Thomas:

You said:

> And if a key (or encryption subkey) expires, you can't add new messages to
> issues where the corresponding user is in the nosy list

Does this block anybody from adding a message to the issue (via email or http)?
Or is only the user with the expired key blocked?

Mi initial interpretation made me think all message addition fails when 
Roundup is unable to create an encrypted nosy email to the user with the expired key.
But I don't see how that would happen as email is sent in a reactor after the message
has been added. I also would have expected the user to be able to add a message via HTTP
since I see the PGP machinery invoked only via the email gateway.

I would like to add this case to the admin_guide. Also I don't have access to the
script https://hg.intevation.de/adminton/file/default/shebang/gpg-keyring-check-expire.
hg.intevation.de is taking too long to respond.

Thanks.

-- rouilj