#!/bin/bash
# Run in Terminal. Shows which SSH agent and key are used for Gitea.
# If you see "id_rsa" → SSH is NOT using 1Password (no prompt).
# If you see "SHA256:KY3A6J1..." → SSH is using 1Password.

OP_AGENT="/Users/berthausmans/Library/Group Containers/2BUA8C4S2C.com.1password/t/agent.sock"

echo "=== Which agent does SSH use for gitea@10.0.10.205? ==="
echo ""
echo "Running: ssh -v -T gitea@10.0.10.205 2>&1 | grep -E '(identity|agent|Offering|Authentications)'"
echo ""

ssh -v -T gitea@10.0.10.205 2>&1 | grep -E '(identity file|IdentityAgent|get_agent_identities|Offering public key|Authentications that can continue)' || true

echo ""
echo "---"
echo "If you see 'id_rsa' above → SSH is using the system agent, NOT 1Password."
echo "If you see 'SHA256:KY3A6J1r8Shvf...' (Offering public key) → 1Password is used."
echo ""
echo "This repo is set to use 1Password for git (core.sshCommand)."
echo "Test Gitea (bypass config, force 1Password):"
echo "  SSH_AUTH_SOCK=\"$OP_AGENT\" ssh -F /dev/null -o IdentitiesOnly=yes -o User=gitea -o HostName=10.0.10.205 -T gitea@10.0.10.205"
echo ""
echo "Then: git push -u origin main  (uses 1Password via repo config)"
echo ""