Question about committed keys to .git-crypt

AGWA / git-crypt

Transparent file encryption in git

https://www.agwa.name/projects/git-crypt/

GNU General Public License v3.0

8.28k stars 479 forks source link

Closed spamwax closed 4 years ago

spamwax commented 4 years ago

Regarding using git-crypt add-gpg-user KEYID in order to add a user/key the REAME says that

Note: git-crypt add-gpg-user will add and commit a GPG-encrypted key file in the .git-crypt directory of the root of your repository

I'd like to know if this is the private key that's been committed or the public key, and if it is the public key why it's been encrypted/protected?

Vad1mo commented 4 years ago

the symetric key is encrypted with the pub key of the user with the ID, so that only the user that has the private key can encrypt the file.