Skip to content

chore: add integration permissions to api tokens #1543

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jiparis merged 1 commit into from
Nov 19, 2024
Merged

chore: add integration permissions to api tokens #1543

jiparis merged 1 commit into from
Nov 19, 2024

Conversation

@jiparis
Copy link
Member

@jiparis jiparis commented Nov 19, 2024
edited
Loading

This PR adds some additional permissions to API tokens for automated environments.

➜  chainloop git:(PFM-1767) ✗ cldev org describe
DBG using config file path="/Users/jiparis/Library/Application Support/chainloop/config.devel.toml"
WRN API contacted in insecure mode
┌─────────────────────────────────────────────────────────────────────────────────────────┐
│ Current Context                                                                         │
├─────────────────────┬───────────────────────────────────────────────────────────────────┤
│ Logged in as        │ API-token@chainloop                                               │
├─────────────────────┼───────────────────────────────────────────────────────────────────┤
│ Default CAS Backend │ http://localhost:9002/chainloop (provider=AWS-S3, status="valid") │
└─────────────────────┴───────────────────────────────────────────────────────────────────┘
➜  chainloop git:(PFM-1767) ✗ cldev integration available ls
DBG using config file path="/Users/jiparis/Library/Application Support/chainloop/config.devel.toml"
WRN API contacted in insecure mode
┌──────────────────┬─────────┬─────────────────────────────────────┬────────────────────────────────────────────────────────────────────────────────────────────────┐
│ NAME             │ VERSION │ MATERIAL REQUIREMENT                │ DESCRIPTION                                                                                    │
├──────────────────┼─────────┼─────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────────────────────┤
│ dependency-track │ 1.4     │ SBOM_CYCLONEDX_JSON                 │ Send CycloneDX SBOMs to your Dependency-Track instance                                         │
├──────────────────┼─────────┼─────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────────────────────┤
│ discord-webhook  │ 1.1     │                                     │ Send attestations to Discord                                                                   │
├──────────────────┼─────────┼─────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────────────────────┤
│ guac             │ 1.0     │ SBOM_CYCLONEDX_JSON, SBOM_SPDX_JSON │ Export Attestation and SBOMs metadata to a blob storage backend so guacsec/guac can consume it │
├──────────────────┼─────────┼─────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────────────────────┤
│ slack-webhook    │ 1.0     │                                     │ Send attestations to Slack                                                                     │
├──────────────────┼─────────┼─────────────────────────────────────┼────────────────────────────────────────────────────────────────────────────────────────────────┤
│ smtp             │ 1.0     │                                     │ Send emails with information about a received attestation                                      │
└──────────────────┴─────────┴─────────────────────────────────────┴────────────────────────────────────────────────────────────────────────────────────────────────┘
➜  chainloop git:(PFM-1767) ✗ cldev integration registered ls
DBG using config file path="/Users/jiparis/Library/Application Support/chainloop/config.devel.toml"
WRN API contacted in insecure mode
there are no third party integrations configured in your organization yet
➜  chainloop git:(PFM-1767) ✗ cldev integration registered add dependency-track --name my-integration
DBG using config file path="/Users/jiparis/Library/Application Support/chainloop/config.devel.toml"
WRN API contacted in insecure mode
┌──────────────────────────────────────────────────────────────────────────────────────┐
│ Available options                                                                    │
├─────────────────┬──────────────┬──────────┬──────────────────────────────────────────┤
│ FIELD           │ TYPE         │ REQUIRED │ DESCRIPTION                              │
├─────────────────┼──────────────┼──────────┼──────────────────────────────────────────┤
│ allowAutoCreate │ boolean      │ no       │ Support of creating projects on demand   │
│ apiKey          │ string       │ yes      │ The API key to use for authentication    │
│ instanceURI     │ string (uri) │ yes      │ The URL of the Dependency-Track instance │
└─────────────────┴──────────────┴──────────┴──────────────────────────────────────────┘
ERR missing properties: 'instanceURI', 'apiKey'

@jiparis
add integration permissions to api tokens
5ca54eb 
Signed-off-by: Jose I. Paris <jiparis@chainloop.dev>
@jiparis jiparis requested review from javirln and migmartri November 19, 2024 18:57
@jiparis jiparis merged commit 7903d01 into chainloop-dev:main Nov 19, 2024
13 checks passed
@jiparis jiparis deleted the PFM-1767 branch November 19, 2024 19:05
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@migmartri migmartri migmartri approved these changes

@javirln javirln Awaiting requested review from javirln

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@jiparis @migmartri