search

keybase / keybase-issues

A single repo for managing publicly recognized issues with the keybase client, installer, and website.
900 stars 37 forks source link

Encryption of files directly from keybase #691

Open Hirasawa3 opened 10 years ago

Hirasawa3 commented 10 years ago

Please correct me if I'm mistaken, but I can't seem to encrypt files directly from keybase.io though I can do this from the command interface. Is there any future plans for users to be able to do this, to upload files (pictures, pdfs, etc) and have the file load client-side? I don't know much about the server interns, so apologies if I am sprouting nonsense, or if this has been brought up by the community.

Loving the project so far anyhow.

zQueal commented 10 years ago

I really don't see this happening. It would cause tremendous undue strain on the keybase servers and would only work if the user has uploaded their private keys.

Hirasawa3 commented 10 years ago

Hm, okay, thanks for responding anyhow.

zQueal commented 10 years ago

Well, keep in mind that's only my opinion. @maxtaco and @malgorithms could have other plans in mind.

malgorithms commented 10 years ago

This is something we will do.

As far as I know, the HTML5 file API allows browser-side access to file data. So keybase will support dragging and dropping a file to encrypt it for someone. It will simply happen in your browser, and then the encrypted data will be spit back to you as a new file. Keybase's server needs no involvement at all.

We're hanging back on it for a bit because....well...we just haven't gotten to it. :-)

Related: we will at some point let you send that encrypted file through the site too. That of course requires hosting, so it's a bigger deal for us to do. We can't just email it because it might be too big.

Btw, for anyone who's a front-end developer, you could build this for fun on a random site...

  1. let a user type in a search string, and hit Keybase's autocomplete API, which allows cross-origin requests
  2. let the user select someone
  3. request the public key from Keybase (we also allow cross origin requests for this)
  4. let the user drop a file

The whole thing could work anywhere, really, not just on Keybase.... :-)

zQueal commented 10 years ago

[...] the HTML5 file API allows browser-side access to file data [...] It will simply happen in your browser.

Did not know that! Thanks for the update.

sparkyfen commented 9 years ago

@malgorithms Would love to have an update on these features. I'm looking to verify a domain tied to a Keybase user using the Keybase API and in order to make sure they are the Keybase account they say they are, I want to encrypt a message and send it to them using your API. It is possible and documented or possibly coming in the near future? My alternative was going to be have them fill out a form and encrypt & sign it, then send it to my account through via email and then I could programmatically decrypt by running the CLI tool and parsing the output. I would prefer not to do it that way though and just use the API to encrypt/decrypt.

Edit: I just noticed kbpgp.js which does everything I want :) so scratch the above statement.