blob: fa3f0c8351a0b3a8f92fc3b2e37be05ee9355cb1 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
|
.. _keymanager:
=================
Keymanager
=================
Soledad documents
-----------------
KeyManager uses two types of documents for the keyring:
* key document, that stores each gpg key.
* active document, that relates an address to its corresponding key.
Each key can have 0 or more active documents with a different email address
each:
::
.-------------. .-------------.
| foo@foo.com | | bar@bar.com |
'-------------' '-------------'
| |
| .-----------. |
| | | |
| | key | |
'----->| |<----'
| |
'-----------'
Fields in a key document:
* uids
* fingerprint
* key_data
* private. bool marking if the key is private or public
* length
* expiry_date
* refreshed_at
* version = 1
* type = "OpenPGPKey"
* tags = ["keymanager-key"]
Fields in an active document:
* address
* fingerprint
* private
* validation
* last_audited_at
* encr_used
* sign_used
* version = 1
* type = "OpenPGPKey-active"
* tags = ["keymanager-active"]
The meaning of validation, encr_used and sign_used is related to the `Transitional Key Validation`_
.. _Transitional Key Validation: https://leap.se/en/docs/design/transitional-key-validation
|
