/src/doc/src/reference/registry-authentication.md index 79fd4664015..0508900c00c 100644 --- a/src/doc/src/reference/registry-authentication.md +++ b/src/doc/src/reference/registry-authentication.md @@ -75,7 +75,7 @@ Any password manager with libsecret support can be used to view stored tokens. The following are a few examples (non-exhaustive): - [GNOME Keyring](https://wiki.gnome.org/Projects/GnomeKeyring) -- [KDE Wallet Manager](https://apps.kde.org/en-gb/kwalletmanager5/) (since KDE Frameworks 5.97.0) +- [KDE Wallet Manager](https://apps.kde.org/kwalletmanager5/) (since KDE Frameworks 5.97.0) - [KeePassXC](https://keepassxc.org/) (since 2.5.0) ### `cargo:token-from-stdout `