dotbash_keys

#!/bin/bash
#
# Alex's .bashrc_keys
#
# Generic handling for all keys, possibly using keychain if we have it.
#

KEYCHAIN=$(find_alternatives keychain)
KEYMSG=""

if shopt -q login_shell; then
    if [[ -x ${KEYCHAIN} ]]; then
        if [[ -S ${SSH_AUTH_SOCK} ]]; then
            keychain -q -k all --inherit any --agents ssh --systemd
            KEYMSG+="forwarded ssh"
        else
            keychain -q -k others --clear --agents ssh --systemd
            KEYMSG+="local ssh"
        fi
        # ensure we flush
        keychain -q --inherit any --agents ssh
    else
        # delete default ids
        ssh-add -d
        KEYMSG+="missing keychain"
    fi
else
    # non-login shell, don't attempt to start anything
    if [[ -x ${KEYCHAIN} ]]; then
        eval `keychain -q --inherit any --eval`
        KEYMSG+="keychain agents"
    else
        KEYMSG+="missing keychain"
    fi
fi

#
# When I log on remotely I only have console mode and as such I need to reset
# gpg-agent so it won't leave passphrase prompts on the X session. The killalls
# unwedge any gpg passphrase requests that might be running before reloading.
#
function reset_gpg_agent
{
    if [[ -x ${KEYCHAIN} ]]; then
        keychain --agents gpg --stop all
        killall -9 gpg2 pinentry 2> /dev/null
        sleep 1
        killall -9 gpg2 pinentry 2> /dev/null
        . ~/.bash_keys
    fi
}

alias .keys=". ~/.bash_keys"
echo "loading .bash_keys ($KEYMSG)"