New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

need ability to sign artifacts from authed sources #172

Open

itewk opened this issue Jul 22, 2021 · 0 comments

Labels

enhancement good first issue help wanted

Contributor

itewk commented Jul 22, 2021 •

edited

Loading

issue

currently the rekor signing step can only sign artifacts pulled from sources that do not require authentication.

fix

need ability to pass credentials for artifact store that artifacts are being pulled from to sign.

see

https://github.com/ploigos/ploigos-step-runner/blob/main/src/ploigos_step_runner/step_implementers/shared/rekor_sign_generic.py#L12-L15
- need artifact-to-sign-source-username and artifact-to-sign-source-password otpional parameters
https://github.com/ploigos/ploigos-step-runner/blob/main/src/ploigos_step_runner/step_implementers/shared/rekor_sign_generic.py#L245-L247

this needs ability to pass username/pass

https://github.com/ploigos/ploigos-step-runner/blob/main/src/ploigos_step_runner/utils/file.py#L63-L66
- needs to accept optional username/pass params

The text was updated successfully, but these errors were encountered:

itewk added enhancement good first issue help wanted labels

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment