bindle
bindle copied to clipboard
deislabs
Error: "failed signature check invoice"
When I receive this error, how can I fix it?
><> hippofactory --server ***** --hippo-url ***** --hippo-username ***** --hippo-password ***** .
Error: Invalid request (status code 400): Some("failed signature check invoice")
Here's my config:
$ cat /usr/local/etc/bindle/bindle.toml
address = "0.0.0.0:8080"
bindle-directory = "/usr/local/lib/bindle"
keyring = "/usr/local/etc/bindle/keyring.toml"
signing-keys = "/usr/local/etc/bindle/signing_keys.toml"
keyring.toml does not exist, resulting with this log message which I assume is fine?
WARN bindle_server: No keyring.toml found. Using default keyring.
And here's the content of signing_keys.toml:
version = "1.0"
[[key]]
label = "Matt Fisher <[email protected]>"
keypair = "********"
roles = ["creator"]
Ok, this is due to your signing keys only having a creator key. There should be at least one key with a host role that the bindle server can use to sign things. Let me create an issue to make sure the full issue reason (or at least more detailed reason) gets printed in the client response
Thanks @thomastaylor312, that fixed things!
Fixed by switching the default role to a host role.
Thinking about this more, should the default output of bindle create-key be a host role, or should we provide the end user documentation on how to set up bindle-server with bindle create-key?
Probably documentation. As bindle create-key is a client command, I'd want the default to be for a client (which would be a creator key to sign with). But I think documenting would be a good idea