Specify GitLab as a Committer for commits created by Gitaly
Overview
When we enabled [Feature flag] Enable gpg_signing feature flag (#5361) feature flag that enables Automated/web commits (merge or web IDE commits... (gitlab#19185 - closed) feature, we encountered the following issue: gitlab#19185 (comment 1549659278)
Commits created by GitLab/Gitaly cannot be verified because Committer
or the commit equals Author
of the commit. The signature of the commits is created using the key that belongs to GitLab, i.e belongs neither to Commiter nor the Author. In this case, a user cannot follow the documentation: https://docs.gitlab.com/ee/user/project/repository/signed_commits/ssh.html#verify-commits-locally and specify the correct ~/.ssh/allowed_signers
.
Proposal
Specify GitLab <noreply@gitlab.com>
as a committer to the commits created by Gitaly. In this case, a user can specify noreply@gitlab.com namespaces="git" ssh-ed25519 ...
in the ~/.ssh/allowed_signers
file and their commits will be verified locally.