Signing metadata requires a lot of manual interaction and knowledge of the customer. This was the reason why we never implemented it for SUMA as the benefit was very low.
Now with the change in the zypp stack to not allow installing unsigned RPMs without user interaction or completly disabling GPG checks the benefit of such a feature increased.
I plan to implement this without any GUI support.
- the customer need to create an own GPG key pair
- the customer need to enable this feature in the config and configure the keyid and the password
- during metadata generation the taskomatic task check, if metadata signing is configured and only then sign them
- if metadata signing is configured, we need to change the GPG check options of the repos.
Looking for hackers with the skills:
This project is part of:
Hack Week 17
Comments
Be the first to comment!
Similar Projects
Improve OpenSCAP support in Uyuni by admehmood
[comment]: # (Please use the project descriptio...
Testing and adding GNU/Linux distributions on Uyuni by juliogonzalezgil
Join the Gitter channel! [https://gitter.im/uy...
Code Coverage of spacewalk-java aka Suma Server after a full TestSuite execution by oscar-barrios
Project Description
GitHub Card: http...
Spike about integrating Trento in SUMA by oscar-barrios
Project Description
- I would like to lea...
Container images for building the Uyuni docs by juliogonzalezgil
Project Description
The Uyuni doc require...
Improve OpenSCAP support in Uyuni by admehmood
[comment]: # (Please use the project descriptio...
Uyuni: add SLE-Micro acceptance tests by mbussolotto
Project Description
Uyuni: add SLE-Micro ...
Uyuni test suite improvements by dgedon
Project Description
Uyuni is the upstream...
Testing and adding GNU/Linux distributions on Uyuni by juliogonzalezgil
Join the Gitter channel! [https://gitter.im/uy...
Create tool to analyze supportconfig to spot common SUSE Manager / Uyuni issues by cbosdonnat
[comment]: # (Please use the project descriptio...