Maniphest T8275

Kleopatra: Change appearance of S/MIME root certificates
Open, NormalPublic
Actions

Assigned To
None
Authored By
ebo
Wed, May 27, 1:27 PM
Tags
Subscribers
ebo

Description

We already agreed in T8077 that the bold font should only be used if the secret part of a certificate (secret key) is available.

But for S/MIME Root CAs the default appearance is bold font with a blue-with-a-hint-of-purple background:


The contrast here is only 4.63 and which is even in combination with the bold font not sufficient.
Our contrasts for the light green (VS-NfD compliant) and red (not compliant) have a contrast around 13.

We can't go into plain blue, as the highlighting color is blue. Kind of lavender seems fine to me, like these:

#c2c2ff contrast 9,02:

#dbdbff contrast 11,29:

#ebebff contrast 12,93:

And while we're discussing font styles (this one only relevant for Gpg4win):
Why is the default font color black for revoked certificates but red for expired? I think both should be red.

Related Objects

Event Timeline

ebo triaged this task as Normal priority.Wed, May 27, 1:27 PM
ebo created this task.
ebo added a comment.Wed, May 27, 1:53 PM

Note that with #ebebff it is not easy to recognize the color next to the light red:

It is better for #dbdbff

ebo added a comment.EditedThu, May 28, 10:21 AM

The question came up why we have a separate color for trusted root-CAs and if we should not better remove it instead of changing it.

In the treeview one can easily deduce which is the root, so visibility does not explain it. (Possibly, we could remove the option to turn that view off.)

It would be easiest to use the same colors as for all other certificates, i.e. none in Gpg4win and green/red in VSD for the Root-CAs.

Should we want to do this, we should keep the category though, so that users could set the color again if they don't want the change.