All Forgejo credentials are shared among the secret keepers teams in a private repository with encrypted content.
- Make sure you have a GPG Key, or create one
- Send someone else your public key and ask this person to add yourself as a recipient
# Commands for the other person
$ gpg --import public_key.asc
# The following command will open a prompt, with the available public keys.
# Choose the one you just added and all secrets will be re-encrypted with this new key.
$ gopass recipients add
- Install gopass
:warning: When installing on Ubuntu or Debian you can either download the deb package, install manually or build from source or use our APT repository (github comment with more information).
- Clone this repo using
gopass(the name and email are for
$ gopass clone email@example.com:forgejo/gopass.git
- Check the consistency of the gopass storage
$ gopass fsck
Show the whole secret file:
$ gopass show ovh.com/manager
Copy the password in the clipboard:
$ gopass show -c ovh.com/manager
user part of the secret in the clipboard:
$ gopass show -c ovh.com/manager user
$ gopass edit ovh.com/manager
In the editor, insert the password on the first line.
You may then add lines with a
key: value syntax (
user: username for instance).
The following command will show the location and status of the git repo (all git commands are available).
$ gopass git status