Generate/regenerate Yum repository metadata GPG signatures #322
Conversation
PaulSD
force-pushed
the
sign_repomd
branch
2 times, most recently
from
39d3e73
to
3eed180
Compare
PaulSD
force-pushed
the
sign_repomd
branch
2 times, most recently
from
1d03d57
to
5ebd83f
Compare
|
I don't think these new test failures are caused by my changes... |
|
Could you rebase on master? That should fix the tests. |
I'm not quite sure what you mean by this. |
PaulSD
force-pushed
the
sign_repomd
branch
2 times, most recently
from
df97c60
to
2a7be67
Compare
|
Apologies for it having been a long time since addressing this. I will admittedly be a bit slow cycling on it but I will try to track this better to reduce that cycle time. Can you explain a bit more about why the installer puppet module needs to handle signing the metadata? I would expect Pulp to handle this rather than having to make a change after Pulp has synced content to a location. |
|
Pulp normally signs the metadata when publishing a repository: However, if metadata signing is enabled on an existing server (that already has published repositories), then the installer puppet module needs to generate signatures for those existing repositories. |
|
At this point Katello has removed Pulp 2 and this module is only here to support Katello 3.18. No new features are added to that. That's why I'm closing this. This feature does IMHO belong in Pulp 3, but that's maintained in https://github.com/theforeman/puppet-pulpcore. Apologies for not properly prioritizing this in the Pulp 2 lifecycle. |
This is related to theforeman/puppet-certs#188
If a yum repomd GPG key is configured on an existing Pulp server that already has published repositories, then repomd signatures will need to be generated for those existing repositories.