-
Notifications
You must be signed in to change notification settings - Fork 39
/
Copy pathkeysign
executable file
·75 lines (72 loc) · 3.63 KB
/
keysign
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
#!/usr/bin/env bash
#
# GPG keysigning utility, because it's uberannoying to type all these commands
# over and over again.
#
# @author Isis Lovecruft, 0x2cdb8b35
# @version 0.0.2
# @license GPLv3
CCZE_IS_INSTALLED=$(dpkg -l | awk '/^ii/{print $2}' | grep ccze)
if [[ "$#" == "0" ]]; then
echo -e "\033[40m\033[1;32m Usage: ./keysign <keyID> \033[0m"; echo;
echo -e "\033[40m\033[0;32m Requests the given keyID from the default keyserver, displays the fingerprint, \033[0m"
echo -e "\033[40m\033[0;32m and enters the 'gpg --edit-key' menu for that key. From that menu, the user \033[0m"
echo -e "\033[40m\033[0;32m will commonly want to type 'trust' to set the validity of the key, and then \033[0m"
echo -e "\033[40m\033[0;32m type 'sign' to sign the key. More options can obviously be seen by typing 'help'. \033[0m"
echo -e "\033[40m\033[0;32m Type 'save' to exit the edit-key menu. \033[0m"; echo;
echo -e "\033[40m\033[0;32m Lastly, there is an option to send the newly signed key to the default keyserver, \033[0m"
echo -e "\033[40m\033[0;32m store it locally only, or export it as an ascii-armoured file to give to the key's \033[0m"
echo -e "\033[40m\033[0;32m owner. \033[0m"; echo;
echo -e "\033[40m\033[0;32m If multiple keyIDs are specified, they will be processed in the order given. \033[0m"; echo;
exit 1
fi
for i in "$@"; do
clear
if [[ "$i" != "" ]]; then
gpg --recv-key $i
FP=$(gpg --fingerprint $i | grep fingerprint)
echo; echo -e "\033[40m\033[1;36m $FP \033[0m"; echo; sleep 2;
echo; echo -e "\033[40m\033[0;36m Would you like to see $i's signatures before signing? (y/N): \033[0m"
read opt
case "$opt" in
"Y"|"y"|"Yes"|"yes")
if [[ "$CCZE_IS_INSTALLED" != "" ]]; then
gpg --list-sigs $i | ccze -A
else
gpg --list-sigs $i | less
fi
;;
* )
;;
esac
echo -e "\033[40m\033[1;36m Entering GPG edit-key menu... \033[0m"; echo;
echo -e "\033[40m\033[0;36m Type \033[40m\033[1;36m'trust'\033[0m \033[40m\033[0;36mto assign trust for key $i, before typing \033[40m\033[1;36m'sign'\033[0m\033[40m\033[0;36m to\033[0m"
echo -e "\033[40m\033[0;36m sign. Type \033[40m\033[1;36m'help'\033[0m \033[40m\033[0;36m for a list of more options, \033[40m\033[1;36m'quit'\033[0m\033[40m\033[0;36m to exit, or"
echo -e "\033[40m\033[1;36m 'save'\033[0m \033[40m\033[0;36m to save. \033[0m"; echo;
gpg --no-greeting --edit-key $i
echo; echo -e "\033[40m\033[1;36m Would you like to send the signed key to a keyserver? (Y/n): \033[0m"; echo;
read choice
case "$choice" in
"N"|"n"|"No"|"no")
echo -e "\033[40m\033[0;36m Keeping signed key locally... \033[0m"; echo;
echo -e "\033[40m\033[1;36m Would you like to export this key to send to its owner? (Y/n): \033[0m"; echo;
read yn
case "$yn" in
"N"|"n"|"No"|"no")
echo -e "\033[40m\033[0;36m Exiting... \033[0m"; echo;
exit 0
;;
* )
echo -e "\033[40m\033[0;36m Saving as "$HOME"/"$i"-signed.asc... \033[0m"; echo;
gpg -a -o $HOME/$i-signed.asc --export $i
exit 0
;;
esac
;;
* )
gpg --send-key $i; echo;
exit 0
;;
esac
fi
done