Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS KMS Support #74

Merged
merged 5 commits into from Jul 9, 2021
Merged

AWS KMS Support #74

merged 5 commits into from Jul 9, 2021

Conversation

codysoyland
Copy link
Member

@codysoyland codysoyland commented Jul 1, 2021
edited

This adds AWS as a supported KMS backend.

@dlorenc
Copy link
Member

dlorenc commented Jul 2, 2021

This looks awesome! Thanks!

Add AWS KMS Support
2cebefe 
Signed-off-by: Cody Soyland <cody.soyland@solarwinds.com>
@codysoyland codysoyland marked this pull request as ready for review July 7, 2021 20:32
bobcallaway
bobcallaway reviewed Jul 7, 2021
View reviewed changes
Copy link
Member

@bobcallaway bobcallaway left a comment
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

just a couple questions - looking great overall

pkg/signature/kms/aws/client.go Outdated Show resolved Hide resolved
pkg/signature/kms/aws/signer.go Outdated Show resolved Hide resolved
Add missing interface methods
0ee63f8 
Signed-off-by: Cody Soyland <cody.soyland@solarwinds.com>
AWS KMS improvements
e853fd2 
- Fix a few test issues
- Resolve linter warnings
- Add WithRemoteVerification option
- Use https with AWS custom endpoints
- Add env var to disable AWS TLS verification

Signed-off-by: Cody Soyland <cody.soyland@solarwinds.com>
@bobcallaway
Copy link
Member

LGTM - will approve once the e2e tests pass

Add AWS region config needed for localstack
537c0ef 
Signed-off-by: Cody Soyland <cody.soyland@solarwinds.com>
@codysoyland
Copy link
Member Author

Thanks @bobcallaway for your quick reviews! My last patch should fix the e2e test failures.

Update GHA e2e config for localstack testing
4ef145a 
Signed-off-by: Cody Soyland <cody.soyland@solarwinds.com>
@codysoyland
Copy link
Member Author

After that last failure, I set up GHA on my fork and realized it wasn't running the e2e-test.sh script, so I updated the GHA config with the localstack settings and got it passing there. It should be good now! 🤞

@bobcallaway bobcallaway merged commit 2ab5ec8 into sigstore:main Jul 9, 2021
@codysoyland codysoyland deleted the aws-kms-support branch July 9, 2021 19:05
@codysoyland codysoyland mentioned this pull request Jul 9, 2021
Merged
@cpanato cpanato added this to the 0.1.0 milestone Jul 10, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bobcallaway bobcallaway bobcallaway approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
v1.0.0
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@codysoyland @dlorenc @bobcallaway @cpanato