kubedirector icon indicating copy to clipboard operation
kubedirector copied to clipboard

Published 20 hours ago verified publisher icon bluek8s

Please allow app image authors to specify the config package signature

Open snowch opened this issue 3 years ago • 2 comments

E.g.

"defaultConfigPackage": {
    "packageURL": "https://github.com/snowch/kubedirector-centos-ad-ldap/releases/download/refs%2Fheads%2Fmain/appconfig.tgz",
    "packageSignature": "eeac012d945cffe82f92ba642861e88353b480a768847814d0acae4caea004e849ffd6621ff9445f3dd6158974cdd32abe7e84a6769b6334c8462321b1252768",
    "packageSignatureAlgorithm": "sha512",
},

snowch avatar Nov 24 '21 16:11 snowch

The idea being that KD will do signature validation at package-install time? What would be the expected result of a validation failure... config_error state?

joel-bluedata avatar Nov 29 '21 17:11 joel-bluedata

Yes, I think signature validation failure would need to put the cluster in config_error state.

snowch avatar Dec 01 '21 09:12 snowch