-
Notifications
You must be signed in to change notification settings - Fork 15
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Extend online key support to SaaS (#675)
* chore: add dependencies for Online Key support Add dependencies to extend Online Key support for other key storage: - AWS - Azure - GCP - HashCorp Vault Signed-off-by: Kairo de Araujo <[email protected]> * feat: add support for multiple online key storage Add support to use different (supported) key storage to the RSTUF. These key storage vault/kms are already supported by Worker through the Python Secure Systems Lib. This change add the UI/UX flow to allow the user use these keys. test: fix tests to support new changes test: add unit test for new extended online key Signed-off-by: Kairo de Araujo <[email protected]> * fixup! feat: add support for multiple online key storage Signed-off-by: Kairo de Araujo <[email protected]> --------- Signed-off-by: Kairo de Araujo <[email protected]>
- Loading branch information
1 parent
893ab87
commit 7f71bab
Showing
10 changed files
with
486 additions
and
79 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -71,6 +71,7 @@ def test_ceremony_with_dry_run_and_custom_out_pem_and_sigstore_keys( | |
"remove", # remove key | ||
"my rsa key", # select key to remove | ||
"continue", # continue | ||
"Key PEM File", # select Online Key type | ||
# selections for input_step4 | ||
"JanisJoplin's Key", # select key to sign | ||
"[email protected]", # select key to sign | ||
|
@@ -303,7 +304,6 @@ def test_ceremony_online_key_one_of_root_keys( | |
self, | ||
monkeypatch, | ||
ceremony_inputs, | ||
key_selection, | ||
patch_getpass, | ||
patch_utcnow, | ||
): | ||
|
@@ -315,8 +315,30 @@ def test_ceremony_online_key_one_of_root_keys( | |
"Online Key", # Please enter a key name | ||
] | ||
|
||
selection_options = iter( | ||
( | ||
# selections for input_step4 | ||
"Key PEM File", # select key type | ||
"add", # add key | ||
"Key PEM File", # select key type | ||
"add", # add key | ||
"Key PEM File", # select key type | ||
"remove", # remove key | ||
"my rsa key", # select key to remove | ||
"continue", # continue | ||
# selections for input_step4 | ||
"Key PEM File", # select Online Key type | ||
"Key PEM File", # select Online Key type | ||
"JimiHendrix's Key", # select key to sign | ||
"JanisJoplin's Key", # select key to sign | ||
"continue", # continue | ||
) | ||
) | ||
# public keys and signing keys selection options | ||
monkeypatch.setattr(f"{_HELPERS}._select", key_selection) | ||
monkeypatch.setattr( | ||
f"{_HELPERS}._select", | ||
pretend.call_recorder(lambda *a: next(selection_options)), | ||
) | ||
|
||
result = invoke_command( | ||
ceremony.ceremony, | ||
|
Oops, something went wrong.