mattermost-plugin-e2ee
mattermost-plugin-e2ee copied to clipboard
quarkslab
End-to-end encryption plugin for Mattermost
In channels it could be problematic to force every participant into using e2ee. Also anybody being able to disable encryption at will, could pose a security risks. So it would...
Ticket to track ideas/advances on that [known limitation](https://github.com/quarkslab/mattermost-plugin-e2ee#initial-support-for-notifications-from-mentions)
Ticket to track ideas/advances on that [known limitation](https://github.com/quarkslab/mattermost-plugin-e2ee#webapp-integrity).
Nothing prevents two (or more) users from sharing the same private/public key pair. We should check for this server side, and reject an already known public key. Initial report: https://twitter.com/Tangeek42/status/1449005868196958212
Currently, if someone activates e2ee on a channel but some channel members don't have a public key, the e2ee bot just post the list of these members in the channel...
Today we have two commands to setup e2ee: * /init generate a new key & publish it * /import imports a previously backuped key We have errors messages depending on...
The keylock left margin renders differently in FF vs. Chrome/Electron. Use an SVG to make sure it's always render the same.
Propose a plugin-wide configuration that would automatically activate encryption for a channel if everyone in this channel has a key setup.
Attachments are not encrypted in the Mattermost E2EE plugin model, due to current limitations. This is left implicit and users may by mistake share sensitive information as plaintext through attachments....
