[User Story] - notation trust store experience via Notation cli commands

notaryproject / roadmap

Roadmap for Notary Project

7 stars 6 forks source link

[User Story] - notation trust store experience via Notation cli commands #38

Closed iamsamirzon closed 1 year ago

iamsamirzon commented 2 years ago

As a user, I want to configure trust store using the notation cli or configuration file(s) so that I can authenticate signed artifacts.

Original description: Summary Intended Outcome The implementation matches with the specification. Additional context Will be revised based on spec updates in each alpha release. The first alpha release will have a baseline implementation that will continue to get revised until we get to release candidate

iamsamirzon commented 2 years ago

@SteveLasker , @gokarnm - Based on the directory structure method of configuring trust store for Notation, I believe we can close or defer this roadmap item as not needed/applicable for initial release. Let me know if you think otherwise.

iamsamirzon commented 2 years ago

@dtzar - I am marking this for our "discuss" milestone, as this is not a blocking experience for RC-1.

yizha1 commented 2 years ago

@iamsamirzon @dtzar the user experience would be much worser if CLI is not developed for trust policy and trust store management. Imaging users need to manually copy certs to different directories (not to mention different OS) and manually create complex trust policy Json file. Highly recommended to include this user story into rc.1 scope. /cc @FeynmanZhou @shizhMSFT

iamsamirzon commented 2 years ago

@yizha1 - I think once we have the effort/scope done for the additional CLI work for trust store and trust policy, then we can make a decision of delaying or including.

yizha1 commented 2 years ago

@iamsamirzon as discussed in the community call, could you split this user story to two, one for trust store and one for trust policy. And I found there are existing roadmap item for trust policy cli https://github.com/notaryproject/notation/issues/769, maybe we could edit this one to trust store only.

iamsamirzon commented 2 years ago

@iamsamirzon modified this issue for just the trust store requirement,. Trust policy will be handled by notaryproject/notation#769 ( as suggested by @yizha1 )

iamsamirzon commented 1 year ago

During the 9/19 meeting, feedback was directly given for this CLI command proposal from Yi. https://hackmd.io/V-0Nhl4mT7Sa0NPiCVgMlQ?both

yizha1 commented 1 year ago

PR created for Trust store CLI spec https://github.com/notaryproject/notation/pull/361

yizha1 commented 1 year ago

Close as completed.