Allow unlocking of keyring from greetd

[b-m-f]

Both LightDM and GDM include the login module where a keyring can be unlocked, for example by setting security.pam.services.login.enableGnomeKeyring = true;.

I suggest adding the following:

text = ''
auth      substack      login
account   include       login
password  substack      login
session   include       login
'';

to

nixpkgs/nixos/modules/services/display-managers/greetd.nix

Line 59 in d3a6adc

security.pam.services.greetd = {

and maybe hide them behind a boolean?

Maybe someone with more knowledge of the PAM system could give some feedback on this, as I am not sure if there could be negative or unforeseen consequences lurking.

[b-m-f]

@luc65r, you are mentioned as the maintainer so I tought I ping you on this :)

[Aleksanaa]

You can use security.pam.services.greetd.enableGnomeKeyring = true. But yeah a template for all those login managers makes sense.

[fazo96]

I have had success with security.pam.services.greetd.enableGnomeKeyring = true

[pluiedev]

security.pam.services.greetd.enableGnomeKeyring = true works just fine for me, although IMO forcing people to do this manually is quite dumb — I would propose to enable this if services.gnome.gnome-keyring.enable is set to true.

EDIT: Made a quick PR to fix this as it is literally just one line

[noisesfromspace]

Still cannot get this to work for the live of me. I'm using Hyprland with greetd but my default keyring remains locked on boot. My config hyprland.nix

[guttermonk]

I'm having issues with this as well. Can someone that reported this as fixed please share their config?

Here’s the error message I’m getting at login:
“The application ‘Brave’ has requested to open the wallet ‘Default keyring’. Please enter the password for this wallet below.”

My config looks similar to @martijnboers config above.