tag:gpgtools.tenderapp.com,2011-11-04:/discussions/problems/27796-gpg-keychain-access-should-provide-functionality-to-sign-only-some-userids-of-a-keyGPGTools: Discussion 2018-03-05T14:31:44Ztag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-10-02T19:29:57Z2014-10-02T19:29:57ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Hi Nick,</p>
<p>thanks for the feedback. This should be fixed already. Could you
please download and install our latest <a href=
"https://releases.gpgtools.org/nightlies/GPG%20Suite-latest.dmg">nightly
build</a> and see if the problem persists.</p>
<p>You can find sig and SHA1 on the GPGTools <a href=
"https://releases.gpgtools.org/nightlies/">Nightlies page</a>.</p>
<p>All the best, steve</p>
<p>Disclaimer: This is a development version which has not been
thoroughly tested yet - bugs or crashes are to be expected. Thanks
for helping us test.</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-10-03T17:10:28Z2014-10-03T17:10:29ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Ah, yes, I hadn't yet downloaded the latest version. I see that
in the current version I can select a particular user ID in the key
info page and right click and select sign from the contextual menu,
in order to sign a particular user ID rather than all IDs
associated with the key. Bravo!</p>
<p>Documentation or usability might be improved. Can the option to
sign IDs be available from the contextual menu for signing the key?
But anyway, glad to see this functionality is present.</p></div>Nicktag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-10-04T17:50:50Z2014-10-04T17:50:50ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Hi Nick,</p>
<p>hm, do you have a suggestion how to solve this ideally?</p>
<p>A solution might be to keep the menu item as is, but add a
separate dialogue for the case when the user comes from the menu
entry. The new dialogue then would have another dropdown to let the
user select the UserID he is going to sign.</p>
<p>Does that sound like a sane solution? Do you have other
ideas?</p>
<p>Best, steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-10-08T21:49:05Z2014-10-08T21:49:06ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>I would suggest something like the following.</p>
<p>The most typical model will be signing a key that has a single
user ID or signing a key for a friend and all of her user IDs. So I
think the menu item and the contextual menu on the key should lead
to an interface that will by default sign all user IDs for the
selected key.</p>
<p>However, if you could have a collapsed "details" or "advanced
options" in that sign sheet, it could have a small table view of
the user IDs and allow the user to multi-select which IDs to sign.
You could also put signature expiration details in that "advanced
options" view. (I for one agree with other commenters that would
prefer the default be no expiry, but either way I don't think it
needs to be the most prominent option.) If a user uses the
contextual menu on a single user ID, then open the same dialog, but
with the "advanced options" opened up, with only that user ID
selected.</p>
<p>Also, while I like including the little documentation text in
this panel, I think it could be improved. Can it visually be
represented differently since it's explanatory rather than detail
about the action you're going to take? Also, I think the English
language version should be cleaned-up/clarified.</p></div>Nick Dotytag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-11-02T11:19:37Z2014-11-02T11:19:37ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Hi Nick,</p>
<p>current solution: to sign a single User ID:</p>
<ul>
<li>please double click the key you want to sign</li>
<li>open the User IDs tab and select the User ID you want to
sign</li>
</ul>
<p>The right-click and top menu option signs the entire key. This
is not good and we've a ticket for this problem:</p>
<p><a href=
"https://gpgtools.lighthouseapp.com/projects/65684-gpg-keychain-access/tickets/282">
https://gpgtools.lighthouseapp.com/projects/65684-gpg-keychain-acce...</a></p>
<p>If this discussion get's closed, it will be re-opened as soon as
the ticket is closed so you'll receive a notification. Feel free to
open a new discussions should you run into further problems or need
assistance.</p>
<p>I disagree that we should by default sign the entire key. While
you may be a user very aware of the consequences of your actions,
for most users this enitre topic is totally overwhelming. So the
depth User IDs are actually checked might be rather shallow. So I
think the default should be to sign only the primary User ID (which
will likely be the most used User ID) and add an option to change
which User ID is being signed.</p>
<p>We yet have to work out, how to best solve this problem. The
ticket now exists and this will likely not make it into the
upcoming 10.10 beta, but we will address this further down the
road.</p>
<p>If you want to improve any of the dialogue texts, feel free to
go ahead and send me an enhanced version via this discussion.</p>
<p>Regards,<br>
steve</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-11-02T22:26:30Z2014-11-02T22:26:30ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>+1, I think it makes sense for the default to be signing the
primary User ID. For the common case where a key only has one User
ID, that functions exactly the same, but it encourages users to
sign only one ID unless they think about choosing more IDs.</p>
<p>(It might be a good general rule that default options for
verification/certification/signing should be the minimal set, and
users select advanced options if they want to express greater
confidence or broader verification.)</p></div>Nick Dotytag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992014-12-17T22:00:29Z2014-12-17T22:00:29ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Absolutely. I think we have this covered with the existing
ticket.</p>
<p>Closing this discussion. It will be re-opened as soon as we have
news regarding the ticket.</p></div>Stevetag:gpgtools.tenderapp.com,2011-11-04:Comment/347532992018-03-05T14:31:35Z2018-03-05T14:31:35ZGPG Keychain Access should provide functionality to sign only some userids of a key<div><p>Could you please download and install our latest <a href="https://hotfixes.gpgtools.org/">latest hotfix GPG Suite</a> and see if that solves your problem. The entire signing dialog has been revamped.</p>
<p>All the best,<br>
steve</p>
<p>Disclaimer: This is a development version which has not been thoroughly tested yet - bugs or crashes are to be expected. Thanks for helping us test.</p></div>Steve