Comment 3 for bug 1972
Revision history for this message
| Daniel Silverstone (dsilvers) wrote Re: Problem validating GPG key | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
The workflow would essentially be:
1. Check if encryption subkey is available. If it is, follow the standard flow in place already
2. Send a token URL to the email address (similar to how we validate emails currently)
3. Include in that email the message that we expect to get a clearsigned token to validate the message. Anyone capable of creating a signing-only key will know what that means and how to do it.
4. On the token confirmation page, expect the user to provide their launchpad password and to paste into a textarea the token clearsigned with the key we're trying to validate.