Uploaded image for project: 'Insights Experiences'
  1. Insights Experiences
  2. HMS-1994

Verify bash script signature

      Goal:

      • To make sure the worker receives a payload that nobody hasn't tampered with, the bash script will be signed by trusted employees and the worker needs to verify the signature.

      Acceptance Criteria:

      • The worker verifies that nobody has tampered with the contents of the bash script
      • The worker shall receive the data in a playbook-like format and use insights-client to verify the signature
      • Prepend all variables located under /vars/content_vars with RHC_WORKER_* and set them in the unix environment
      • Include a go-yaml library in the project to process the incoming yaml.

      Notes:

      • All needed notes for this work are defined in the comments of this issue.

            awaltlov@redhat.com Andrea Waltlova
            rolivier@redhat.com Rodolfo Olivieri
            None
            None
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: