| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-07-12 | [test] move tests to root of repo | drebs | |
| 2016-06-17 | [feat] improve duplicated active documents fixup | Ruben Pollan | |
| Mostly for private keys we want to keep the latest one in the keyring. It would be desirable to check with one is set in nicknym, but this will need a big refactor that I'm not sure if it's worth it just for that. - Related: #6658, #8059 | |||
| 2016-06-10 | [bug] Add KeyNotFound import | Zara Gebru | |
| Two tests where failing, because - Related: #7987 | |||
| 2016-06-01 | [test] test key generation (skipped) | Ruben Pollan | |
| 2016-06-01 | [feat] remove request dependency | Ruben Pollan | |
| 2016-06-01 | [refactor] move soledad document definitions to it's own file | Ruben Pollan | |
| 2016-06-01 | [feat] remove keytype from build_key_from_dict | Ruben Pollan | |
| 2016-06-01 | [feat] remove the keytype support | Ruben Pollan | |
| - Resolves: #8031 | |||
| 2016-06-01 | [refactor] remove EncryptionKey | Ruben Pollan | |
| 2016-06-01 | [refactor] remove EncryptionScheme | Ruben Pollan | |
| 2016-05-30 | [bug] fix invalid json warning when key fetch fails | Zara Gebru | |
| Raise KeyNotFound error, when nicknym throws response 404, as it fails to find a key and add tests. - Resolves: #7987 | |||
| 2016-05-24 | Issue #287: add tests for binary key and refactor | Zara Gebru | |
| 2016-02-25 | [test] refactor key deletion tests | Ruben Pollan | |
| 2016-02-25 | [feat] Make EncryptionKey aware of the active address | Ruben Pollan | |
| 2016-02-25 | [test] add updater tests | Ruben Pollan | |
| 2016-02-25 | [feat] Use fingerprints instead of key ids | Ruben Pollan | |
| - Resolves: #7500 | |||
| 2016-02-25 | [feat] Migrate soledad documents by adding versioning field | Ruben Pollan | |
| - Resolves: #7713 | |||
| 2016-02-25 | [feat] move validation, usage and audited date to the active document | Ruben Pollan | |
| - Resolves: #7485 | |||
| 2016-02-23 | [feat] defer decrypt, gen_key and encrypt | Victor Shyba | |
| This commit put those gnupg operations to be run on external threads limited by the amount of cores present on user machine. Some gnupg calls spawn processes and communicating to them is a synchronous operation, so running outside of a reactor should improve response time by avoiding reactor locking. | |||
| 2016-02-09 | [style] fix pep8 | Ruben Pollan | |
| 2016-01-29 | [feat] use HTTPClient instead of requests | Victor Shyba | |
| This commit adapts code to use HTTPClient instead of requests. requests library receives a certificate as parameter during requests while HTTPClient recelives a cert only on constructor. In order to have both types (leap cert and commercial certs) working together we introduced two clients on constructor. | |||
| 2016-01-27 | [refactor] isolate requests | Victor Shyba | |
| Isolate requests lib related code and update docstrings. | |||
| 2015-10-01 | [feat] self-repair the keyring if keys get duplicated | Ruben Pollan | |
| In some cases in the past keys got stored twice in different documents. Hopefully this issue is solved now, this tries to self-repair the keyring if encounters that. This is not really solving the problem, if it keeps happening we need to investigate the source. - Resolves: #7498 | |||
| 2015-09-24 | [style] more pep8 fixes | Kali Kaneko | |
| 2015-09-24 | [style] fix pep8 warnings | Folker Bernitt | |
| 2015-09-24 | [bug] keep combined file longer in scope | Folker Bernitt | |
| In previous commit 9546348c, the combined bundle ca was not long enough in scope and was therefore deleted when it actually was used. Adopted test to check whether file is deleted. | |||
| 2015-09-24 | [tests] Add regression tests for sign_used | Folker Bernitt | |
| Fails if wrong address is passed to the put_key method, or wrong key is marked as sign_used. - Related: #7420 | |||
| 2015-09-24 | [bug] don't repush a public key with different address | Ruben Pollan | |
| During decryption the signing public key was getting repush with a different address as part of the verify usage flagging. - Resolves: https://github.com/pixelated/pixelated-user-agent/issues/466 - Related: #7420 | |||
| 2015-09-24 | [bug] treat empty string ca_cert_path as None | Folker Bernitt | |
| Fixup for 9546348c36. This problem only occurs in test setups where '' is passed to ca_cert_path. | |||
| 2015-09-21 | [style] fix pep8 problems | Ruben Pollan | |
| 2015-09-18 | [feature] Use ca_bundle when fetching keys by url | Folker Bernitt | |
| This is necessary as a fetch by url will talk to remote sites or, for providers with a commercial cert, with a cert that had not been signed with the provider CA. - support lookup of local keys by url for providers with a commercial cert - combine ca_bundle with ca_cert_path if specified - close soledad after each test | |||
| 2015-08-03 | [style] Fixed pep8 warnings | Bruno Wagner | |
| Fixed pep8 warnings to prepare the keymanager for CI | |||
| 2015-07-29 | [style] pep8 | Kali Kaneko | |
| 2015-06-27 | [bug] remove the dependency on enum34 | Ruben Pollan | |
| * Resolves: #7188 | |||
| 2015-03-30 | [feat] set fetched keys as Weak Chain if they are not from the same domain | Ruben Pollan | |
| Nicknym server is authoritative for its own domain, but for others it might retrieve keys from key servers. On keys from the same domain we set the validation level to 'Provider Trust'. For other domains in the email address we set it to 'Weak Chain' as we don't have info about its source. Resolves: #6815 Related: #6718 Releases: 0.4.0 | |||
| 2015-01-15 | Port validation levels to enum34 | Ruben Pollan | |
| 2015-01-15 | upgrade key when signed by old key | Ruben Pollan | |
| 2015-01-15 | Upgrade keys if not successfully used and strict high validation level | Ruben Pollan | |
| 2015-01-15 | Return a valid error from gatherResults | Ruben Pollan | |
| 2014-12-16 | Return the right error on signature verification | Ruben Pollan | |
| 2014-12-16 | Find the gpg path instead of hard code it | Ruben Pollan | |
| 2014-12-16 | Fix key generation | Ruben Pollan | |
| 2014-12-16 | Port to soledad new async API | Ruben Pollan | |
| 2014-11-25 | Return signing key on signature verification | Ruben Pollan | |
| Don't throw an exception if verification fails | |||
| 2014-11-25 | Use addresses instead of keys on the public API | Ruben Pollan | |
| 2014-11-25 | Fix test to use correct new signature for openpgp.put_ascii_key(). | drebs | |
| 2014-11-19 | Implement multi uid support | Ruben Pollan | |
| 2014-11-10 | Implement the new encryption-key soledad document | Ruben Pollan | |
| 2014-11-06 | Use datetime for key expiration | Ruben Pollan | |
| 2014-11-04 | Merge keys when updating an exisiting key | Ruben Pollan | |
| This is needed to prevent roll back attacks where the attacker push us to accept a key with an old expiration date that could be use to push an untrusted key when after it's expiration. | |||
 |
index : keymanager.git | |
| [keymanager] | git repository hosting |
| summaryrefslogtreecommitdiff |