It only takes some simple steps to share files using End-to-End-Encryption:
When an ownCloud or Guest user logs in for the first time, a wizard performing the initial creation of the keys is shown
Open the folder's Sharing properties and check the Share Encrypted option to enable encrypted sharing.
If you start uploading right away, the files will be encrypted for you only. If you want to share files with other users, make sure to invite them and double check, if they have a valid public key in the system. |
Next you need to share this folder. Add ownCloud users, groups or guest users the same way you would do in a standard ownCloud installation by entering the user name into the Share with input field or by inviting a guest user by entering the email address:
If you shared with a guest user, you will receive an email notification once the guest has logged in the first time (and thus created the key). You may spot this in the Sharing tab as well, when the user name is shown with a lock symbol instead of an exclamation mark symbol (see Sharing tab below). Only then it makes sense to start uploading files. |
If you add an existing ownCloud or guest user who already has got keys all files in the directory will be re-encrypted on the fly so the users can read them instantly. When sharing with a group, files will be re-encrypted for all group members. |
Once a folder is shared you can view the details in the Sharing tab
In this screenshot you see the file list (middle) and the Sharing tab (right) for the folder New Folder.
Every folder, which is shared encrypted carries a lock symbol in the folder icon.
Sharing end-to-end-encrypted with groups is done the same way as with the ownCloud default.
|
Starting with version 1.3.0 it is possible to have files, uploaded to a public share, end-to-end-encrypted. The uploaded file will be encrypted with the share initiator's public keys.
There is no way uploaders can add their keys, so the files can be opened by the recipient only.
E2EE for Public Links is set up in three little steps:
Create a public link and make sure, that the share is writable by users, i.e. choose Read & Write or Upload only:
When choosing Read & Write public users can see their and previously uploaded e2ee-files and even download them. However, they would not be able to open them since they never have a private key to decrypt. If uploaded files should be invisible to your share recipients, choose Upload only (File drop) |
While drag and drop is supported for logged in users (even guest users) this feature is not available for public link shares. |