Uploaded image for project: 'OpenShift Runtimes'
  1. OpenShift Runtimes
  2. RUN-1741

Provide an automated way to enter the password to the `podman image sign` command

    XMLWordPrintable

Details

    • Story
    • Resolution: Unresolved
    • Normal
    • None
    • 8.8.0, 9.2.0
    • None
    • False
    • None
    • False
    • sst_container_tools

    Description

      From https://bugzilla.redhat.com/show_bug.cgi?id=1892722
      Description of problem:
      Using `podman image sign` requires human intervention to type password for the gpg key, because of this customer cannot automate signing images.

      Version-Release number of selected component (if applicable):
      Podman 1.9.3

      Customer wants a way to automate providing the password to the `podman image sign` command. Customer is also asking if this is not possible, if there could be other ways to sign images, aside from gpg key, like certificates such as PKI/X509.

      Their end goal is accept only signed images from certain repositories in OpenShift for applications. Manually signing all images with podman requires human intervention to enter passwords at the prompt everytime.
       

       

      Attachments

        Activity

          People

            umohnani Urvashi Mohnani
            tsweeney@redhat.com Tom Sweeney
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated: