Closed Bug 1924357 Opened 1 year ago Closed 2 months ago

dialog to specify external gnupg key should make sure you import the public key as well (as it's needed)

Categories

(MailNews Core :: Security: OpenPGP, enhancement)

Product:
MailNews Core
Component:
Security: OpenPGP
Version:
Thunderbird 115
Type:
enhancement

Tracking

(thunderbird_esr140 wontfix, thunderbird144 wontfix)

Status:
RESOLVED FIXED
Milestone:
145 Branch
Tracking Flags:
Tracking Status
thunderbird_esr140 --- wontfix
thunderbird144 --- wontfix

People

(Reporter: benjamin, Assigned: mkmelin)

References

Details

Attachments

(2 files)

image.png
49.40 KB, image/png
Details
Bug 1924357 - When setting up external gnupg, show import public key page if we didn't have the key. r=kaie,jtracey
48 bytes, text/x-phabricator-request
Details | Review

User Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:131.0) Gecko/20100101 Firefox/131.0

Steps to reproduce:

Referenced an existing external PGP key, using GPG - fantastic feature, love it 🥳 ❤️

Actual results:

As many other people seem to do [1][2][3], I missed the instruction to add the public key via Key Manager. It took me some time trying other solutions (like different KEY ID format).

The instruction is in the wrong place. It needs to be displayed when it's relevant and - even better - have a field to directly start the import of the public key.

[1] https://www.reddit.com/r/Thunderbird/comments/17pbxf2/gpg_smartcard_implementation_in_current_tb_version/
[2] https://bacardi55.io/2024/06/16/encrypt-emails-with-thunderbird-and-gpg/
[3] https://thunderbird.topicbox.com/groups/e2ee/T93345d06db049fb4

Expected results:

I think the import wizard should ask for the public key, since it's mandatory.

Component: Untriaged → Security: OpenPGP
Product: Thunderbird → MailNews Core

In the description, I should have clearly noted that the issue is that adding a public key is mandatory but it's not part of the data asked for in the import wizard. Without it, encrypting/signing new messages results in a subsequent error:

Unable to send the message, because there is a problem with your personal key. The configured key ID ‘KEYID’ cannot be found on your keyring.

Attached image image.png

The instruction to also add public key is there, but that dialog could make sure you have one.

Summary: UX improvements to public key import for imported/external PGP keys → dialog to specify external gnupg key should make sure you import the public key as well (as it's needed)

Yes we should assist the user better.

See Also: → 1670174
Status: UNCONFIRMED → NEW
Ever confirmed: true

I think after "Save key id", the wizard should show a next step to import the public key, if none was found.

Assignee: nobody → mkmelin+mozilla
Status: NEW → ASSIGNED
Attachment #9509200 - Attachment description: Bug 1924357 - When setting up external gnupg, show import public key page if we didn't have the key. r=kaie → Bug 1924357 - When setting up external gnupg, show import public key page if we didn't have the key. r=kaie,jtracey
status-thunderbird144: --- → wontfix
status-thunderbird_esr140: --- → wontfix
Keywords: checkin-needed-tb
Target Milestone: --- → 145 Branch

Pushed by edicharry@thunderbird.net:
https://hg.mozilla.org/comm-central/rev/854c22123f33
When setting up external gnupg, show import public key page if we didn't have the key. r=kaie

Status: ASSIGNED → RESOLVED
Closed: 2 months ago
Keywords: checkin-needed-tb
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: