GpgFrontend icon indicating copy to clipboard operation
GpgFrontend copied to clipboard
verified publisher icon saturneric

Signatures - signing subkey selection

Open Achim16 opened this issue 1 year ago • 1 comments

You might want to consider that keys can have several subkeys eligible for signing so that a key selection could show subkeys, see image of how WinPT for GPG legacy handles this.

image

Achim16 avatar May 30 '24 10:05 Achim16

After some research on my part, the programming interface provided by GnuPG (GPGME) does not currently support specifying a specific subkey in an operation. However, GnuPG itself supports it with its command options. Things get a little more complicated, and I don't really want to go directly to GPG and operate through the interface they provide.

So, this requirement may be placed for a while longer. I may find time to provide them with feedback and expect them to provide such support.

saturneric avatar Jun 29 '24 11:06 saturneric

Now with v2.1.6, you can see the best practice of subkeys: export it, and use it separately without the primary key. And you will realize that the function of selecting a subkey for a particular operation is not a must, at least for now.

Refer: https://gpgfrontend.bktus.com/guides/generate-use-subkey

saturneric avatar Dec 18 '24 08:12 saturneric

With recent updates, GPGME has added the ability to specify subkeys for signing operations. As a result, GpgFrontend now supports selecting a specific signing subkey when multiple keys are selected and some of them contain additional signing-capable subkeys. When this situation occurs, you can now choose exactly which subkey(s) to use for signing, making the workflow more flexible and in line with best practices. You can try this feature in the latest Nightly Build.

Feedback and further suggestions are always welcome!

saturneric avatar Jun 07 '25 15:06 saturneric