pinecrypt/pinecrypt-gateway-backend
2
1
Fork 0
Code Issues 10 Pull Requests Projects Activity

Record request approval mechanism #4

New Issue
Open
opened 2021-06-09 10:26:47 +00:00 by lauri · 0 comments
lauri commented 2021-06-09 10:26:47 +00:00
Owner
Copy Link

For better overview in database how a certificate got signed add attribute that has couple possible values:

  • autosign due to being allowed by AUTOSIGN_SUBNETS
  • kerberos for Kerberos authenticated machines
  • web for manually approved ones by pressing the green button in web
  • cli for manual sign via pinecone command line interface
  • token due to being verified by issued token

Finally make sure pinecone list shows the used mechanism and metric exporter exports the value as label

For better overview in database how a certificate got signed add attribute that has couple possible values: * `autosign` due to being allowed by AUTOSIGN_SUBNETS * `kerberos` for Kerberos authenticated machines * `web` for manually approved ones by pressing the green button in web * `cli` for manual sign via `pinecone` command line interface * `token` due to being verified by issued token Finally make sure `pinecone list` shows the used mechanism and [metric exporter](https://git.k-space.ee/pinecrypt/exporter) exports the value as label
marva was assigned by lauri 2021-06-09 10:27:26 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
No items
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
lauri marva
No Assignees marva
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: pinecrypt/pinecrypt-gateway-backend#4
No description provided.
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?