1 |
commit: 920909aaa68421f2999c4bb5c917a9b6274504fa |
2 |
Author: Brian Dolbec <dolsen <AT> gentoo <DOT> org> |
3 |
AuthorDate: Thu Jan 1 21:15:21 2015 +0000 |
4 |
Commit: Brian Dolbec <dolsen <AT> gentoo <DOT> org> |
5 |
CommitDate: Thu Jan 1 21:15:21 2015 +0000 |
6 |
URL: http://sources.gentoo.org/gitweb/?p=proj/gentoo-keys.git;a=commit;h=920909aa |
7 |
|
8 |
gkeys: update gkeys.conf |
9 |
|
10 |
--- |
11 |
gkeys/etc/gkeys.conf | 48 ++++++++++++++++++++++++++++++++---------------- |
12 |
1 file changed, 32 insertions(+), 16 deletions(-) |
13 |
|
14 |
diff --git a/gkeys/etc/gkeys.conf b/gkeys/etc/gkeys.conf |
15 |
index d9a42c0..e30d804 100644 |
16 |
--- a/gkeys/etc/gkeys.conf |
17 |
+++ b/gkeys/etc/gkeys.conf |
18 |
@@ -15,30 +15,38 @@ keyserver: pool.sks-keyservers.net |
19 |
gkeysdir: /var/lib/gentoo/gkeys |
20 |
|
21 |
|
22 |
-# keyring: The directory where the official keyring with the specified keys |
23 |
-# will be exported. |
24 |
+# default user home directory |
25 |
+homedir: ~ |
26 |
+ |
27 |
+ |
28 |
+# user gkey directory |
29 |
+user-dir = %(homedir)s/gkeys-user |
30 |
+ |
31 |
+ |
32 |
+# base keyring dir |
33 |
keyring: %(gkeysdir)s/keyrings |
34 |
|
35 |
|
36 |
-# The default keyring to use |
37 |
+# The default keyring, nick to use |
38 |
# for verification if not specified |
39 |
verify-keyring: gentoo |
40 |
+verify-nick: gkeys |
41 |
|
42 |
|
43 |
# Base directory to use as the path prefix to use |
44 |
# for the signing capable keyrings, keyring settings |
45 |
# eg: '/' for root if absolute paths are used for homedir, keyring |
46 |
# eg: %(gkeysdir)s if using relative paths |
47 |
-sign-keydir: %(gkeysdir)s/sign |
48 |
+sign-keydir: %(keyring)s/sign |
49 |
|
50 |
|
51 |
-# seedsdir: The directory for all seed files |
52 |
+# seedsdir: base directory for all seed files |
53 |
# used when searching all seed files. |
54 |
seedsdir: %(gkeysdir)s/seeds |
55 |
|
56 |
|
57 |
# logfile directory |
58 |
-logdir: /var/log/gkeys |
59 |
+logdir: %(gkeysdir)s/logs |
60 |
|
61 |
|
62 |
[permissions] |
63 |
@@ -48,7 +56,7 @@ logdir: /var/log/gkeys |
64 |
directories: 0o775 |
65 |
|
66 |
#umask setting (octal) |
67 |
-files: 0o002 |
68 |
+files: 0o022 |
69 |
|
70 |
|
71 |
[seeds] |
72 |
@@ -62,14 +70,24 @@ files: 0o002 |
73 |
gentoo: %(seedsdir)s/gentoo.seeds |
74 |
gentoo-devs: %(seedsdir)s/gentoo-devs.seeds |
75 |
|
76 |
+# Add sign here for ability to choose as a category |
77 |
+# but leave the value blank to prevent accidental changes |
78 |
+# this subdir directory is where you would copy your gpghome directories to |
79 |
+# after creating your key with gkey-gen. Name them the same as the nick you use. |
80 |
+#sign: |
81 |
+ |
82 |
|
83 |
[seedurls] |
84 |
|
85 |
# Use the filenames as the keys. |
86 |
# The will be paired to the seed file of the same name for fetching, updating |
87 |
+# category = category or seedfile name |
88 |
+# eg: category: url |
89 |
gentoo: https://api.gentoo.org/gentoo-keys/seeds/gentoo.seeds |
90 |
gentoo-devs: https://api.gentoo.org/gentoo-keys/seeds/gentoo-devs.seeds |
91 |
|
92 |
+#sign: |
93 |
+ |
94 |
|
95 |
[verify-seeds] |
96 |
|
97 |
@@ -79,24 +97,22 @@ gentoo-devs: https://api.gentoo.org/gentoo-keys/seeds/gentoo-devs.seeds |
98 |
gentoo: gentoo gkeys |
99 |
gentoo-devs: gentoo gkeys |
100 |
|
101 |
+#sign: |
102 |
+ |
103 |
|
104 |
[sign] |
105 |
|
106 |
# GKEY nick used for verification of seeds and other gkey files |
107 |
-#nick = foo |
108 |
- |
109 |
+nick = |
110 |
|
111 |
# The home or key directory to use for signing files |
112 |
-#keydir: foo |
113 |
- |
114 |
+keydir: |
115 |
|
116 |
# keyring to use if not the default |
117 |
-# keyring: bar |
118 |
- |
119 |
+#keyring: |
120 |
|
121 |
# The key fingerprint to use for signing |
122 |
-# key: 0x01234567891012345 |
123 |
- |
124 |
+key: |
125 |
|
126 |
# the gpg signature option to use for signing |
127 |
-# type: detach-sign |
128 |
+type: detach-sign |