Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add new OIDC Client for Keyless Signing with sigstore #18

Open
KiranSatyaRaj opened this issue Sep 21, 2024 · 0 comments
Open

Add new OIDC Client for Keyless Signing with sigstore #18

KiranSatyaRaj opened this issue Sep 21, 2024 · 0 comments

Comments

@KiranSatyaRaj
Copy link

KiranSatyaRaj commented Sep 21, 2024

  • Sigstore keyless signer requires oidc client to retrieve id_token from identity provider to sign link metadata in jenkins-workflow
  • Similar to GithubActionOidcClient to sign artifacts in CI
  • This requires the functionary to login with their google cloud account using gcloud auth login possibly a step to execute this command and click on the link from the jenkins-job console that redirects to a page that provides authentication and retrieving token with gcloud auth print-identity-token
  • I'm currently working on this, the issue I'm facing right now is with parsing id_token
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant