4ed7005329
Ignore binary files when whitespace linting
...
Update the whitespace linter script to avoid tripping on png files,
using git-grep option:
-I
Don’t match the pattern in binary files.
Change-Id: Ifcd60354086cc606dbd3e71981484201b00c619c
2020-09-22 04:52:18 +00:00
33286a1173
Simplify whitespace-linter script
...
Pegleg currently uses `find` to search files in the whitespace-linter
script. A more simplified approach could be taken by using `git grep`
instead. This method levarages .gitignore so a separate list of files
in the script no longer needs to be maintained. This is the method used
by Airship Armada.
Change-Id: I26a2a95f533b9ff62de784d004f25ade552a5b31
2019-04-10 15:37:08 -05:00
2a8d2638b3
pki: Port Promenade's PKI catalog into Pegleg
...
This patch set implements the PKICatalog [0] requirements
as well as PeglegManagedDocument [1] generation requirements
outlined in the spec [2].
Included in this patch set:
* New CLI entry point called "pegleg site secrets generate-pki"
* PeglegManagedDocument generation logic in
engine.cache.managed_document
* Refactored PKICatalog logic in engine.cache.pki_catalog derived
from the Promenade PKI implementation [3], responsible for
generating certificates, CAs, and keypairs
* Refactored PKIGenerator logic in engine.cache.pki_generator
derived from Promenade Generator implementation [4],
responsible for reading in pegleg/PKICatalog/v1 documents (as
well as promenade/PKICatalog/v1 documents for backwards
compatibility) and generating required secrets and storing
them into the paths specified under [0]
* Unit tests for all of the above [5]
* Example pki-catalog.yaml document under pegleg/site_yamls
* Validation schema for pki-catalog.yaml (TODO: implement
validation logic here: [6])
* Updates to CLI documentation and inclusion of PKICatalog
and PeglegManagedDocument documentation
* Documentation updates with PKI information [7]
TODO (in follow-up patch sets):
* Expand on overview documentation to include new Pegleg
responsibilities
* Allow the original repository (not the copied one) to
be the destination where the secrets are written to
* Finish up cert expiry/revocation logic
[0] https://airship-specs.readthedocs.io/en/latest/specs/approved/pegleg-secrets.html#document-generation
[1] https://airship-specs.readthedocs.io/en/latest/specs/approved/pegleg-secrets.html#peglegmanageddocument
[2] https://airship-specs.readthedocs.io/en/latest/specs/approved/pegleg-secrets.html
[3] https://github.com/openstack/airship-promenade/blob/master/promenade/pki.py
[4] https://github.com/openstack/airship-promenade/blob/master/promenade/generator.py
[5] https://review.openstack.org/#/c/611739/
[6] https://review.openstack.org/#/c/608159/
[7] https://review.openstack.org/#/c/611738/
Change-Id: I3010d04cac6d22c656d144f0dafeaa5e19a13068
2019-01-15 13:29:21 -06:00
e3f6efbb1f
trivial: fix whitespace-linter catching false positives
...
Ignores .pyc files and files contained in htmlcov as a coverage
job was recently added.
Change-Id: I33b1b88e90060f3b26f41b6acbbc0c7091caeb57
2018-11-25 12:30:56 -05:00
152b42bc3b
Consolidate linter jobs
...
Consolidating all the linting to a single job rather than having a one-off
just to lint for trailing whitespaces. As most of this projects are python,
this should already be covered by PEP8, but will be scanning for yamls with
trailing whitespaces.
Change-Id: Iee33a69ff234d21c08217faa33a19e11dfef0ad9
Signed-off-by: Tin Lam <tin@irrational.io>
2018-11-12 02:30:20 -06:00
Phil Sphicas