mention base64:// option for apt-setup/localN/key

1 files changed, 6 insertions, 4 deletions

diff --git a/en/appendix/preseed.xml b/en/appendix/preseed.xml
index 73fcf3382..0a4582149 100644
--- a/en/appendix/preseed.xml
+++ b/en/appendix/preseed.xml
@@ -1452,10 +1452,12 @@ d-i apt-setup/cdrom/set-first boolean false
 # apt will complain about the unauthenticated repository and so the
 # sources.list line will be left commented out.
 #d-i apt-setup/local0/key string http://local.server/key
-# If the provided key file ends in ".asc" the key file needs to be an
-# ASCII-armoured PGP key, if it ends in ".gpg" it needs to use the
-# "GPG key public keyring" format, the "keybox database" format is
-# currently not supported.
+# or one can provide it in-line by base64 encoding the contents of the
+# key file (with `base64 -w0`) and specifying it thus:
+#d-i apt-setup/local0/key string base64://LS0tLS1CRUdJTiBQR1AgUFVCTElDIEtFWSBCTE9DSy0tLS0tCi4uLgo=
+# The content of the key file is checked to see if it appears to be ASCII-armoured.
+# If so it will be saved with an ".asc" extension, otherwise it gets a '.gpg' extension.
+# "keybox database" format is currently not supported. (see generators/60local in apt-setup's source)
 
 # By default the installer requires that repositories be authenticated
 # using a known gpg key. This setting can be used to disable that