kyrofa
commented
11 months ago Edit: if you please, add a CHANGELOG description, should you have one.
Done, does that look right?
Closed kyrofa closed 11 months ago
kyrofa
commented
11 months ago Edit: if you please, add a CHANGELOG description, should you have one.
Done, does that look right?
Over time, gemstash authorizations turn into a pile of opaque tokens and associated permissions. Keeping track of which token belongs to which developer or automated system is required to enable proper revocation or rotation. Today, that requires the use of an external system, which has the added problem of duplicating the key itself.
This PR resolves #364, adding support for keeping this association within Gemstash itself by allowing for authorizations to be named. It also adds support for listing authorizations, so it's easy to determine which key needs to be revoked, rotated, or otherwise updated. See the manpage updates for details on use.