Encryption requires access to private key

[Enzime]

I think that the identity struct should also contain the public key corresponding to the SSH key stored in 1Password

The relevant code in agessh is https://github.com/FiloSottile/age/blob/main/agessh/agessh.go#L144-L166, we could use this package and call some of the relevant functions to help with using SSH keys as age keys

That would allow encryption to be done without requiring the private key or even 1Password at all

[bromanko]

I'm curious what you are trying to accomplish with this change. Why is it useful to encrypt without 1Password?

[Enzime]

So that other people are able to send encrypted files to me with just my recipient and age-plugin-op installed or also it would allow me to create new files without unlocking my 1Password

I believe this is the case with other plugins like age-plugin-tpm and age-plugin-se

[bromanko]

I see. That's a use case I haven't had. Seems handy. If you want to add it I'll give it a review/merge.

[Enzime]

I originally tried to make the changes to the plugin, but it ended up changing so much that I decided to rewrite it based off a newer version of age-plugin-tpm as it uses the new experimental age plugin framework, feel free to check it out here:

https://github.com/Enzime/age-plugin-1p