launchpad should verify gmail or DomainKeys authenticators
Bug #316272 reported by
Martin Pool
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Fix Released
|
Low
|
Martin Pool |
Bug Description
A fair number of Launchpad users use gmail. This works fine, except that it is not so easy to use gpg to sign your mail.
However, gmail has pretty strong assurance that the sender owns the account, and it puts data in to the headers that should make it possible to verify that the mail is authentic.
So when I send mail from <email address hidden>, and that address is associated with my Launchpad account, Launchpad should just trust the mail as if it were signed.
gmail is arguably the key example but we could apply this to other cases where we trust the sending domain.
stub Launchpad Enhancement Proposal created here: https:/
Related branches
lp://qastaging/~mbp/launchpad/dkim
- Jonathan Lange (community): Approve
- Graham Binns: Pending (code) requested
- Launchpad code reviewers: Pending requested
-
Diff: 914 lines (+267/-117)9 files modifiedlib/canonical/launchpad/doc/emailauthentication.txt (+16/-10)
lib/canonical/launchpad/mail/handlers.py (+54/-49)
lib/canonical/launchpad/mail/helpers.py (+20/-2)
lib/canonical/launchpad/mail/tests/test_handlers.py (+61/-0)
lib/lp/bugs/tests/bugs-emailinterface.txt (+39/-36)
lib/lp/services/mail/incoming.py (+28/-5)
lib/lp/services/mail/tests/incomingmail.txt (+24/-13)
lib/lp/services/mail/tests/test_incoming.py (+24/-1)
utilities/migrater/file-ownership.txt (+1/-1)
Superseded
for merging
into
lp://qastaging/launchpad/db-devel
- Jonathan Lange (community): Approve
- Graham Binns (community): Approve (code)
- Launchpad code reviewers: Pending requested
-
Diff: 1080 lines (+288/-135)13 files modifiedlib/canonical/buildd/test_buildd_recipe (+1/-1)
lib/canonical/launchpad/doc/emailauthentication.txt (+16/-10)
lib/canonical/launchpad/mail/handlers.py (+55/-49)
lib/canonical/launchpad/mail/helpers.py (+20/-2)
lib/canonical/launchpad/mail/tests/test_handlers.py (+61/-0)
lib/lp/bugs/tests/bugs-emailinterface.txt (+38/-35)
lib/lp/code/browser/tests/test_sourcepackagerecipe.py (+13/-13)
lib/lp/code/interfaces/sourcepackagerecipe.py (+1/-1)
lib/lp/code/model/tests/test_recipebuilder.py (+6/-4)
lib/lp/services/mail/incoming.py (+28/-5)
lib/lp/services/mail/tests/incomingmail.txt (+24/-13)
lib/lp/services/mail/tests/test_incoming.py (+24/-1)
utilities/migrater/file-ownership.txt (+1/-1)
Changed in launchpad-foundations: | |
status: | Confirmed → Triaged |
summary: |
- launchpad should verify gmail authenticators + launchpad should verify gmail or DomainKeys authenticators |
description: | updated |
tags: | added: dkim |
Changed in launchpad-registry: | |
status: | In Progress → Fix Committed |
tags: |
added: qa-ok removed: qa-needstesting |
Changed in launchpad-registry: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
i dont feel to comfortable with that idea.
we can easily check the user GPG key on launchpad, but i cant do the same to a gmail account.