Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

GCP Signer: Explicity Support on Worker #656

Merged
merged 1 commit into from
Dec 18, 2024
Merged

GCP Signer: Explicity Support on Worker #656

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
25 changes: 19 additions & 6 deletions docs/source/guide/Docker_README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -141,34 +141,47 @@ Available types:

The name of s3 bucket to use.

* (Required) ``RSTUF_AWS_ACCESS_KEY_ID``
**_NOTE:_** It requires the AWS credentials to be set in the environment variables.
See the AWS3 Environment Variables section below.

**_NOTE:_** The AWS3 supports all `boto3`
[environment variables](https://boto3.amazonaws.com/v1/documentation/api/latest/guide/configuration.html#using-environment-variables).


#### (Optional) AWS Environment Variables
* ``RSTUF_AWS_ACCESS_KEY_ID``

The access key to use when creating the client session to the S3.

This environment variable supports container secrets when the ``/run/secrets``
volume is added to the path.
Example: `RSTUF_AWS_ACCESS_KEY_ID=/run/secrets/S3_ACCESS_KEY`

* (Required) ``RSTUF_AWS_SECRET_ACCESS_KEY``
* ``RSTUF_AWS_SECRET_ACCESS_KEY``

The secret key to use when creating the client session to the S3.

This environment variable supports container secrets when the ``/run/secrets``
volume is added to the path.
Example: ``RSTUF_AWS_SECRET_ACCESS_KEY=/run/secrets/S3_SECRET_KEY``

* (Optional) ``RSTUF_AWS_DEFAULT_REGION``
* ``RSTUF_AWS_DEFAULT_REGION``

The name of the region associated with the S3.

* (Optional) ``RSTUF_AWS_ENDPOINT_URL``
* ``RSTUF_AWS_ENDPOINT_URL``

The complete URL to use for the constructed client. Normally, the
client automatically constructs the appropriate URL to use when
communicating with a service.

**_NOTE:_** The AWS3 supports all `boto3`
[environment variables](https://boto3.amazonaws.com/v1/documentation/api/latest/guide/configuration.html#using-environment-variables).
#### (Optional) Google Cloud Environment Variables

* ``RSTUF_GOOGLE_APPLICATION_CREDENTIALS``

The path to the Google Cloud credentials file.

Example: `RSTUF_GOOGLE_APPLICATION_CREDENTIALS=/run/secrets/google-credentials.json`

#### (Optional) `RSTUF_LOCK_TIMEOUT`

Expand Down
1 change: 1 addition & 0 deletions repository_service_tuf_worker/signer.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -96,6 +96,7 @@ def isolated_env(env: dict[str, str]):
"AWS_SECRET_ACCESS_KEY",
"AWS_ENDPOINT_URL",
"AWS_DEFAULT_REGION",
"GOOGLE_APPLICATION_CREDENTIALS",
]


Expand Down
Loading