[Bug 1667725] Re: [feature request] make full ppa signing public key available over https

[Launchpad Bug Tracker]

This bug was fixed in the package software-properties - 0.96.27

---------------
software-properties (0.96.27) cosmic; urgency=medium

  * Fix tests (including dep8) when running on non-intel (LP: #1785683).

 -- Scott Moser <smoser at ubuntu.com>  Mon, 06 Aug 2018 14:33:31 -0400

** Changed in: software-properties (Ubuntu)
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to software-properties in Ubuntu.
https://bugs.launchpad.net/bugs/1667725

Title:
  [feature request] make full ppa signing public key available over
  https

Status in Launchpad itself:
  Fix Released
Status in software-properties package in Ubuntu:
  Fix Released

Bug description:
  Currently, for a ppa, launchpad makes the long key fingerprint
  available over https. I'd like to request that it also make the full
  public key available over https.

  Many people use add-apt-repository extensively for using ppas ('add-
  apt-repository -y smoser/archive')

  As I understand it, that basically does:
   a. request the 'archive urls', 'description' and long key fingerprint over https from launchpad.net
   b. does gpg --recv <long-key-fingerprint> from hkp://keyserver.ubuntu.com:80/ (or the --keyserver argument)
   c. adds the result of 'b' to apt using 'apt-key'

  Since launchpad is the owner of the signing key for the ppa, why not
  have it just give us the full public key over the same api that it
  provides the other bits of information?

  My experience is that gpg servers are less reliable than we'd like,
  and even if they were as reliable as launchpad, any use of a ppa now
  effectively depends on 2 external systems when 1 could suffice.

To manage notifications about this bug go to:
https://bugs.launchpad.net/launchpad/+bug/1667725/+subscriptions