mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

comment

Browse source
This commit is contained in:
Joey Hess 2025-08-20 14:16:29 -04:00
commit dbb207890d
No known key found for this signature in database
GPG key ID: DB12DB0FF05F8F38
1 changed files with 19 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

19
doc/todo/encrypt_only_the_credentials/comment_5_dc9c94892b4f8a7d072e6dc036adc05a._comment Normal file
View file

@ -0,0 +1,19 @@
[[!comment format=mdwn
username="joey"
subject="""comment 5"""
date="2025-08-20T17:44:07Z"
content="""
I think I was assuming that encryption=onlycreds would use the same scheme as
encryption=hybrid, so new gpg keys can later be given access to the creds.
It might be possible that someone would want the equivilant of
encryption=pubkey instead. (encryption=sharedpubkey is the same as
encryption=pubkey as far as encryption of creds goes).
In future there might be some other, better encryption scheme that might be
desirable to use only for creds. Eg, something other than gpg..
An alternative to support such would be to use:
encryption=<whatever> embedcreds=yes onlyencryptcreds=yes
"""]]