search

keybase / keybase-issues

A single repo for managing publicly recognized issues with the keybase client, installer, and website.
902 stars 37 forks source link

Display key expiry date #719

Open graphiclunarkid opened 10 years ago

graphiclunarkid commented 10 years ago

I set expiry dates for my gpg keys as safety cut-outs in case I lose access to them and their revocation certificates. When the expiry dates approach I just extend them further into the future and then re-publish my public keys.

I can do this in keybase using keybase push -u however neither the success message nor the output of keybase status shows any different output. This is because the only change is the date - and that information isn't displayed.

I think it would be useful to include the expiry date in the output of keybase status and in the web interface so that people who maintain expiry dates can see these are being updated.

Current behaviour:

$ keybase version
keybase (keybase.io CLI) v0.3.3
- node.js v0.10.20
- gpg (GnuPG) 1.4.16
- Copyright (C) 2013 Free Software Foundation, Inc.
Identifies as: 'keybase.io node.js client v0.3.3 linux'

$ keybase push -u --skip-add-email
info: Updating both remote key with local version

You need a passphrase to unlock the secret key for
user: "Richard King (Email address for personal correspondence) <redacted>"
2048-bit RSA key, ID D1EF8F6F71AEBD17, created 2013-12-16
         (subkey on main key ID 5CB47B59375422A6)

info: success!

$ keybase status
{
  "status": {
    "configured": true,
    "logged_in": true
  },
  "user": {
    "name": "graphiclunarkid",
    "key": {
      "key_id": "5CB47B59375422A6",
      "fingerprint": "7F0D 81CA 1630 8179 CC31 B364 5CB4 7B59 3754 22A6"
    }
  }
}

got

This is all exactly as it looked before I pushed the update so I can't verify the key on the server has the new expiry dates.

Desired behaviour:

$ keybase status
{
  "status": {
    "configured": true,
    "logged_in": true
  },
  "user": {
    "name": "graphiclunarkid",
    "key": {
      "key_id": "5CB47B59375422A6",
      "fingerprint": "7F0D 81CA 1630 8179 CC31 B364 5CB4 7B59 3754 22A6",
      "expires": "2014-11-10"
    }
  }
}

expected

CameronBanga commented 10 years ago

+1 definitely could be a neat feature.

stephenmelrose commented 10 years ago

+1

zQueal commented 10 years ago

I couldn't find the ticket, but I'm positive this was suggested numerous times before. I'm pretty sure it's already on the ToDo list.

edmundlaugasson commented 5 years ago

This key expiry monitoring should be possible via CLI and GUI. Announcing the closing expiry date would be also appreciated - could be configurable option.