Ubuntu Manpage: authenticate - Authenticate a binding

NAME

       authenticate - Authenticate a binding

SYNOPSIS

       authenticate [--email] [-h|--help] <FINGERPRINT|KEYID> <USERID>

DESCRIPTION

       Authenticate a binding.

       Authenticate  a  binding  (a certificate and User ID) by looking for a path from the trust
       roots to the specified binding in the web of trust.  Because  certifications  may  express
       uncertainty  (i.e.,  certifications  may  be  marked as conveying only partial or marginal
       trust), multiple paths may be needed.

       If  a  binding  could  be  authenticated  to  the  specified  level  (by  default:   fully
       authenticated,  i.e.,  a  trust  amount of 120), then the exit status is 0.  Otherwise the
       exit status is 1.

       If any valid paths to the binding are found, they are printed on stdout whether  they  are
       sufficient to authenticate the binding or not.

OPTIONS

       --email
              Changes the USERID parameter to match User IDs with the specified email address.

              Interprets  the  USERID parameter as an email address, which is then used to select
              User IDs with that email address.

              Unlike when comparing User IDs, email addresses are first normalized by the  domain
              to  ASCII  using  IDNA2008  Punycode  conversion, and then converting the resulting
              email address to lowercase using the empty locale.

              If multiple User IDs match, they are each considered in  turn,  and  this  function
              returns  success if at least one of those User IDs can be authenticated.  Note: The
              paths to the different User IDs are not combined.

       -h, --help
              Print help (see a summary with '-h')

       <FINGERPRINT|KEYID>
              The fingerprint or Key ID of the certificate to authenticate

       <USERID>
              The User ID to authenticate.

              This is case sensitive, and must be the whole User ID, not just a substring  or  an
              email address.

EXTRA

       EXAMPLES:

         # Authenticate a binding.
         $ sq-wot --keyring keyring.pgp \
             --partial \
             --trust-root 8F17777118A33DDA9BA48E62AACB3243630052D9 \
           authenticate \
             C7966E3E7CE67DBBECE5FC154E2AD944CFC78C86 \
             'Alice <alice@example.org>'

         # The same as above, but this time generate output in DOT format
         # and convert it to an SVG using Graphviz's DOT compiler.
         $ sq-wot --format dot \
             --keyring keyring.pgp \
             --partial \
             --trust-root 8F17777118A33DDA9BA48E62AACB3243630052D9 \
           authenticate \
             C7966E3E7CE67DBBECE5FC154E2AD944CFC78C86 \
             'Alice <alice@example.org>' \
           | dot -Tsvg -o alice.pgp

         # Try and authenticate each binding where the User ID has the
         # specified email address.
         $ sq-wot --keyring keyring.pgp \
             --trust-root 8F17777118A33DDA9BA48E62AACB3243630052D9 \
           authenticate \
             C7966E3E7CE67DBBECE5FC154E2AD944CFC78C86 \
             --email 'alice@example.org'

         # The same as above, but this time generate output in DOT format
         # and convert it to an SVG using Graphviz's DOT compiler.
         $ sq-wot --format dot \
             --keyring keyring.pgp \
             --trust-root 8F17777118A33DDA9BA48E62AACB3243630052D9 \
           authenticate \
             C7966E3E7CE67DBBECE5FC154E2AD944CFC78C86 \
             --email 'alice@example.org' \
           | dot -Tsvg -o alice.svg

                                          authenticate                            authenticate(1)