feat: store authentication identifier in attestation

This task involves storing in the attestation information what kind of authentication was used and its identifier.

Today, an attestation process can be authenticated via user token, API tokens, or federated tokens (OIDC token in GitLab)

I could think of

|type|identifier|
|--|--|
|USER|UserID|
|API_TOKEN|TokenID|
|FEDERATED_GITLAB_TOKEN|tokenID|

note that this information should be inside the claims of the JWT tokens. For example, see below an example of a user token

![Image](https://github.com/user-attachments/assets/0550130a-719e-455e-990e-6cf76bade132)

or a Chainloop API token

![Image](https://github.com/user-attachments/assets/3e58180a-6534-4577-a8b4-ba84c1293530)

Once we have this information, it could be rendered in the attestation json file maybe in a `auth` json message in the predicate, for example

```
{
  "predicate": {
    "auth": {
      "kind": "USER"
      "id": "deadbeef"
    } 
}
```

What do you think?


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat: store authentication identifier in attestation #2127

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

type	identifier
USER	UserID
API_TOKEN	TokenID
FEDERATED_GITLAB_TOKEN	tokenID

feat: store authentication identifier in attestation #2127

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions