Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

kbs: token: configuration cleanup #483

Merged
merged 3 commits into from
Aug 29, 2024

Conversation

mythi
Copy link
Contributor

@mythi mythi commented Aug 28, 2024

Moving some changes from #458 to this separate PR.

While working on this, I noticed KBS can be run without trusted_certs_paths and have resource access approved. Are we OK with this or would it be better to have an explicit user opt-in?

mythi added 3 commits August 28, 2024 11:23
The defaults for AttestationTokenVerifierConfig are now
automatically generated so the impl Default can be dropped.

Signed-off-by: Mikko Ylinen <[email protected]>
Copy link
Member

@fitzthum fitzthum left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

We might want to think about the case where there are no certs, but that can be a separate PR. Let's make an issue tho.

@mythi
Copy link
Contributor Author

mythi commented Aug 29, 2024

LGTM

We might want to think about the case where there are no certs, but that can be a separate PR. Let's make an issue tho.

Created #486

@Xynnn007 Xynnn007 merged commit b0199c2 into confidential-containers:main Aug 29, 2024
14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants