Page MenuHome GnuPG

Kleopatra: Add support for trust signatures / trusted introducer
Testing, HighPublic

Description

To implement a CA structure with intermediates we need to have the structure:

Root CA -> Is configured on the system as trusted-key

The Root CA then signs the Intermediate CA as trusted introducer.

Then the CA can sign client certificates without having to set "Ownertrust" in the client because the client already has the ownertrust value because of the trusted introducer signature.

GnuPG already supports this but at some point we would like to have support in the GUI.

Details

Version
master

Revisions and Commits

rLIBKLEO Libkleo
rKLEOPATRA Kleopatra
rM GPGME

Event Timeline

aheinecke raised the priority of this task from Wishlist to High.Apr 12 2021, 2:43 PM

Hi Ingo, If you run out of work you can do this next. Its already something that I'm showing during product presentations and a workflow I would like to recommend.

ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Apr 29 2021, 9:31 AM
ikloecker changed the task status from Open to Testing.May 12 2021, 5:25 PM
ikloecker reassigned this task from ikloecker to aheinecke.
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a subscriber: ikloecker.