Page MenuHome GnuPG
Create Task
Maniphest T6766

Kleopatra: On export, inform user about uncertified user IDs
Closed, ResolvedPublic
Actions

Description

On export (of individual certificates), export all user IDs and inform the user if there were not certified user IDs.
On exporting a not/partially certified group, inform the user and ask if they want to certify the group now.

This is a follow-up task to T6469: Kleopatra: Certify a group.

Revisions and Commits

rLIBKLEO Libkleo
rLIBKLEO41c026588103 Add helper to partition a list of keys by protocol
rLIBKLEO79aa8c5fa4e5 Add function to check if a user ID was certified by the user
rKLEOPATRA Kleopatra
rKLEOPATRA04e4e7595eda Add an explanation why sharing uncertified certificates may be problematic
rKLEOPATRA1b7622d02932 Allow user to silence the confirmation messages
rKLEOPATRAc38a9df2a2ca Request confirmation when uploading uncertified OpenPGP keys
rKLEOPATRA9b2a2a6a22d9 Request confirmation when exporting uncertified OpenPGP keys
rKLEOPATRA24ba61e6b142 Explicitly mention that exportable certifications are missing
rKLEOPATRAab01a2d434b5 Always finish command properly and don't emit canceled manually
rKLEOPATRA187c11841e24 Use helper to partition keys by protocol
rKLEOPATRA049d4bb51fe7 Emit canceled when the user canceled the export
rKLEOPATRA835c298b2a5f Ask for confirmation before exporting group with uncertified OpenPGP keys
rKLEOPATRA9d5f352dac12 Always enable loading of remarks in the key cache

Related Objects

Event Timeline

ikloecker triaged this task as Normal priority.Oct 17 2023, 10:58 AM
ikloecker created this task.
ikloecker mentioned this in T6469: Kleopatra: Certify a group.
ikloecker added a comment.Oct 17 2023, 11:55 AM

Questions:

  • What does "not certified" mean? Not certified by the user exporting the certificates (use case: I'm the "CA" for the exported group.)? Or not fully valid (i.e. not certified by a trusted certificate) (use case: I want to give some certificates to my co-workers and certification is centralized)?
  • What about expired, revoked, or otherwise invalid certificates?

Possible compromise:

  • If any of the certificates is certified by the user, then check if all certificates are certified by the user with an exportable certification.
  • If none of the certificates is certified by the user, then just check if all certificates are fully valid.
  • Always confirm export of invalid certificates.

On second thought, I think going for confirmation if not all certificates are certified by the user with an exportable certification is the sensible approach. I'll add a "Don't ask me again" option, so that users who don't care or don't understand what they are asked can disable the confirmation.

ikloecker claimed this task.Oct 17 2023, 12:19 PM
ikloecker moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ikloecker added a commit: rLIBKLEO79aa8c5fa4e5: Add function to check if a user ID was certified by the user.Oct 17 2023, 2:11 PM
ikloecker added a commit: rKLEOPATRA9d5f352dac12: Always enable loading of remarks in the key cache.Oct 18 2023, 3:01 PM
ikloecker added a commit: rKLEOPATRA835c298b2a5f: Ask for confirmation before exporting group with uncertified OpenPGP keys.
ikloecker added a commit: rLIBKLEO41c026588103: Add helper to partition a list of keys by protocol.Oct 19 2023, 10:49 AM
ikloecker added a commit: rKLEOPATRA049d4bb51fe7: Emit canceled when the user canceled the export.Oct 19 2023, 10:53 AM
ikloecker added a commit: rKLEOPATRAab01a2d434b5: Always finish command properly and don't emit canceled manually.
ikloecker added a commit: rKLEOPATRA187c11841e24: Use helper to partition keys by protocol.
ikloecker added a commit: rKLEOPATRA24ba61e6b142: Explicitly mention that exportable certifications are missing.
ikloecker added a commit: rKLEOPATRA9b2a2a6a22d9: Request confirmation when exporting uncertified OpenPGP keys.
ikloecker added a commit: rKLEOPATRAc38a9df2a2ca: Request confirmation when uploading uncertified OpenPGP keys.Oct 19 2023, 11:17 AM
ikloecker added a commit: rKLEOPATRA1b7622d02932: Allow user to silence the confirmation messages.Oct 19 2023, 12:04 PM
ikloecker added a commit: rKLEOPATRA04e4e7595eda: Add an explanation why sharing uncertified certificates may be problematic.Oct 19 2023, 1:31 PM
ikloecker changed the task status from Open to Testing.Oct 19 2023, 1:32 PM
ikloecker removed ikloecker as the assignee of this task.

I have added the confirmation to the following commands:

  • Export Certificate(s)
  • Publish on Server
  • Export Group

I haven't added the possibility to start a group certification directly from the confirmation message.

aheinecke added a subscriber: aheinecke.Oct 23 2023, 6:52 PM
In T6766#177137, @ikloecker wrote:

I haven't added the possibility to start a group certification directly from the confirmation message.

I think this is useful. Also with the other message regarding exportable certifycations. I think the next step for the user would be to certify them.

While you are at it. Please change "exportable" to something understandable for users like "certifications which others can see" or something like that.

aheinecke added a comment.Oct 23 2023, 6:55 PM

I opened T6771 for this because this issue is done.

ebo moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.Oct 31 2023, 2:10 PM
ebo added a subscriber: ebo.Nov 3 2023, 4:36 PM

VS-Desktop-3.1.90.258-Beta:

Works, the confirmation is asked in all 3 cases.

And the confirmation dialog can be turned of for each of the cases separately. Although that is not really obvious from the text.
But this decision can not be changed again, unfortunately. I would prefer if it was configurable in a config file...

ikloecker added a comment.Nov 3 2023, 8:18 PM

Whether the confirmation dialogs are shown is configurable in the config file (just like any other "Don't show again" option, e.g. the question asked when you quit Kleopatra). Simply remove the corresponding entries in the [Notification Messages] section to make Kleopatra show the confirmation dialogs again.

ebo mentioned this in T6799: Kleopatra configuration files in wrong places.Nov 7 2023, 3:02 PM
ebo added a comment.Nov 7 2023, 3:41 PM

On Windows, the notifications are currently configured in kleopatra.kmessagebox, or more accurately, the wish not to notify is configured there:

[General]
confirm-export-of-uncertified-keys=4
confirm-upload-of-uncertified-keys=4
confirm-export-of-uncertified-groups=4

See T6799, too

ebo closed this task as Resolved.Nov 7 2023, 3:42 PM
ebo claimed this task.
ebo moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
ebo added a project: vsd32.
ebo moved this task from Backlog to vsd-3.2.0 on the vsd32 board.
ebo edited projects, added vsd32 (vsd-3.2.0); removed vsd32.