Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
tree: 01330ec25d
Fetching contributors…

Cannot retrieve contributors at this time

92 lines (77 sloc) 2.909 kb
__NAME__ purpose
specify default encryption program
__END__
__NAME__ synopsis
<arg choice='plain'><replaceable>filename</replaceable></arg>
<arg choice='opt'><replaceable>arguments</replaceable></arg>
__END__
__NAME__ description
Specify default encryption program, and a template to call it. The encryption
program will be called to perform tasks such as encrypting credit card
numbers (<emphasis role='bold'>if</emphasis> they are stored on the server).
</para><para>
Two placeholders can be used, <literal>%p</literal> and
<literal>%f</literal>. At encryption time,
<literal>%p</literal>
expands to a password, and
<literal>%f</literal>
to a temporary file name.
</para><para>
If &IC; can found a variant of <command>gpg</command>/<command>pgp</command>
on your system, it is the default. Setting of <literal>none</literal> disables
encryption.
</para><para>
Specifying command line options for the encryption program isn't required,
as &IC; automatically adds the following options, depending on the program
recognized:
<itemizedlist>
<listitem><para>
<literal>gpg --batch --always-trust -e -a -r <replaceable>KEY</replaceable></literal>
</para></listitem>
<listitem><para>
<literal>pgpe -fat -r <replaceable>KEY</replaceable></literal>
</para></listitem>
<listitem><para>
<literal>pgp -fat - <replaceable>KEY</replaceable></literal>
</para></listitem>
</itemizedlist>
__END__
__NAME__ notes
This directive is different from &conf-PGP;, which is used to encrypt
<emphasis>complete</emphasis> orders and not just part of their contents.
</para><para>
If the order &conf-Route; method of sending orders is used (default in the
&std-catalog; demo), then this directive sets the default value of
the <literal>encrypt_program</literal> attribute.
</para><para>
Since &IC; 4.7.7, specifying program filename only is enough &mdash;
no arguments are needed, although they will still work as expected.
</para><para>
If the encrypt program is in your path, avoid using full pathname to
ease the eventual switch to a platform with different binary file locations.
__END__
__NAME__ see also
DEBUG, DataTrace, DebugFile,PGP
__END__
__NAME__ example: Specifying EncryptProgram
<programlisting>
EncryptProgram gpg
</programlisting>
__END__
__NAME__ example: Specifying EncryptProgram with full path and arguments
<programlisting>
EncryptProgram /usr/local/bin/gpg --batch --always-trust -e -a -r orders@&def-domain;
</programlisting>
__END__
__NAME__ example: Specifying EncryptProgram with full path and arguments
<programlisting>
EncryptProgram /usr/bin/pgpe -fat -r orders@&def-domain;
</programlisting>
__END__
__NAME__ missing
PORT_OLD
Will autoadding of options in Vend::Order::pgp_encrypt properly honor any manually set options?
__END__
Try add --homedir option to GnuPG:
ENCRYPTOR /usr/local/bin/gpg -e -a -q --batch --homedir
<path_where_your_keys_ring_is> ...
Jump to Line
Something went wrong with that request. Please try again.