offer to add a revoker after an import-key operation
Because it is highly recommended that a revocation certificate be made for keys, it might be good to offer to
immediately do a 'monkeysphere add-revoker' after doing an 'import-key' operation. It would be good to have
a generic revocation certificate created, and to offer to immediately add a revoker to the newly imported key.
It might seem redundant to offer the person who is doing the import-key to add their keyid as a valid revoker on the key, but it seems like good practice to do so for the scenario where the admin no longer has access to the host's secret key in the future.
Understandably this goes against the simple commands to do simple things philosophy, making it difficult for scripts to automatically work on these commands. However, typically this is solved through a flag that disables the human element of prompting to make way for the scripted capabilities.
(from redmine: created on 2010-03-22)