From a18706f94a277cdfd15ffea8d46d378799a2d3f4 Mon Sep 17 00:00:00 2001
From: Zorchenhimer <zorchenhimer@gmail.com>
Date: Mon, 5 Aug 2024 22:23:29 -0400
Subject: [PATCH] Added todo.md

---
 todo.md | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)
 create mode 100644 todo.md

diff --git a/todo.md b/todo.md
new file mode 100644
index 0000000..ae8f414
--- /dev/null
+++ b/todo.md
@@ -0,0 +1,24 @@
+# TODO
+
+There's lots of things to add.
+
+- TLS
+  - Autorenew this with an ACME server (eg, Boulder; use the Lego library)
+  - self-host the Boulder server & add the main CA pubkey to the client
+  - Work with self-signed stuff for now tho
+- Authentication
+  - Give each client an API key
+  - Limit decryption keys that client can access?
+- Admin UI on the server
+  - Manage client accounts
+  - Import public keys
+  - Add/Remove keys
+- Private Key autorotation
+- PGP Public Key Server
+  - a la keys.openpgp.org
+  - two servers?  one public (company pub keys), one internal (customer pub
+    keys)
+- Encryption groups
+  - Add a number of public keys to a group.  When the client encrypts to a
+    group, use all the keys.
+  - Auto-remove expired keys from groups