Re: org-crypt.el --- Public key encryption for org-mode entries

emacs-orgmode@gnu.org archives
 help / color / mirror / code / Atom feed

From: Adam Spiers <orgmode@adamspiers.org>
To: emacs-orgmode@gnu.org
Subject: Re: org-crypt.el --- Public key encryption for org-mode entries
Date: Sat, 29 Dec 2007 20:19:04 +0000	[thread overview]
Message-ID: <20071229201904.GA10722@atlantic.linksys.moosehall> (raw)
In-Reply-To: <m2sl4y6sj1.fsf@newartisans.com>

On Fri, Sep 28, 2007 at 11:48:34PM -0400, John Wiegley wrote:
> The following code is preliminary, but gets the job done in my simple tests.
> Now's the time to beat down on, and refine, the user interface and behavior.

[snipped]

I gave this a go and the basic functionality works fine for me,
thanks!  As you are obviously aware from the above, there are issues
with the interface; here's an independent perspective on the gaps
which I would personally prefer to see prioritised first:

  - Only text before, not after, the CRYPTKEY property gets encrypted.

  - I couldn't get property inheritance to work at all via

      (setq org-use-property-inheritance '("CRYPTKEY"))

    (as per my other post in the last hour, this is not possible via
    the normal Customization UI) but maybe I'm misunderstanding
    something about how it's supposed to work.  The goal would be to
    support encryption of a whole subtree, e.g.

      * PROJECT top s3kr1t!
        :PROPERTIES:
        :CRYPTKEY: 7A2F2DDC
        :END:
        Here beginneth the classified dossier.
      ** If anyone sees this it means Global Thermonuclear War
      *** How about a nice game of chess?
      ** (and the universe might implode too)

  - org-decrypt-entry leaves a PGP block in there - is that necessary?

  - Local variable-based customisation of `after-save-hook' is not
    ideal because it overrides any global hooks.

  - Unless I'm missing something, shouldn't it be `before-save-hook'
    instead?  Currently, you save the buffer, it encrypts entries,
    then you have to hit save again.

  - Ideally the user would never see the PGP blocks from within emacs,
    only by looking at the raw file saved on disk.  Could a first
    appromixation to this could be achieved by having
    `before-save-hook' encrypt all entries, and `after-save-hook'
    decrypt them all again?

It may be worth observing that despite your comment:

;;                        If you want encryption to be manual, use `M-x
;;    org-encrypt-entries'.  Note that in this version -- mainly because I
;;    don't know epg.el better -- you will be asked for your password for
;;    every entry that needs encryption.

I did not experience this; this is almost certainly because I already
had a GPG agent daemon running, `use-agent' in my ~/.gnupg/options,
and emacs was invoked from a shell in such a way as to guarantee that
it inherited the correct value of $GPG_AGENT_INFO.  So from a
usability perspective it is not a particularly pressing issue that you
have coded it this way.

Hope this is of use, and thanks again for putting 0.1 out there!

Adam

next prev parent reply	other threads:[~2007-12-29 20:19 UTC|newest]

Thread overview: 5+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2007-09-29  3:48 org-crypt.el --- Public key encryption for org-mode entries John Wiegley
2007-09-29 17:53 ` Jason F. McBrayer
2007-09-29 23:38   ` John Wiegley
2007-12-29 20:19 ` Adam Spiers [this message]
2010-03-21  7:18 ` Carsten Dominik

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

  List information: https://www.orgmode.org/

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=20071229201904.GA10722@atlantic.linksys.moosehall \
    --to=orgmode@adamspiers.org \
    --cc=emacs-orgmode@gnu.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

Code repositories for project(s) associated with this public inbox

	https://git.savannah.gnu.org/cgit/emacs/org-mode.git

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).