| | |
|---|
| | | Encryption/decryption is done server-side. So, this plugin |
|---|
| | | is for users that trust the server. |
|---|
| | | |
|---|
| | | WARNING! The plugin is in very early state. See below for a list |
|---|
| | | of missing features and known issues. |
|---|
| | | |
|---|
| | | |
|---|
| | | Implemented features: |
|---|
| | | --------------------- |
|---|
| | | + PGP: signatures verification |
|---|
| | | + PGP: messages decryption |
|---|
| | | + PGP: Sending of encrypted/signed messages |
|---|
| | | + PGP: keys management UI (keys import and delete) |
|---|
| | | + PGP: keys management UI (key import, export, delete) |
|---|
| | | + PGP: key generation (client- or server-side) |
|---|
| | | + Handling of PGP keys attached to incoming messages |
|---|
| | | + User preferences to disable plugin features |
|---|
| | | + Attaching public keys to email |
|---|
| | | |
|---|
| | | TODO (must have): |
|---|
| | | ----------------- |
|---|
| | | - Keys export to file |
|---|
| | | - Disable Reply/Forward options when viewing encrypted messages |
|---|
| | | until they are decrypted successfully |
|---|
| | | - Handling of replying/forwarding of encrypted/signed messages |
|---|
| | | - Client-side keys generation (with OpenPGP.js?) |
|---|
| | | |
|---|
| | | TODO (later): |
|---|
| | | ------------- |
|---|
| | | TODO: |
|---|
| | | ----- |
|---|
| | | - Handling of big messages with temp files |
|---|
| | | - Server-side keys generation (warning: no-entropy issue, max_execution_time issue) |
|---|
| | | - Key info in contact details page (optional) |
|---|
| | | - Extended key management: |
|---|
| | | - disable, |
|---|
| | | - revoke, |
|---|
| | | - change expiration date, change passphrase, add photo, |
|---|
| | | - manage user IDs |
|---|
| | | - export private keys |
|---|
| | | - Generate revocation certs |
|---|
| | | - Search filter to see invalid/expired keys |
|---|
| | | - Key server(s) support (search, import, upload, refresh) |
|---|
| | | - Attaching public keys to email |
|---|
| | | - Mark keys as trusted/untrasted, display appropriate message in verify/decrypt status |
|---|
| | | - Change attachment icon on messages list for encrypted messages (like vcard_attachment plugin does) |
|---|
| | | - Support for multi-server installations (store keys in sql database?) |
|---|
| | |
|---|
| | | - S/MIME: Handling of certs attached to incoming messages |
|---|
| | | - S/MIME: Certificate info in Contacts details page (optional) |
|---|
| | | |
|---|
| | | Known issues: |
|---|
| | | |
|---|
| | | KNOWN ISSUES: |
|---|
| | | ------------- |
|---|
| | | 1. There are Crypt_GPG issues when using gnupg >= 2.0 |
|---|
| | | - http://pear.php.net/bugs/bug.php?id=19914 |
|---|
| | | - http://pear.php.net/bugs/bug.php?id=20453 |
|---|
| | | - http://pear.php.net/bugs/bug.php?id=20527 |
|---|
| | | There are some know issues with accepting key passphrases on various |
|---|
| | | system configurations. This is caused by issues in PinEntry handling. |
|---|
| | | Make sure that vendor/bin/crypt-gpg-pinentry works from command line. |
|---|
| | | Possible reasons: |
|---|
| | | - non-supported GnuPG version, i.e. >= 2.1 |
|---|
| | | - non-working loader in shebang (#! /usr/bin/env php) |
|---|
