IF YOU WOULD LIKE TO GET AN ACCOUNT, please write an
email to Administrator. User accounts are meant only to access repo
and report issues and/or generate pull requests.
This is a purpose-specific Git hosting for
BaseALT
projects. Thank you for your understanding!
Только зарегистрированные пользователи имеют доступ к сервису!
Для получения аккаунта, обратитесь к администратору.
- Instead of producing a free-form string, add a
`std::process::Command`-inspired framework for command hints.
- There are three benefits: First, we can provide robust quoting.
Then, we can validate sq invocations using the CLI parser.
Finally, we can nicely wrap the hints.
- Also list the found certificates when writing to a file.
- Emphasize that the results are not to be trusted by saying that
the are related to the query.
- See #296.
- Rename `sq network fetch` to `sq network search` to emphasize that
this is key discovery, and may return related or even wrong results.
Likewise for the key server, WKD, and DANE methods.
- See #296.
- When importing keys, also print whether the key or cert component
was unchanged, new, or updated, and also print cert import stats:
% sq key import test-modified.key
Imported CDBDAC59F236D281AAE839E923B926148F77F86F
test@example.org (UNAUTHENTICATED) from test-modified.key: key
unchanged, cert updated
Imported 0 new keys, updated 0 keys, 1 key unchanged, 0 errors.
Imported 0 new certificates, updated 1 certificate,
0 certificates unchanged, 0 errors.
- By being more consistent in our output, and more explicit about
what is happening and the distinction between key and cert, this
will hopefully be less confusing.
- Fixes#256.
- The keyflags argument restricts which certificates to display,
which was wrong in four of the callers, and right in one. Fix
this by supplying the right key flags to Sq::best_userid_for.
- By splitting `--handle` into `--cert` and `--key`, where the
former only matches on primary keys, and the latter matches on
both primary keys and subkeys.
- Fixes#287.
- It was possible to use `--allow-not-alive-certifier` and
`--allow-revoked-certifier` to force `sq pki certify` to use
expired and revoked certificates.
- Consistent with the principle that `sq` should support a lot, but
not everything, remove them.
- Fixes#365.
- Add and use a custom value parser for absolute directories with
explicit default for --home, --cert-store, and --key-store.
- If `default` is given, this parses to `None`. If an empty path is
given, a hint is displayed to give `default` instead.
- If a relative path is given, a hint is displayed to use an
absolute path instead.
- Fixes#299.
- When setting a certificate's expiration time, we update each user
ID's self signature. If a user ID is revoked, creating a new self
signature will "unrevoke it."
- Skip user IDs that are revoked.
