Page MenuHomePhabricator
Differential D9508

[identity][docker] Add option to generate opaque keypair
ClosedPublic
Actions

Authored by bartek on Oct 17 2023, 5:36 AM.
Tags
None
Referenced Files
Unknown Object (File)
Thu, Dec 26, 1:06 PM
Unknown Object (File)
Sat, Dec 14, 10:28 PM
Unknown Object (File)
Sat, Dec 14, 10:28 PM
Unknown Object (File)
Sat, Dec 14, 10:26 PM
Unknown Object (File)
Sat, Dec 14, 10:08 PM
Unknown Object (File)
Mon, Dec 9, 7:15 PM
Unknown Object (File)
Thu, Dec 5, 10:05 PM
Unknown Object (File)
Dec 1 2024, 3:23 PM
View All 90 Files
Subscribers
ashoat
tomek
will

Details

Reviewers
varun
michal
jon
Commits
rCOMMe0b5a8e71bd7: [identity][docker] Add option to generate opaque keypair
Summary

I'm aware that this functionality existed before, but was removed in D8580. Now I'm reintroducing it but making opt-in.
For commtest being run as a docker container that depends on identity, the easisest way is to generate the opaque server setup during image build.

Depends on D9507

Test Plan
  • docker compose build identity-server creates unchanged image
  • docker compose build --build-arg 'generate_keypair=true' adds additional layer and generates secrets/server_setup.txt

Image layers can be checked using e.g. the dive tool: dive commapp/identity-server.

Diff Detail

Repository
rCOMM Comm
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Revision Contents
Changeset List

PathSize
services/
identity/
4 lines

Diff 32278

View Options

services/identity/Dockerfile

Loading...