With the newcertificatewizard configuration institutional users try to enforce policies about their used openpgp keys.
One such requirement is that new keys must have a validity set and that validity may be at most 365 days.
So in configuration something like:
[CertificateCreationWizard] # The default ValidityPeriodInDays=365 # Min > 0 would always check the expiry ValidityPeriodMin=1 # Max needs to somehow modify the calendar widget. ValidityPeriodMax=365
Would be needed.
Btw. while Testing this I noticed that "isConfigImmutable" does not work as expected. An entry like:
[CertificateCreationWizard] ValidityPeriodInDays=365 [CertificateCreationWizard][$i] PGPKeyType= RSAKeySizes=4096
Will return true on the Immuitablitiy of ValidityPeriodInDays. So we should probably avoid that and use explicit min / force config values anyway.