I guess, the website is generated from the LDAP data on woodpecker and lists the key ID's. It would be a great feature to provide a download link for a) each public key next to the ID and b) a keyring with all public keys Reproducible: Always
Keys are available on https://gentoo.org/.well-known/openpgpkey/hu/$HASH like https://gentoo.org/.well-known/openpgpkey/hu/rio3unai9edipstwq3simkt7go4foosc we only need to add a link.
We support WKD, do we need to support anything further? -A
I do not think anybody gonna use it, in the 99% of cases gpg is the cli-sh thingy. Most likely you do not want people to utilize their browsers for this, because 1.) In the best case there is WKD 2.) in the worst case there is `gpg --keyserver hkps://keys.gentoo.org --search <string>`
1) we can get this for free without any negative side effects. 2) with his link we also advertise that there is WKD. From many discussions I learned, that it is merely known how and where to get our public keys.
(In reply to Jonas Stein from comment #4) > 1) we can get this for free without any negative side effects. > 2) with his link we also advertise that there is WKD. > > From many discussions I learned, that it is merely known how and where to > get our public keys. A few things: - We can advertise that we support WKD - We could potentially link the GPG fingerprint to the WKD URL for that key. Is that sufficient, or are we looking for other things?
I'd say link the fingerprints to the WKD URLs and document that WKD can be used directly via CLI.
@alec Advertising WKD and the addition of the links to WKD would be great.
I implemented a link to keys.g.o for developer 'profiles' based on PGP key IDs. It should be relatively simple to implement a similar minor improvement on www.g.o...
(In reply to Matthew Marchese from comment #8) > I implemented a link to keys.g.o for developer 'profiles' based on PGP key > IDs. It should be relatively simple to implement a similar minor improvement > on www.g.o... As maffblaster spotted, I did this a few weeks ago but forgot about this bug! https://gitweb.gentoo.org/sites/www.git/commit/?id=dccbe06e7f39bbeb2e223f3db2108fa74b935aa9 https://gitweb.gentoo.org/sites/www.git/commit/?id=0c6dc04330ee350d0a1d60b0862678f1f8ce1cca