Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: add support for configuring signature verification pubkeys inline #289

Merged
merged 4 commits into from
Sep 4, 2024
Merged

feat: add support for configuring signature verification pubkeys inline #289

merged 4 commits into from
Sep 4, 2024

Conversation

ahmad-ibra
Copy link
Contributor

Issue

Resolves #279

Description

  • Adds the PublicKeys field to the SignatureVerifcation struct.
  • Defaults to first checking a secret for public keys, if no secret name is provided the PublicKeys field is checked.
  • Moves BasicAuthsDirect and AllPubKeysDirect from validatorctl to the plugin.
  • Fixes issue in AllPublicKeysDirect where we were using an array instead of a map

@codecov Codecov
Copy link

codecov bot commented Sep 3, 2024
edited
Loading

Codecov Report

Attention: Patch coverage is 17.24138% with 24 lines in your changes missing coverage. Please review.

Files with missing lines Patch % Lines
api/v1alpha1/ocivalidator_types.go 0.00% 17 Missing ⚠️
internal/controller/ocivalidator_controller.go 36.36% 6 Missing and 1 partial ⚠️ 
@@            Coverage Diff             @@
##             main     #289      +/-   ##
==========================================
- Coverage   62.66%   59.71%   -2.96%     
==========================================
  Files           8        8              
  Lines         458      484      +26     
==========================================
+ Hits          287      289       +2     
- Misses        142      165      +23     
- Partials       29       30       +1
Files with missing lines Coverage Δ
pkg/oci/oci.go 85.05% <100.00%> (ø)
internal/controller/ocivalidator_controller.go 60.60% <36.36%> (-3.84%) ⬇️
api/v1alpha1/ocivalidator_types.go 42.42% <0.00%> (-45.08%) ⬇️

Continue to review full report in Codecov by Sentry.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update e4d1fa8...fe237e0. Read the comment docs.

@ahmad-ibra ahmad-ibra marked this pull request as ready for review September 4, 2024 00:10
@ahmad-ibra ahmad-ibra requested a review from a team as a code owner September 4, 2024 00:10
@dosubot dosubot bot added the size:L This PR changes 100-499 lines, ignoring generated files. label Sep 4, 2024
@dosubot dosubot bot added the new-feature Net-new feature label Sep 4, 2024
TylerGillson
TylerGillson reviewed Sep 4, 2024
View reviewed changes
pkg/oci/oci.go Outdated Show resolved Hide resolved
@dosubot dosubot bot added the lgtm This PR has been approved by a maintainer label Sep 4, 2024
@ahmad-ibra ahmad-ibra merged commit a9c17b5 into main Sep 4, 2024
7 of 8 checks passed
@ahmad-ibra ahmad-ibra deleted the feat/add-direct-helpers branch September 4, 2024 15:15
ahmad-ibra pushed a commit that referenced this pull request Sep 4, 2024
@TylerGillson
chore(main): release 0.3.3 (#285)
9a06d9b 
🤖 I have created a release *beep* *boop*
---


##
[0.3.3](v0.3.2...v0.3.3)
(2024-09-04)


### Features

* add support for configuring signature verification pubkeys inline
([#289](#289))
([a9c17b5](a9c17b5))


### Dependency Updates

* **deps:** update
github.com/awslabs/amazon-ecr-credential-helper/ecr-login digest to
5dc58b6
([#284](#284))
([7efe2ad](7efe2ad))
* **deps:** update module github.com/onsi/ginkgo/v2 to v2.20.2
([#286](#286))
([846edc6](846edc6))
* **deps:** update module github.com/onsi/gomega to v1.34.2
([#287](#287))
([d527f3c](d527f3c))
* **deps:** update module github.com/sigstore/sigstore to v1.8.9
([#288](#288))
([e4d1fa8](e4d1fa8))
* **deps:** update module github.com/validator-labs/validator to v0.1.9
([#277](#277))
([7089509](7089509))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
@ahmad-ibra
Copy link
Contributor Author

This also Resolves validator-labs/validatorctl#174

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@TylerGillson TylerGillson TylerGillson approved these changes

@mattwelke mattwelke Awaiting requested review from mattwelke mattwelke is a code owner automatically assigned from validator-labs/validator

@arturshadnik arturshadnik Awaiting requested review from arturshadnik

Assignees
No one assigned
Labels
lgtm This PR has been approved by a maintainer new-feature Net-new feature size:L This PR changes 100-499 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

🌱 Make AllPubKeys and BasicAuths methods on OCIValidatorSpec; import from validatorctl
2 participants
@ahmad-ibra @TylerGillson