Page MenuHome GnuPG
Create Task
Maniphest T6215

Kleopatra: "Not certified" Status for Validity with multiple user ids
Open, WishlistPublic
Actions

Description

The Problem is that if a key has mutliple userids and one does only certify one of these the overall status is "not certified".
This is something I do not have a good answer to resolve. Maybe another "partially certified" state?

I have a good example where this happens in my keyring. Filtering for trusted-certificates, I was slightly confused why it inlcuded "non certified" certificates:

So when I look at the table, the primary userid would be certified, but not the others. :/ Even just indicating that the certificate has more userids might be a user experience improvement in this case so maybe we should add that as an optional column?

It is also a bit of a problem we have in VS-NfD. To workaround this we defined "All UserIDs must be certified" for VS-NfD. So if a public key adds a uid on update, it might switch from compliant to non-compliant.

Open to suggestions.

Event Timeline

aheinecke triaged this task as Wishlist priority.Sep 21 2022, 12:34 PM
aheinecke created this task.
canti59 added a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:10 AM
gniibe removed a commit: rG8046fcac63db: po: Update Czech translation..Oct 14 2022, 2:50 AM
ikloecker added a subscriber: ikloecker.Dec 6 2022, 9:38 AM

I think showing "partially certified" makes sense.

For VS-NfD I have no opinion.

ikloecker added a comment.Jun 5 2023, 9:47 AM

I just thought, that we should still show "not certified" if the primary user ID is not certified because Kleopatra always displays the primary user ID (except in the Certificate Details).

ikloecker mentioned this in Unknown Object (Maniphest Task).Aug 2 2023, 12:28 PM