http://redmine.ourproject.org/2012-11-10T22:42:31ZComunesKune - Enhancement #407: Sign deb packagehttp://redmine.ourproject.org/issues/407?journal_id=5252012-11-10T22:42:31ZSamer -
<ul></ul>I tried to approach this but I got stuck. I thought we should sign the packages with a generic key for Kune (like Ubuntu does) so I created a GPG RSA key for kune@op just for signing (not for encrypting). However, later the instructions say that, in order to do it automatically:<br />"your packages will be automatically signed as long as the name and email address in your package’s changelog file are the same as that of the GPG key you created" <br />As the changelog usually has vjrj's name and email, then I wonder that, to avoid complications and being able to do it automatically, we should sign the package with his key.
<ul>
<li>If we do, then I'd discard the created Kune key and wait till vjrj does it. </li>
<li>If we don't, then i'd continue working on this with the Kune key I created (uploading it to the key repository, signing, etc).</li>
</ul> Kune - Enhancement #407: Sign deb packagehttp://redmine.ourproject.org/issues/407?journal_id=5272012-11-11T21:51:08ZVicente J. Ruiz Juradovjrj@ourproject.org
<ul><li><strong>Estimated time</strong> set to <i>0.00</i></li></ul><p>I think is a good path to follow, but, the goal is that ci.comunes.org do this task automatically (now the deb is generated there) and should copy the packages to the repo. The package is manual signed with my key (see the kune deb install howto to import it), because I didn't put the necessary effort to finish all the path and configure ci.comunes.org end task.</p> Kune - Enhancement #407: Sign deb packagehttp://redmine.ourproject.org/issues/407?journal_id=6212013-01-12T18:53:18ZVicente J. Ruiz Juradovjrj@ourproject.org
<ul><li><strong>Tracker</strong> changed from <i>Defect</i> to <i>Enhancement</i></li></ul>