[Rt-devel] Authenticating commands with S/MIME or PGP

Jonathan T. Rockway jon at jrock.us
Mon Jul 3 11:51:32 EDT 2006


I've seen a few threads over the years about RT accepting authenticated 
commands, but I don't think there's any code to do this right now.  
(Please correct me if I'm wrong.)  Anyway, as part of an internal 
application I'm writing, I've written a Message::Authenticate module 
(will be CPAN'd ASAP) that handles authenticating e-mails via either PGP 
or S/MIME.  I don't think it would be very hard to add this 
functionality to RT, but I wonder what sort of functionality is desired, 
i.e. what sort of message is considered trusted.  Any PGP-signed 
message?  Key matches a fingerprint for the account, as set in the 
Preferences tab?  Certificate is signed by some trusted CA (and matches 
the e-mail address, which matches an RT user).

Example use-cases would be appreciated... and when I figure out what 
other people want, I'll hack it into RT and see how it works.

Jonathan Rockway

More information about the Rt-devel mailing list