Merge branch 'fs/ssh-default-key-command-doc'

Doc update.

* fs/ssh-default-key-command-doc:
  gpg docs: explain better use of ssh.defaultKeyCommand
This commit is contained in:
Junio C Hamano 2022-06-15 15:09:28 -07:00
commit 686790f6c1

View file

@ -36,9 +36,12 @@ gpg.minTrustLevel::
gpg.ssh.defaultKeyCommand:: gpg.ssh.defaultKeyCommand::
This command that will be run when user.signingkey is not set and a ssh This command that will be run when user.signingkey is not set and a ssh
signature is requested. On successful exit a valid ssh public key is signature is requested. On successful exit a valid ssh public key
expected in the first line of its output. To automatically use the first prefixed with `key::` is expected in the first line of its output.
available key from your ssh-agent set this to "ssh-add -L". This allows for a script doing a dynamic lookup of the correct public
key when it is impractical to statically configure `user.signingKey`.
For example when keys or SSH Certificates are rotated frequently or
selection of the right key depends on external factors unknown to git.
gpg.ssh.allowedSignersFile:: gpg.ssh.allowedSignersFile::
A file containing ssh public keys which you are willing to trust. A file containing ssh public keys which you are willing to trust.