Mirror
/
RoundcubeMail
mirror of https://github.com/roundcube/roundcubemail.git
1
0
Fork 0
Code Issues Releases Wiki Activity
RoundCube Webmail
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8933 Commits
58 Branches
196 Tags
151 MiB
 
 
 
 
 
Tree: 7901047474
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '7901047474'
${ noResults }
RoundcubeMail/plugins/enigma
Aleksander Machniak 793bf96747
Enigma: Fix compatibility with assets_dir 		8 years ago
..
home Update .htaccess rules for Apache 2.4 10 years ago
lib Enigma: Fix compatibility with assets_dir 8 years ago
localization Update localization 9 years ago
skins Fix class in keys list 9 years ago
tests dirname(__FILE__) -> __DIR__ 11 years ago
README Add note about PinEntry issues with SELinux (#5620) 9 years ago
composer.json Require Crypt_GPG 1.4.2 with fix for #5304 9 years ago
config.inc.php.dist Enigma: Add possibility to configure gpg-agent binary location (enigma_pgp_agent) 9 years ago
enigma.js Enigma: Fix encoding of a key search phrase (#5459) 9 years ago
enigma.php Enigma: Fix keys import from inside of an encrypted message (#5285) 9 years ago
openpgp.min.js Enigma: Client-side keys generation (with OpenPGP.js) 10 years ago

README 

Enigma Plugin for Roundcube

This plugin adds support for viewing and sending of signed and encrypted
messages in PGP (RFC 2440) and PGP/MIME (RFC 3156) format.

The plugin uses gpg binary on the server and stores all keys
(including private keys of the users) on the server.
Encryption/decryption is done server-side. So, this plugin
is for users that trust the server.


Implemented features:
---------------------
+ PGP: signatures verification
+ PGP: messages decryption
+ PGP: Sending of encrypted/signed messages
+ PGP: keys management UI (key import, export, delete)
+ PGP: key generation (client- or server-side)
+ Handling of PGP keys attached to incoming messages
+ User preferences to disable plugin features
+ Attaching public keys to email


TODO:
-----
- Handling of big messages with temp files
- Key info in contact details page (optional)
- Extended key management:
   - disable,
   - revoke,
   - change expiration date, change passphrase, add photo,
   - manage user IDs
   - export private keys
- Generate revocation certs
- Search filter to see invalid/expired keys
- Key server(s) support (search, import, upload, refresh)
- Mark keys as trusted/untrasted, display appropriate message in verify/decrypt status
- Change attachment icon on messages list for encrypted messages (like vcard_attachment plugin does)
- Support for multi-server installations (store keys in sql database?)
- Per-Identity settings (including keys/certs)
- Performance improvements:
   - cache decrypted message key id so we can skip decryption if we have no password in session
   - cache (last or successful only?) sig verification status to not verify on every msg preview (optional)
- S/MIME: Certs generation
- S/MIME: Certs management
- S/MIME: signed messages verification
- S/MIME: encrypted messages decryption
- S/MIME: Sending signed/encrypted messages
- S/MIME: Handling of certs attached to incoming messages
- S/MIME: Certificate info in Contacts details page (optional)


KNOWN ISSUES:
-------------
There are some know issues with accepting key passphrases on various
system configurations. This is caused by issues in PinEntry handling.
Make sure that vendor/bin/crypt-gpg-pinentry works from command line.

Possible reasons:
- non-supported GnuPG version, i.e. >= 2.1
- non-working loader in shebang (#! /usr/bin/env php)
  Make sure it works for the user the php scripts are executed upon
  (i.e. apache, www-date, etc.)
- SELinux setting, try command: setsebool -P httpd_unified 0

Note: for server use GnuPG developers still recommend version 1.4.