diff --git a/vault.sh b/vault.sh
index d9aa994..d0c584d 100755
--- a/vault.sh
+++ b/vault.sh
@@ -4,8 +4,11 @@ set -e -u
 
 # Keyserver to use. You need to trust this keyserver that the uid is not spoofed when receiving keys
 KEYSERVER=""
-# File which contains a list of uid's to receive and encrypt the vault for
+# File which contains a list of fingerprints to receive and encrypt the vault for
 KEY_FILE=""
+REPO_BASE_PATH="$(dirname $0)/.."
+# File in which the passphrase for the gpg vault is encrypted
+VAULT_PASS_FILE="$REPO_BASE_PATH/gpg/vault_passphrase.gpg"
 
 ACTION="$1"
 # default action is vault decrypt
@@ -22,5 +25,11 @@ case "$ACTION" in
     "reencrypt")
 
     ;;
+
+    "init")
+        mkdir -p $REPO_BASE_PATH/gpg
+	touch $REPO_BASE_PATH/gpg/vault_passphrase
+	touch $REPO_BASE_PATH/gpg/$KEY_FILE
+    ;;
 esac