Page MenuHome GnuPG
Create Task
Maniphest T6403

Kleopatra: Warn if a certificate in a group is deleted
Testing, NormalPublic
Actions

Description

If I import a group definition and delete one of the included certificates afterwards, the certificate is no longer shown in the group definition and therefore no longer used for encryption to that group.

This may cause confusion especially in the context of encrypted group mails. A users might not always be aware who is participant in a group mail address (as group membership is not shown in the certificate list, see also T6240) and might delete a certificate of the group. The result would be that that person would then get a mail which is not encrypted to them.

I propose
a) a warning when attempting to delete a certificate which is in a group
b) an optional column in the certificate view displaying the group memberships of a certificate

Details

Version
3.1.26

Revisions and Commits

rKLEOPATRA Kleopatra
rKLEOPATRA73b57a8c8030 Warn the user when deleting keys that are part of a keygroup
rKLEOPATRA09e6b2dbdb06 Warn the user when deleting keys that are part of a keygroup
rKLEOPATRA259b452dfa8d Warn the user when deleting keys that are part of a keygroup

Related Objects
Search...

Event Timeline

ebo created this task.Mar 6 2023, 11:06 AM
ikloecker added a subscriber: ikloecker.EditedMar 7 2023, 9:56 AM

This pretty much highlights a general problem of groups: If the distribution groups for the email client are managed independently from the certificate groups then there will inevitably be discrepancies. The obvious solution is the usage of groups managed by a central service for email addresses and certificates. (Or an encrypted mailing list service.)

a) is a good idea.
b) is already covered by T6240: Kleopatra: Add column for groups in the certificate view.

aheinecke renamed this task from Kleopatra: handling of keys/certificates which are in a group to Kleopatra: Warn if a certificate in a group is deleted.Mar 15 2023, 10:15 AM
aheinecke triaged this task as Normal priority.
aheinecke added a subscriber: aheinecke.

I changed the title of the issue to make it about adding the warning. I also think that is a good idea to avoid confusion / accidents.

werner mentioned this in T6506: Release GnuPG 2.4.2.May 30 2023, 4:42 PM
ebo added a parent task: T6916: Kleopatra group related improvements.Jan 3 2024, 12:05 PM
TobiasFella added a commit: rKLEOPATRA259b452dfa8d: Warn the user when deleting keys that are part of a keygroup.Feb 16 2024, 10:59 AM
TobiasFella claimed this task.Feb 16 2024, 11:36 AM
TobiasFella added a commit: rKLEOPATRA09e6b2dbdb06: Warn the user when deleting keys that are part of a keygroup.Feb 16 2024, 1:38 PM
TobiasFella added a commit: rKLEOPATRA73b57a8c8030: Warn the user when deleting keys that are part of a keygroup.
TobiasFella changed the task status from Open to Testing.Feb 21 2024, 2:17 PM