cloudstrap-azure 0.4.7.pre → 0.4.8.pre
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data/README.org +55 -0
- data.tar.gz.sig +0 -0
- metadata +1 -1
- metadata.gz.sig +0 -0
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: f4518c38f5cfa3151e496874550c7badcaf202e36a59f7168722d28e072930bf
|
|
4
|
+
data.tar.gz: b01171b4177de79dc5c0caee00d184751bccb3270075e1771c87cee11272c1c4
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 852a69608ad9da9e29db165ab5a9724e97f7795da2d80067abcde1a32375ebbab8f6be2e386c0805818f6109e8d33e8d3d0dba7b9035d4b8f8dcbfc28be51b6b
|
|
7
|
+
data.tar.gz: 4bd0627dff3a674147b1faaa48d19ff0d03d15a0d58b4e3799f568a9589a905c17777e8215357f1dcc5e2f113c8c1ac3a73312e236fd4d21c9f34cd13271cbd3
|
checksums.yaml.gz.sig
CHANGED
|
Binary file
|
data/README.org
CHANGED
|
@@ -9,6 +9,61 @@
|
|
|
9
9
|
|
|
10
10
|
- Logged in to Azure via ~az login~ at least once.
|
|
11
11
|
|
|
12
|
+
* Installation
|
|
13
|
+
|
|
14
|
+
#+BEGIN_SRC shell
|
|
15
|
+
gem install cloudstrap-azure --pre
|
|
16
|
+
#+END_SRC
|
|
17
|
+
|
|
18
|
+
** Trusted Installation
|
|
19
|
+
|
|
20
|
+
=cloudstrap-azure= is cryptographically signed. You can verify that it hasn't
|
|
21
|
+
been tampered with (and really should, since it acts on your Azure account
|
|
22
|
+
with your credentials).
|
|
23
|
+
|
|
24
|
+
Assuming you have trusted the certificate, you can perform a trusted installation like so:
|
|
25
|
+
|
|
26
|
+
#+BEGIN_SRC shell
|
|
27
|
+
gem install cloudstrap-azure --pre --trust-policy MediumSecurity
|
|
28
|
+
#+END_SRC
|
|
29
|
+
|
|
30
|
+
Using =bundler=, the process is similar:
|
|
31
|
+
|
|
32
|
+
#+BEGIN_SRC shell
|
|
33
|
+
bundle --trust-policy MediumSecurity
|
|
34
|
+
#+END_SRC
|
|
35
|
+
|
|
36
|
+
*** Why MediumSecurity?
|
|
37
|
+
|
|
38
|
+
=MediumSecurity= requires valid signatures on *signed* gems, but allows
|
|
39
|
+
unsigned dependencies. =cloudstrap-azure= has several dependencies, and not
|
|
40
|
+
all of them are signed. Using =HighSecurity= will fail unless *all*
|
|
41
|
+
dependencies are signed.
|
|
42
|
+
|
|
43
|
+
*** Trusting the signing certificate
|
|
44
|
+
|
|
45
|
+
A copy of the public key is included in the repository for verification.
|
|
46
|
+
Assuming you've cloned the repository to =./cloudstrap-azure=, you can add
|
|
47
|
+
it to your list of trusted keys like so:
|
|
48
|
+
|
|
49
|
+
#+BEGIN_SRC shell
|
|
50
|
+
gem cert --add ./cloudstrap-azure/trust/certificates/colstrom.cert.pem
|
|
51
|
+
#+END_SRC
|
|
52
|
+
|
|
53
|
+
You can also fetch the key directly from GitHub.
|
|
54
|
+
|
|
55
|
+
For modern shells like =fish=, use the following:
|
|
56
|
+
|
|
57
|
+
#+BEGIN_SRC shell
|
|
58
|
+
gem cert --add (curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem | psub)
|
|
59
|
+
#+END_SRC
|
|
60
|
+
|
|
61
|
+
For vintage shells like =bash=, use the following:
|
|
62
|
+
|
|
63
|
+
#+BEGIN_SRC shell
|
|
64
|
+
gem cert add <(curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem)
|
|
65
|
+
#+END_SRC
|
|
66
|
+
|
|
12
67
|
* Commands
|
|
13
68
|
|
|
14
69
|
** cloudstrap-azure environment
|
data.tar.gz.sig
CHANGED
|
Binary file
|
metadata
CHANGED
metadata.gz.sig
CHANGED
|
Binary file
|