From e68b0a72fcb369a8731ebd098d74ed9d48254377 Mon Sep 17 00:00:00 2001 From: Pinga Date: Sat, 21 Jun 2025 15:52:29 +0300 Subject: [PATCH] Documentation update --- automation/config.php.dist | 1 + docs/gtld.md | 32 +++++++++++++++++++++++++++++++- 2 files changed, 32 insertions(+), 1 deletion(-) diff --git a/automation/config.php.dist b/automation/config.php.dist index 1ca2992..b808066 100644 --- a/automation/config.php.dist +++ b/automation/config.php.dist @@ -18,6 +18,7 @@ return [ 'escrow_keyPath' => '/opt/escrow/escrowKey.asc', 'escrow_keyPath_brda' => '/opt/escrow/icann-brda-gpg.pub', 'escrow_privateKey' => '/opt/escrow/privatekey.asc', + 'escrow_signing_fingerprint' => 'REPLACE_WITH_YOUR_40_CHAR_KEY_FINGERPRINT', 'escrow_sftp_host' => 'your.sftp.server.com', 'escrow_sftp_username' => 'your_username', 'escrow_sftp_password' => 'your_password', diff --git a/docs/gtld.md b/docs/gtld.md index d3765d8..c88f1b3 100644 --- a/docs/gtld.md +++ b/docs/gtld.md @@ -70,7 +70,37 @@ Always keep your private key secure. Do not share it. If someone gains access to ### 2.4. Use in RDE deposit generation -Please send the exported `publickey.asc` to your RDE provider, and also place the path to `privatekey.asc` in the escrow.php system as required. +After generating your key pair and exporting the files: + +#### 2.4.1. Send the Public Key + +Send the exported `publickey.asc` file to your RDE provider (e.g., DENIC). + +> 🔐 **Do not send the private key. Keep `privatekey.asc` secure and stored only on your server.** + +#### 2.4.2. Get the Fingerprint + +Run: + +```bash +gpg2 --with-colons --list-keys your.email@example.com | grep '^fpr' | head -n 1 | cut -d: -f10 +``` + +Or visually: + +```bash +gpg2 --list-keys --fingerprint your.email@example.com +``` + +Use the 40-character fingerprint (e.g., `C5D2BC6174369B11C7CB1ADB80D7E3572F8BA377`). + +#### 2.4.3. Configure in `conf.php` + +Set the value in `/opt/registry/automation/conf.php`: + +```bash +'escrow_signing_fingerprint' => 'C5D2BC6174369B11C7CB1ADB80D7E3572F8BA377', +``` ---