signatures¶

Note

Can probably use local instead of global for per-project settings. Not sure if local settings override global, but I would hope so.

Sign commits¶

git config --global user.signkey public 80E6A369  ## Replace 80E6A369 will private key ID

sign commits with ssh¶

git config --global gpg.format ssh
git config --global user.signingkey ~/.ssh/gitlab_lab.pub
git config --global commit.gpgsign true

Set email/username¶

git config --global user.email=ddpbsd@gmail.com
git config --global user.name=ddp

show signatures¶

For git signed commits:

git log --show-signature

For ssh signed commits an allowedSignersFile needs to be defined and present. The format of this file is email_address public_key (although email_address namespaces=”git” public_key also works?).

Next, add the following to your ~/.gitconfig file (this might work as a local config option as well), changing the path to the allowed_signers file as necessary:

[gpg "ssh"]
   allowedSignersFile = ~/.ssh/allowed_signers

After this change, the –show-signature flag can be used to check the signatures.

signatures¶

Sign commits¶

sign commits with ssh¶

Set email/username¶

show signatures¶

notes

Navigation

Related Topics