cloudstrap-azure 0.4.7.pre → 0.4.8.pre

Sign up to get free protection for your applications and to get access to all the features.
Files changed (6) hide show
  1. checksums.yaml +4 -4
  2. checksums.yaml.gz.sig +0 -0
  3. data/README.org +55 -0
  4. data.tar.gz.sig +0 -0
  5. metadata +1 -1
  6. metadata.gz.sig +0 -0
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 642d4efa7acdef7f58ee513238c340cdf663180e03d026c767dd22f734b0b708
4
- data.tar.gz: 82923dd91df9a763ef333a037197787be114cb0a84437c52133cd89a3272a3f4
3
+ metadata.gz: f4518c38f5cfa3151e496874550c7badcaf202e36a59f7168722d28e072930bf
4
+ data.tar.gz: b01171b4177de79dc5c0caee00d184751bccb3270075e1771c87cee11272c1c4
5
5
  SHA512:
6
- metadata.gz: 2d477908793016f044011c9c4fcd7ded23027463d978158afdb3edcea8cc529d9f9b69c3013c35562de22748d52113188fbb28dde3b6ade916de08f164368645
7
- data.tar.gz: c7ac85ab03e437784c3ec8742f785a7913cf2e0c49f1575c2bcbcd1f1a4af634262a806514ddb6898fc7abb8bdc21df516e38747a4aebb0e96690a9f0d61966f
6
+ metadata.gz: 852a69608ad9da9e29db165ab5a9724e97f7795da2d80067abcde1a32375ebbab8f6be2e386c0805818f6109e8d33e8d3d0dba7b9035d4b8f8dcbfc28be51b6b
7
+ data.tar.gz: 4bd0627dff3a674147b1faaa48d19ff0d03d15a0d58b4e3799f568a9589a905c17777e8215357f1dcc5e2f113c8c1ac3a73312e236fd4d21c9f34cd13271cbd3
checksums.yaml.gz.sig CHANGED
Binary file
data/README.org CHANGED
@@ -9,6 +9,61 @@
9
9
 
10
10
  - Logged in to Azure via ~az login~ at least once.
11
11
 
12
+ * Installation
13
+
14
+ #+BEGIN_SRC shell
15
+ gem install cloudstrap-azure --pre
16
+ #+END_SRC
17
+
18
+ ** Trusted Installation
19
+
20
+ =cloudstrap-azure= is cryptographically signed. You can verify that it hasn't
21
+ been tampered with (and really should, since it acts on your Azure account
22
+ with your credentials).
23
+
24
+ Assuming you have trusted the certificate, you can perform a trusted installation like so:
25
+
26
+ #+BEGIN_SRC shell
27
+ gem install cloudstrap-azure --pre --trust-policy MediumSecurity
28
+ #+END_SRC
29
+
30
+ Using =bundler=, the process is similar:
31
+
32
+ #+BEGIN_SRC shell
33
+ bundle --trust-policy MediumSecurity
34
+ #+END_SRC
35
+
36
+ *** Why MediumSecurity?
37
+
38
+ =MediumSecurity= requires valid signatures on *signed* gems, but allows
39
+ unsigned dependencies. =cloudstrap-azure= has several dependencies, and not
40
+ all of them are signed. Using =HighSecurity= will fail unless *all*
41
+ dependencies are signed.
42
+
43
+ *** Trusting the signing certificate
44
+
45
+ A copy of the public key is included in the repository for verification.
46
+ Assuming you've cloned the repository to =./cloudstrap-azure=, you can add
47
+ it to your list of trusted keys like so:
48
+
49
+ #+BEGIN_SRC shell
50
+ gem cert --add ./cloudstrap-azure/trust/certificates/colstrom.cert.pem
51
+ #+END_SRC
52
+
53
+ You can also fetch the key directly from GitHub.
54
+
55
+ For modern shells like =fish=, use the following:
56
+
57
+ #+BEGIN_SRC shell
58
+ gem cert --add (curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem | psub)
59
+ #+END_SRC
60
+
61
+ For vintage shells like =bash=, use the following:
62
+
63
+ #+BEGIN_SRC shell
64
+ gem cert add <(curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem)
65
+ #+END_SRC
66
+
12
67
  * Commands
13
68
 
14
69
  ** cloudstrap-azure environment
data.tar.gz.sig CHANGED
Binary file
metadata CHANGED
@@ -1,7 +1,7 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: cloudstrap-azure
3
3
  version: !ruby/object:Gem::Version
4
- version: 0.4.7.pre
4
+ version: 0.4.8.pre
5
5
  platform: ruby
6
6
  authors:
7
7
  - Chris Olstrom
metadata.gz.sig CHANGED
Binary file