-
Thanks for putting this together man I love your work!
I'm hoping you can help me resolve the issue I'm having. I've gone through the instructions several times and I keep running into the same …
-
### Community Note
* Please vote on this issue by adding a 👍 [reaction](https://blog.github.com/2016-03-10-add-reactions-to-pull-requests-issues-and-comments/) to the original issue to help the…
-
-
In the current state, we have DSSE's that contain a signature and the information needed to generate the PAE(message) that gets signed. When a DSSE Verifier is created, you must specify a signature al…
-
Hi there,
I would like to store the Root CA in Hashicorp vault to keep it secure and use smallstep as the frontend.
I was thinking the best way is if I can configure an external ca via a webhook…
-
I am trying to launch with workload identity so that i don't mount Service account key.
Below Steps i followed
1. Enabled Workload Identity
2. Created Service account **vault-test**
3. Create…
-
## Creating a KMS Key for Terraform State Encryption
**Understanding KMS Keys:**
A KMS key is a cryptographic key that can be used to encrypt and decrypt data. In GCP, KMS keys are managed by th…
-
I am creating a GKE cluser and using `kubernetes:yaml:ConfigGroup` to deploy some workload to the cluster.
Before I create any resources at all, my policy that looks for certain specific resources …
-
staging on wiki
https://github.com/GoogleCloudPlatform/pbmm-on-gcp-onboarding/wiki/Architecture
https://github.com/GoogleCloudPlatform/pbmm-on-gcp-onboarding/wiki/Asset-Inventory
production and d…
-
The requirement for the vendor specific CKA_KMS_ALGORITHM in the private key template makes it impossible to use by other than custom developed clients.
One example:
pkcs11-tool --module /usr/loc…