cloudstrap-azure 0.4.7.pre → 0.4.8.pre
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- checksums.yaml.gz.sig +0 -0
- data/README.org +55 -0
- data.tar.gz.sig +0 -0
- metadata +1 -1
- metadata.gz.sig +0 -0
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: f4518c38f5cfa3151e496874550c7badcaf202e36a59f7168722d28e072930bf
|
|
4
|
+
data.tar.gz: b01171b4177de79dc5c0caee00d184751bccb3270075e1771c87cee11272c1c4
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 852a69608ad9da9e29db165ab5a9724e97f7795da2d80067abcde1a32375ebbab8f6be2e386c0805818f6109e8d33e8d3d0dba7b9035d4b8f8dcbfc28be51b6b
|
|
7
|
+
data.tar.gz: 4bd0627dff3a674147b1faaa48d19ff0d03d15a0d58b4e3799f568a9589a905c17777e8215357f1dcc5e2f113c8c1ac3a73312e236fd4d21c9f34cd13271cbd3
|
checksums.yaml.gz.sig
CHANGED
|
Binary file
|
data/README.org
CHANGED
|
@@ -9,6 +9,61 @@
|
|
|
9
9
|
|
|
10
10
|
- Logged in to Azure via ~az login~ at least once.
|
|
11
11
|
|
|
12
|
+
* Installation
|
|
13
|
+
|
|
14
|
+
#+BEGIN_SRC shell
|
|
15
|
+
gem install cloudstrap-azure --pre
|
|
16
|
+
#+END_SRC
|
|
17
|
+
|
|
18
|
+
** Trusted Installation
|
|
19
|
+
|
|
20
|
+
=cloudstrap-azure= is cryptographically signed. You can verify that it hasn't
|
|
21
|
+
been tampered with (and really should, since it acts on your Azure account
|
|
22
|
+
with your credentials).
|
|
23
|
+
|
|
24
|
+
Assuming you have trusted the certificate, you can perform a trusted installation like so:
|
|
25
|
+
|
|
26
|
+
#+BEGIN_SRC shell
|
|
27
|
+
gem install cloudstrap-azure --pre --trust-policy MediumSecurity
|
|
28
|
+
#+END_SRC
|
|
29
|
+
|
|
30
|
+
Using =bundler=, the process is similar:
|
|
31
|
+
|
|
32
|
+
#+BEGIN_SRC shell
|
|
33
|
+
bundle --trust-policy MediumSecurity
|
|
34
|
+
#+END_SRC
|
|
35
|
+
|
|
36
|
+
*** Why MediumSecurity?
|
|
37
|
+
|
|
38
|
+
=MediumSecurity= requires valid signatures on *signed* gems, but allows
|
|
39
|
+
unsigned dependencies. =cloudstrap-azure= has several dependencies, and not
|
|
40
|
+
all of them are signed. Using =HighSecurity= will fail unless *all*
|
|
41
|
+
dependencies are signed.
|
|
42
|
+
|
|
43
|
+
*** Trusting the signing certificate
|
|
44
|
+
|
|
45
|
+
A copy of the public key is included in the repository for verification.
|
|
46
|
+
Assuming you've cloned the repository to =./cloudstrap-azure=, you can add
|
|
47
|
+
it to your list of trusted keys like so:
|
|
48
|
+
|
|
49
|
+
#+BEGIN_SRC shell
|
|
50
|
+
gem cert --add ./cloudstrap-azure/trust/certificates/colstrom.cert.pem
|
|
51
|
+
#+END_SRC
|
|
52
|
+
|
|
53
|
+
You can also fetch the key directly from GitHub.
|
|
54
|
+
|
|
55
|
+
For modern shells like =fish=, use the following:
|
|
56
|
+
|
|
57
|
+
#+BEGIN_SRC shell
|
|
58
|
+
gem cert --add (curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem | psub)
|
|
59
|
+
#+END_SRC
|
|
60
|
+
|
|
61
|
+
For vintage shells like =bash=, use the following:
|
|
62
|
+
|
|
63
|
+
#+BEGIN_SRC shell
|
|
64
|
+
gem cert add <(curl -s https://raw.githubusercontent.com/colstrom/cloudstrap-azure/master/trust/certificates/colstrom.cert.pem)
|
|
65
|
+
#+END_SRC
|
|
66
|
+
|
|
12
67
|
* Commands
|
|
13
68
|
|
|
14
69
|
** cloudstrap-azure environment
|
data.tar.gz.sig
CHANGED
|
Binary file
|
metadata
CHANGED
metadata.gz.sig
CHANGED
|
Binary file
|