Add OpenPGP API method to query keyserver(s) for public keys given a key ID #2
Comments
|
Sounds like a keyserver implementation. One (additional) solution would be to query pgp.mit.edu or other keyservers. Generally it is better to map email addresses to key IDs, the actual keys can be imported from the keyservers (if necessary) because the UID / email address can be the same but the actual key and its ID may differ. Key IDs are unique so far. |
|
I'm still pretty confident that I do not want to turn this plugin into a keyserver, however there may be some good reasons to provide a mechanism with which to "query the given keyserver for the public key associated with a given key ID" as an API method in the same vein as the other OpenPGP API methods. Perhaps something like $key_from_keyserver = apply_filters(
'openpgp_query_keyserver_for_key_id',
$keyserver,
$key_id
);The intention would be to make it easier for other plugin developers to use OpenPGP functions in their plugins, and querying a keyserver for a key is a security-sensitive operation. The API method would have the opportunity to do things like enforce TLS and server certificate validation checks, reducing code and the potential for mistakes in other plugins. On the flip side, other plugins would still need to obtain a key ID from a user somehow. For example, a plugin that sends email newsletters to subscribers (i.e., email addresses that are not associated with a So this would be something I'd consider a "nice to have" and would appreciate help from a contributor who is interested in doing this to implement, rather than spending time doing this myself. |
fabacab
changed the title
See item 2 from this list: https://wordpress.org/support/topic/feature-request-add-default-pgp-encryption-key-gpg-key-manager
The text was updated successfully, but these errors were encountered: