Allow notification emails to be encrypted with PGP/GPG
Everyone can contribute. Help move this issue forward while earning points, leveling up and collecting rewards.
Description
The problem we have is having notification emails going out in plain text that include sensitive information. In gitlab-ce#36073 I proposed a flag to turn off email notifications. Another solution that would work is that ability to encrypt notification emails to users that have uploaded a PGP/GPG key.
Proposal
Add flag to encrypt all emails sent to a user with a users PGP/GPG key.
Links / references
Documentation blurb
Overview
What is it?
Two flags:
- One to require encrypted notification emails for an entire install.
- Another to enable email encryption for a single user.
Why should someone use this feature?
If they are concerned about data or code being sent via email in plain text.
What is the underlying (business) problem?
The business has sensitive code in some repos that should not be sent via email.
How do you use this feature?
Upload a PGP key and then enable it.
Use cases
Who is this for? Provide one or more use cases.
Feature checklist
Make sure these are completed before closing the issue, with a link to the relevant commit.
-
Feature assurance -
Documentation -
Added to features.yml