Skip to content

Commit

Permalink
move to yaml
Browse files Browse the repository at this point in the history 
Signed-off-by: Javan lacerda <javanlacerda@google.com>
  • Loading branch information
@javanlacerda
javanlacerda committed Jul 10, 2024
1 parent 10c7da8 commit 5913bdc
Showing 1 changed file with 10 additions and 16 deletions.
26 changes: 10 additions & 16 deletions .github/workflows/verify-k8s.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,18 +45,6 @@ jobs:
runs-on: ubuntu-latest
strategy:
fail-fast: false # Keep running if one leg fails.
matrix:
issuer:
- "OIDC Issuer"
- "Meta Issuer"

include:
- issuer: "OIDC Issuer"
issuer-config: |
"OIDCIssuers": {"https://kubernetes.default.svc": {"IssuerURL": "https://kubernetes.default.svc","ClientID": "sigstore","Type": "kubernetes"}}
- issuer: "Meta Issuer"
issuer-config: |
"MetaIssuers": {"https://kubernetes.*.svc": {"ClientID": "sigstore","Type": "kubernetes"}}
env:
# https://github.com/google/go-containerregistry/pull/125 allows insecure registry for
# '*.local' hostnames. This works both for `ko` and our own tag-to-digest resolution logic,
Expand Down Expand Up @@ -123,10 +111,16 @@ jobs:
name: fulcio-config
namespace: fulcio-system
data:
config.json: |-
{
${{ matrix.issuer-config }}
}
config.yaml: |-
oidc-issuers:
https://kubernetes.default.svc:
issuer-url: "https://kubernetes.default.svc"
client-id: "sigstore"
Type: "kubernetes"
meta-issuers:
https://kubernetes.*.svc:
client-id: "sigstore"
type: "kubernetes"
server.yaml: |-
host: 0.0.0.0
port: 5555
Expand Down

0 comments on commit 5913bdc

Please sign in to comment.