--- /dev/null
+Keyringer
+=========
+
+Encrypting a key
+----------------
+
+ scripts/encrypt <file>
+
+Decrypting a key (only to stdout)
+---------------------------------
+
+ scripts/decrypt <file>
+
+Re-encrypting a key
+-------------------
+
+ scripts/recrypt <file>
+
+Notes
+-----
+
+ 1. The <file> is any file inside the keys/ folder.
+
+ 2. Never decrypt a key and write it to the disk, except
+ if you're adding it to your personall keyring.
+
+ 3. Recipients are defined at file config/recipients.
+ Please add just trustable recipients.
+
+Using with GNU Privacy Guard
+----------------------------
+
+Exporting public keys:
+
+ gpg --armor --export <keyid>
+
+Exporting private keys (take care):
+
+ gpg --armor --export-secret-keys
+
--- /dev/null
+john@doe.com XXXXXXXX
--- /dev/null
+#!/bin/bash
+# decrypt
+
+FILE="$1"
+BASENAME="`basename $0`"
+
+if [ -z "$FILE" ]; then
+ echo "Usage: `basename $0` <file>"
+ exit 1
+elif [ ! -f "keys/$FILE" ]; then
+ echo "File not found"
+ exit 1
+fi
+
+gpg -d keys/$FILE
--- /dev/null
+#!/bin/bash
+# encrypt to multiple recipients
+
+FILE="$1"
+BASENAME="`basename $0`"
+RECIPIENTS="config/recipients"
+
+if [ -z "$FILE" ]; then
+ echo "Usage: `basename $0` <file>"
+ exit 1
+elif [ ! -f "$RECIPIENTS" ]; then
+ echo "No recipient config was found"
+ exit 1
+fi
+
+mkdir -p keys/`dirname $FILE`
+recipients="$(awk '{ print "-r " $2 }' $RECIPIENTS | xargs)"
+gpg --armor -e -s $recipients - > keys/$FILE
--- /dev/null
+#!/bin/bash
+# re-encrypt to multiple recipients
+
+FILE="$1"
+BASENAME="`basename $0`"
+RECIPIENTS="config/recipients"
+
+if [ -z "$FILE" ]; then
+ echo "Usage: `basename $0` <file>"
+ exit 1
+elif [ ! -f "$RECIPIENTS" ]; then
+ echo "No recipient config was found"
+ exit 1
+elif [ ! -f "keys/$FILE" ]; then
+ echo "File not found"
+ exit 1
+fi
+
+recipients="$(awk '{ print "-r " $2 }' $RECIPIENTS | xargs)"
+gpg -d keys/$FILE | gpg --armor -e -s $recipients > keys/$FILE
projects / keyringer.git / commitdiff