-
Notifications
You must be signed in to change notification settings - Fork 535
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Sign add-ons with recommendation signer based on DiscoveryItem. #11627
Sign add-ons with recommendation signer based on DiscoveryItem. #11627
Conversation
This also prepares for the possibility that we may have to use different credentials for the recommendations signer. In case we don't, ops only has to set the creds twice which seems fair. Fixes #11062
@@ -245,4 +245,7 @@ authorizations: | |||
key: fs5wgcer9qj819kfptdlp8gm227ewxnzvsuj9ztycsx08hfhzu | |||
signers: | |||
- webextensions-rsa | |||
- id: bob | |||
key: 9vh6bhlc10y63ow2k4zke7k0c3l9hpr8mo96p92jmbfqngs9e7d | |||
signers: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
These credentials have to match https://github.com/mozilla-services/autograph/blob/master/autograph.yaml#L1053 (and respectively for alice
)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This makes sense. Do we have any end-to-end test in reviewer tools that include signing ? Maybe it's worth adding one w/ a recommendable add-on...
We don't unfortunately, addons-server/src/olympia/reviewers/tests/test_utils.py Lines 1289 to 1315 in 0a1419c
|
Added d99ab37 regarding end-to-end tests. |
This also prepares for the possibility that we may have to use different
credentials for the recommendations signer. In case we don't, ops only
has to set the creds twice which seems fair.
Fixes mozilla/addons#6522