blob: c7aabea88aaeabe4ccd8d683e26e41ac8c526a72 (
plain)
- # -*-shell-script-*-
- # This should be sourced by bash (though we welcome changes to make it POSIX sh compliant)
- # Monkeysphere authentication remove-certifier subcommand
- #
- # The monkeysphere scripts are written by:
- # Jameson Rollins <jrollins@finestructure.net>
- # Jamie McClelland <jm@mayfirst.org>
- # Daniel Kahn Gillmor <dkg@fifthhorseman.net>
- #
- # They are Copyright 2008-2009, and are all released under the GPL,
- # version 3 or later.
- # delete a certifiers key from the host keyring
- remove_certifier() {
- local keyID
- local fingerprint
- keyID="$1"
- if [ -z "$keyID" ] ; then
- failure "You must specify the key ID of a key to remove."
- fi
- if gpg_sphere "--no-options --list-options show-uid-validity --keyring ${GNUPGHOME_AUTHENTICATION}/pubring.gpg --list-key 0x${keyID}!" ; then
- read -p "Really remove above listed identity certifier? (y/N) " OK; OK=${OK:-N}
- if [ "${OK/y/Y}" != 'Y' ] ; then
- failure "Identity certifier not removed."
- fi
- else
- failure
- fi
- # delete the requested key from the sphere keyring
- # FIXME: should this be a revokation instead of a removal?
- if gpg_sphere "--delete-key --batch --yes 0x${keyID}!" ; then
- # delete key from core keyring as well
- gpg_core --delete-key --batch --yes "0x${keyID}!"
- # update the trustdb for the authentication keyring
- gpg_sphere "--check-trustdb"
- log info ""
- log info "Identity certifier removed."
- else
- failure "Problem removing identity certifier."
- fi
- }
|
