timegrid
commented
7 years ago Intended for an admin to populate the pgp key table? Or what usecase do you have in mind?
Open wilsoc5 opened 8 years ago
timegrid
commented
7 years ago Intended for an admin to populate the pgp key table? Or what usecase do you have in mind?
timegrid
commented
7 years ago To clarify: It could make sense, to enable users to easily access the public keys of other users on their profile page, although there is already an established solution for this: public key servers. But as users might upload keys to redmine, which they explicitly choose not to upload on the key servers, there would be a usecase.
But I don't see the usecase yet to get this information via the redmine api (and not the profile page). This would only make sense for custom apps and only in that special case of circumventing the key servers.
Therefore I assumed, that you propose an interface for admins to automate key management.
wilsoc5
commented
7 years ago I think the original plan was to couple this along with redmine_git_hosting to ensure that keys used in signing git repositories were the same as the user had uploaded to Redmine via this plugin. Thus, there would be an admin script that did verifications for our build server using the Redmine API as well as enhancing redmine_git_hosting to show the signed and trusted status of git commits on the git repo page.
It would be nice if there was a way to access the public fingerprint and key for a user via the Redmine API.