Question: Understanding recipients parameters for encrypting files #275
Comments
|
Sharing what worked for me after having to do something similar myself. It seems the See documentation: python-gnupg/pretty_bad_protocol/gnupg.py Line 987 in 7845714 So you have two options.
with open(public_key_file, 'rb') as f:
public_key = gpg.import_keys(f.read())
fingerprint = public_key.fingerprints[0]
gpg.encrypt("My message", fingerprint)
input_data = gpg.gen_key_input(
key_type="RSA",
key_length=4096,
name_email="[email protected]",
expire_date="2021-06-06",
passphrase="shhh",
key = gpg.gen_key(input_data)
fingerprint = key.fingerprint
gpg.encrypt("My message", fingerprint)Based on my understanding so far, I believe option 1 is the most appropriate approach when moving encrypted content. You may have figured this out already, but this may help someone else with a similar issue like me last week. If you had any luck feel free to backup or correct anything I may have gotten wrong. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi, could someone either direct me to documentation or help me understand how to programmatically set the recipients parameter for the encryption method? And understand what value to use for the recipient? Our use case is that we are downloading a public key from s3, use it to decrypt a file, perform some processing, and then re-encrypting the file.
What's the best approach for setting the recipient? I have seen implementations where we can extract the keyid or fingerprint from the public key itself, or hardcoding an email. I don't understand what approach to use in the case where don't necessarily know how the public keys were created.
Thank you for your time.
The text was updated successfully, but these errors were encountered: