Sign Git Tags with SSH Keys
What does this MR do and why?
This MR adds support for SSH signed git tags via the
render_ssh_signed_tags_verification_status FF
References
Screenshots or screen recordings
| Before | After |
|---|---|
 |
 |
How to set up and validate locally
- If you don't already have it, configure signing with SSH key (https://docs.gitlab.com/user/project/repository/signed_commits/ssh/#configure-git-to-sign-commits-with-your-ssh-key)
- Create a new project
- Create a signed tag
git tag -s v9.0.0 -m "GDK Signed Tag with SSH" - Push the signed tag
git push origin v9.0.0 - Enable the
render_ssh_signed_tags_verification_statusfeature flag (The existing behaviour is to render the unverified status badge) - Check on the tags view and see that associated signature is verified
Note:
For step 6, ensure you are using a verified gdk email from profile/emails to see the green badge. If your SSH signature email is different, you can add that email in gdk and confirm it in console:
admin_user = User.first
email = admin_user.emails.find_by_email('email_added_in_gdk')
email.confirmMR acceptance checklist
Evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.
Related to #384473 (closed)
Edited by Olaoluwa Oluro