commit: 16b019da0a4a6bdbaf5f03ea033fd6b822c5eae5 Author: Michał Górny <mgorny <AT> gentoo <DOT> org> AuthorDate: Sun Mar 10 21:22:40 2019 +0000 Commit: Michał Górny <mgorny <AT> gentoo <DOT> org> CommitDate: Sun Mar 10 21:22:40 2019 +0000 URL: https://gitweb.gentoo.org/data/glep.git/commit/?id=16b019da
glep-0079: Allow creating new signatures before expiration Modify the paragraph on handling expired signatures to clearly indicate that the new signature can be created when the old one is *about to expire*. Requested by leio at the 2019-03-10 Council meeting. Signed-off-by: Michał Górny <mgorny <AT> gentoo.org> glep-0079.rst | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/glep-0079.rst b/glep-0079.rst index 8f61ced..45a18a1 100644 --- a/glep-0079.rst +++ b/glep-0079.rst @@ -6,7 +6,7 @@ Type: Standards Track Status: Draft Version: 1 Created: 2019-02-24 -Last-Modified: 2019-03-03 +Last-Modified: 2019-03-10 Post-History: 2019-02-24 Content-Type: text/x-rst Requires: 63 @@ -84,9 +84,10 @@ recruitment. Whenever a developer account is created, reactivated, renamed or has a new key fingerprint added, a signature is automatically created on the appropriate ``@gentoo.org`` UIDs and pushed to the keyservers. -Whenever an old signature expires, a new one is automatically created. -Whenever a developer account is disabled, renamed or has a fingerprint -removed, the signatures from obsolete UIDs are automatically revoked. +Whenever an old signature is about to expire, a new one is automatically +created. Whenever a developer account is disabled, renamed or has +a fingerprint removed, the signatures from obsolete UIDs are +automatically revoked. The signatures are issued only on the UIDs matching the Gentoo developer's ``@gentoo.org`` mailbox address, on keys whose primary key
