Cameron Banowsky

It's either developed in the clear and open or it is developed way deep in the dark. Pick your poison, it's great this is open to review code/data sets and...

Keycloak helm chart version 3.0.4? What version of Vault are you running?

``` groups_claim=‘groups’` ``` setup the role mapper in Keycloak to “groups” ``` vault write identity/group name='test-group' \ policies='test-policy' \ type='external' ``` ``` vault write identity/group-alias name='{a value from groups_claim}' \...

It might be worth upgrading to Vault 1.7.x -- I think creating that mount_accessor with Terraform is quite manageable and easily automated. Although to your point it would be preferable...

I need to do some oidc implementations as well with our Vault. So good timing for me to do more research.

> Can you clarify the question a bit? Are you asking us to add a root, or for github/Gitlab/etc to add it? yeah this is not an ask of sigstore,...

> https://github.com/sigstore/gitsign/blob/e8d1ed2fa3a5bf861af91dd9f507f1633c7c03f2/README.md?plain=1#L150 > > @DODTeam1 - the roots from [cyber.mil](https://public.cyber.mil/pki-pke/) has this bundle, which would extend a great deal of signing support using existing PKI for a moderately sized vertical...interested...

perfect. [i think there a few ways](https://developers.cloudflare.com/workers/learning/using-durable-objects/)

> Rekor itself is stateless, and trillian is mostly stateless, so yes-ish? You just need the data storage system. Trillian doesn't support SQLite but that's probably what it would take...

> I'm going to close this for now. If you have a specific need or want to work on this, comment and we can reopen! yeah let me get cloudflare...