Comments (7)
Indeed we want to make this optional. So the user would have to enter a key file on setup of an already initialized account.
On initial setup then also the "publish private key" can be optional.
As this is possible without changing the metadata file, I think this can added without problems later.
We did it first this way as it is risky if you loose your private key and for most user the encrypted and uploaded private key is enough.
@LukasReschke please correct me if I am wrong on any point.
from end_to_end_encryption.
I agree with @tobiasKaminsky. This is on the road map but will be probably a v2.0 feature.
from end_to_end_encryption.
Pardon the silly question, but why is the server app currently needed when the work is being done on the client device?
from end_to_end_encryption.
Server app is
- handling encrypted private/public keys, otherwise user would have to transfer them from one device to another manually
- stores/updates encrypted metadata per folder
It is acting like a "stupid" file server, and does not have any real logic.
from end_to_end_encryption.
Is there work being done to allow use of keys on an a client-side hardware token (eg Yubikey)?
from end_to_end_encryption.
from end_to_end_encryption.
handling encrypted private/public keys, otherwise user would have to transfer them from one device to another manually
This is exactly what I would find preferable related to this issue: Only allow users to transfer & recover keys between devices manually (if they prefer it that way). Thank you all for working on this project! 👍
from end_to_end_encryption.
Related Issues (20)
- Failed to update nextcloud/ocp package on branch stable27
- Add example use cases for E2EE (versus SSE) to README
- Add list of Server features not usable with E2EE (versus SSE + generally) to README
- l10n: Remove string from translation (Transifex) HOT 3
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- "Write access to end-to-end encrypted folder requires token" out of nowhere (E2EE file deletion impossible with "403 Forbidden") HOT 2
- Can not install : Index name "id" for table "oc_bookmarks" collides with the constraint on table "oc_e2e_encryption_lock" HOT 7
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- 500 on v1 when there is no metadata
- Failed to update nextcloud/ocp package on branch stable27
- Inconsistent type of version in metadata causing client issues
- Latest version on nextcloud 28 cant use file drop links HOT 1
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
- Failed to update nextcloud/ocp package on branch stable27
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from end_to_end_encryption.