Description
After setting up the plugin, e-mails (both incoming and outgoing) were not working. I checked the log and found Email delivery error: Bad passphrase.
I'd used the same key and passphrase from the beginning, passing it in as the secret to the update_redmine_pgpkey task.
I manually edited the secret key in www-data's keyring and reset the passphrase (it was NOT actually changed) and exported. I ran the update task again, using the same value. Outgoing e-mail notifications started to work again.
Incoming e-mails still didn't work. I had seen the note earlier about the incompatibility with GnuPG 2.0.x, and learned that the hard way by manually running my redmine:email:receive_imap cron task and receiving a curses passphrase prompt. So gpg2 was symlinked to gpg. But the server still wasn't decrypting...
Removing the passphrase from the key entirely, and passing in an empty secret variable, resolved the issue.
I'm pretty confident about the entry and consistency of my passphrase being accurate, so this suggests there is some bugginess with gpgme and passphrases in the plugin. It doesn't make sense that encryption would work but not decryption.
In any event, having a passphrase on a key like this is only marginally useful - ex. if you're afraid of the key being copied and used elsewhere, and efforts should be focused on securing the server instead. It would be useful for your docs to include some discussion of the advantages and disadvantages of having a passphrase on the key, because I'm pretty sure the plugin seems to work better without one.