Uploaded image for project: 'Bitbucket Data Center'
  1. Bitbucket Data Center
  2. BSERV-12437

Add the option to export GPG keys from other users and not just the fingerprint

    XMLWordPrintable

Details

    • Suggestion
    • Resolution: Unresolved
    • None
    • User Profiles
    • None
    • 1
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Problem Definition

      Bitbucket does store user's GPG keys so that commits can be verified when pushing them to Bitbucket. As the keys are already stored in Bitbucket, it'd be great to have the option to download those by other users so that they can verify commits from other users locally.

      Right now, the REST API endpoing GET /rest/gpg/1.0/keys only allows you to export fingerprints and not keys. In addition, to download other users' keys you need to be an admin.

      Suggested Solution

      Have the ability for other user's to download your own and other users' GPG public key so that you can verify other users commits locally.

      Workaround

      No workaround other than using a separate solution as a key management server.

      Attachments

        Activity

          People

            Unassigned Unassigned
            malonso@atlassian.com Miguel Alonso
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated: