On 14-12-18 23:29:49, Joachim Breitner wrote: > keys may be compromised, or become too weak, or need to be change for > some other reason. pass should support that operation with a command.
It supports that out of the box :), pass init key-id.
From the man page:
init [ --path=sub-folder, -p sub-folder ] gpg-id...
Initialize new password storage and use gpg-id for encryption.
Multiple gpg-ids may be specified, in order to encrypt each
password with multiple ids. This command must be run first
before a password store can be used. If the specified gpg-id is
different from the key used in any existing files, these files
will be reencrypted to use the new id.
> That command probably also has to clear the git repository, and notify
> the user to wipe existing clones.
This also seems to be happening when doing 'pass init', looking at the
code[1].
Therefore, I'm going to mark this bug as fixed.
[1]: http://git.zx2c4.com/password-store/tree/src/password-store.sh#n280
--
Víctor
--
E-Mail: <m...@viccuad.me>, OpenPGP-Key-ID: 0xA2591E231E251F36
Key fingerprint: E3C5 114C 0C5B 4C49 BA03 0991 A259 1E23 1E25 1F36
My signed E-Mails are trustworthy.
pgptBQokZpMFi.pgp
Description: PGP signature
