is there a way to provide api key using the password-store backend without login credentials?

[astratagem]

I'm getting set up and saw the instructions to put login info and API key in the authinfo file. I have configurated Emacs to use the password-store backend instead of using the default ~/.authinfo file. How can I provide my API key to Efrit this way?

Also, why are the account username and password required? I would prefer not to use this if possible. Shouldn't the API key alone be enough info to authenticate?

[squid-lee]

I think the docstring on efrit--get-api-key is misleading - it should (will?) consult whatever backend you've configured for authinfo.

If you put personal as the user and the API key as the password into the password store, it should just work.

Cross reference with the implementation:

(defun efrit--get-api-key ()
  "Get the Anthropic API key from .authinfo file."
  (let* ((auth-info (car (auth-source-search :host "api.anthropic.com"
                                            :user "personal"
                                            :require '(:secret))))
         (secret (plist-get auth-info :secret)))
    (if (functionp secret)
        (funcall secret)
      secret)))

Any backend to auth-source will work

[squid-lee]

@steveyegge Imo this is a documentation bug, because the code does support more than just .authinfo

[vjohansen]

I have added my api key to .authinfo and verified with efrit--get-api-key that it can be read

When running efrit-chat and typing a message I am prompted for username and then password.

It happens in the url-retrieve call in efrit--send-api-request

End result in efrit buffer: System: API Error: (error http 401)

[mjdiloreto]

I also started running into this issue today. I see precisely the same behavior as @vjohansen.

[mjdiloreto]

Well, in my case I had this error because I'm an idiot. My anthropic key was disabled, checking console.anthropic.com. I updated my key (on MacOs) with the following:

(defun macos-setup-anthropic-keychain (key)
  "Add Anthropic API key to macOS Keychain if supported."
  (interactive)
  (when (and api-key
             (not (string-empty-p api-key))
             (memq 'macos-keychain-internet auth-sources))
    (shell-command
     (format "security add-internet-password -a personal -s api.anthropic.com -w %s -U"
             (shell-quote-argument api-key)))
    (message "Added Anthropic API key to macOS Keychain")))

Note that I did have to restart emacs for this to take effect.

[vjohansen]

Well, I would call myself an idiot but instead blame the **** in authinfo 😄 and anthropics weird subscription model [1]

I was using the wrong key. I have a Claude Code subscription and those do not support API keys unless you add funds. I got an API key from a coworkers subscription who uses an API subscription. This one works with efrit.

[1] https://support.anthropic.com/en/articles/9876003-i-subscribe-to-a-paid-claude-ai-plan-why-do-i-have-to-pay-separately-for-api-usage-on-console

EDIT: ... would NOT

[tzz]

@astratagem did the discussion here answer your needs? Are code or doc changes needed?