Improve key handling

Question

Improve key handling

mattosaurus opened this issue 10 months ago · comments

At the moment the EncryptionKeys object choses the best key for the job but it would be good to allow the user to set the key when required.

This is probably best done via an extension method on EncryptionKeys (though I'm open to other suggestions) as I'd rather not add additional parameters into all the methods.

#156
#204
#210

Liam Rougoor · Answer 1 · Fri Oct 13 2023 22:29:19 GMT+0800 (China Standard Time)

When you mean via an extension method, do you mean something like this?

pgp.EncryptionKeys.UseEncryptionKey(_key_to_use_);
pgp.Encrypt(....); // uses _key_to_use_ if available

Out of curiosity, why do you want to avoid additional parameters?

mattosaurus · Answer 2 · Fri Oct 13 2023 22:51:50 GMT+0800 (China Standard Time)

Yep, that's exactly what I mean :)

I've seen too much code where people just keep adding method parameters so it just gets a bit out of control which biases me against doing it this way.

Doing this on the EncryptionKeys object means that it'll apply to all subsequent calls made to the PGP object without having to specify it each method call. Not sure if this is a good thing or not but maybe we'd want to set it on EncryptionKeys and then allow it to be changed at the method level.

Essentially I don't know what the best solution for this is but if you've got a preferred solution feel free to put in a PR for it and I'll probably go with it :)

Liam Rougoor · Answer 3 · Fri Oct 13 2023 23:27:59 GMT+0800 (China Standard Time)

Alright! I'll try the method you mentioned and see where we get from there.

One more question though: currently, EncryptionKeys has lists of encrypt keys, verification keys, etc. This is currently a collection of keys combined from multiple public key rings.

Does it make sense to have multiple public key rings within one EncryptionKeys object? (I'm still new to Pgp, so I'm not sure).
In the current implementation, users can add multiple public key rings, but I'm not sure what the use case is for that?

Liam Rougoor · Answer 4 · Sat Oct 14 2023 16:56:39 GMT+0800 (China Standard Time)

I've been looking into it a bit more. You can pass multiple public keys/rings so you can encrypt the message for multiple recipients, right? Does this mean the user should be able to specify which key to use per key ring/recipient?

MB34 · Answer 5 · Mon Oct 16 2023 23:38:55 GMT+0800 (China Standard Time)

PGP command line allows you to specify which key to use in the keyring by passing the KeyID.

Liam Rougoor · Answer 6 · Tue Oct 17 2023 02:21:36 GMT+0800 (China Standard Time)

Hi @MB34
This issue makes sure you can also specify which key to use through code with PGPCore.