Hi Niklas, Thanks for the link, I hadn't seen that specific example. Looks to be exactly what I need (at least the signing portion).
I wonder what all your thoughts are on the password issue, the browser being a relatively unpredictable environment, there is always the possibility of something doing something it shouldn't. What about some type of load-time verification of the client source code. So the user knows "this is the web-app that it thinks it is". Any thoughts about this, or work being done elsewhere that anyone knows about? Cheers Nick On Wed, Feb 20, 2013 at 3:07 AM, Niklas Femerstrand <[email protected]> wrote: > Did you look at the test files? This is more or less what you're looking > for. > > /N > > > On 2013-02-20 04:50, Nick Jennings wrote: > > Hi All, > > I was wondering what would be the minimal setup needed to enable the > functionality of signing a text body in an html form. I'm writing a > simple proof of concept web-based (unhosted : http://unhosted.org) > email application for my (also very new) open source project, > Sockethub (http://sockethub.org). Sockethub is meant to be a > WebSocket-based development platform for sending and receiving > messages, and other forms of communication, using simplified JSON > objects, leaving the complicated, platform-specific, API to Sockethub > to handle. This could be anything from sending and email, or xmpp > message, to facebook, twitter... posts, messages, rss subscriptions, > etc. > > I started to add support for encrypting outgoing emails with PGP on > the server side (Sockethub doing the signing for you) but realized > this isn't really the way to go, as it doesn't scale to a multi-user > environment, and you run into the same privacy problems you'd have > with gmail. The signing needs to happen on the client side. > > So, combining Sockethub and remoteStorage (http://remotestorage.io - > another project I've been heavily involved with) I hope to generate > some interest in developing a completely unhosted email web-app that > supports client side PGP, via remoteStorage or the local client-side > filesystem, using Sockethub as a delivery agent. > > If I could cobble together a demo email app, using Sockethub, > remoteStorage and OpenPGP.js, I think that would be very very cool > > Anyone intersted in helping? :) > > Thanks in advance for any help! > -Nick > http://sockethub.org > _______________________________________________ > > http://openpgpjs.org > > > > _______________________________________________ > > http://openpgpjs.org > _______________________________________________ http://openpgpjs.org
