at this point, why do you even care of using certs ? you need "signing", not "encryption" AND you're not hooked up to a CA .........just use an hmac !
On Tuesday, April 28, 2015 at 10:31:41 PM UTC+2, Richard wrote: > > If the private key is protect by password only the user can use no? > > I am far from an expert in encryption... I was thinking of sotring gpg pub > and private key in auth_user field for each respectively. Then invoque the > user to input password when he want to sign a record after_validation and > before_insert occur... > > ?? > > Richard > > > On Tue, Apr 28, 2015 at 4:26 PM, Niphlod <nip...@gmail.com <javascript:>> > wrote: > >> The assumption was indeed "if the app is the only thing accessing the >> database". Not trusting DB administrators is kinda weird as a requirement, >> but if that's your scenario, go for it. >> I'm a bit lost on the general idea for the implementation........ is the >> user required to input some kind of key/cert every time a row is stored ? >> because if you save the key/cert in the db, you're screwed anyway. >> >> -- >> Resources: >> - http://web2py.com >> - http://web2py.com/book (Documentation) >> - http://github.com/web2py/web2py (Source code) >> - https://code.google.com/p/web2py/issues/list (Report Issues) >> --- >> You received this message because you are subscribed to the Google Groups >> "web2py-users" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to web2py+un...@googlegroups.com <javascript:>. >> For more options, visit https://groups.google.com/d/optout. >> > > -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
