search

cpoppema / pass-browser-firefox

pass-browser-firefox is a browser plugin for firefox with web-extensions support (v48+) that brings your secrets managed by `pass` to your browser; requires a self hosted pass-server
GNU General Public License v3.0
8 stars 1 forks source link

Use existing gpg key? #5

Open vikasrawal opened 5 years ago

vikasrawal commented 5 years ago

Can't I use my existing gnupg key? Why create a new pair?

cpoppema commented 5 years ago

Hello @vikasrawal. Unfortunately you cannot import an existing gpg key. I have not actually checked if this is easy to add (including error handling, checking if the key is OK etc.). I can keep this issue open to track this feature request.

Always creating a new pair in each client (chromium/firefox/android) can be considered more secure: if you ever lose a device you can simply revoke the key on your server that is specific to that device. You wouldn't have to reissue a new key to all devices that share this key.

Between clients there can also be a difference in what is supported. For example, a key generated in chromium/firefox would not work on android due to limitations in the available software and I believe the same goes if that key was generated with default parameters on your linux server.