Signature profiles - Using Kleopatra
Signature profiles are an experimental feature and may be subject to changes!
Creating a profile
Using graphical tools like notepad, notepad++ or terminal tools like vim, emacs, nano, create a new plaintext document.
Plaintext documents usually have the .txt file extension. Do not use tools like Word for this purpose, it will not work!
Add some text to make it obvious why you are making this particular signature profile or who its intended audience is:
Hey there! Here's a signature profile with proofs related to the DOIP project (https://doip.rocks).
Optionally, add some instructions for people who don't know what to do with a Keyoxide profile when they receive one:
Verify this profile at https://keyoxide.org/sig
If you use a different Keyoxide instance, feel free to link to that one instead!
On this website, from the menu on the left, choose a service provider for which to verify an account. Follow the instructions on that page.
Add a new line for each identity claim (make sure to replace CLAIM with the information from the documentation page):
We use the term proof= to signify that at the location of the claim, there is a proof that will validate the identity claim.
The content could eventually look like this:
Hey there! Here's a signature profile with proofs related to the DOIP project (https://doip.rocks). Verify this profile at https://keyoxide.org/sig proof=dns:doip.rocks proof=https://fosstodon.org/@keyoxide
Generating an OpenPGP keypair
If you already have your own OpenPGP keypair, you can continue to Signing the profile.
If not, generate your own OpenPGP key pair by following the instructions in the OpenPGP with Kleopatra guide.
Signing the profile
You will now sign this plaintext document, making it untemperable and possible to prove beyond doubt that you, as holder of the private key, and only you could have signed the document and created this profile.
Kleopatra has a few options to sign documents. Unfortunately, all the obvious options are unsuitable for the task, as they will not result in "clear signed documents".
Instead, copy the contents of the text documents with ctrl+c. Open Kleopatra, click Tools > Clipboard > OpenPGP-Sign. Follow the instructions and make sure the correct key pair is selected.
When done, create a new plaintext document and paste the clipboard's content using ctrl+v. You now have a fully functional signature profile.
Distributing the profile
To distribute the profile, have a look at the Distributing a signature profile guide.
Adding an identity claim
Open the plaintext document made with the Creating a profile guide and add a new identity claim on a new line. Make sure to sign the document again!
Deleting a claim
Open the plaintext document made with the Creating a profile guide and remove the line containing the identity claim. Make sure to sign the document again!