Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GPG support #5

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

GPG support #5

wants to merge 3 commits into from

Conversation

rlex
Copy link

@rlex rlex commented Nov 26, 2014

"Warning, RVM 1.26.0 introduces signed releases and automated check of signatures when GPG software found.
Assuming you trust Michal Papis import the mpapis public key (downloading the signatures)."

This will install gnupg2 and import rvm gpg key under rvm user.

@hSATAC
Copy link

hSATAC commented Nov 29, 2014

👍 for this.

@DracoBlue
Copy link

👍

@DracoBlue
Copy link

Since the keyserver did not work for me yesterday, I am using this workaround in my wrapper for single_user_rvm called https://github.com/DracoBlue/puppet-rvm :

single_user_rvm::install { "${user}":
    user => $user,
    require => [Exec['rvm-fix-to-install-single-user-rvm-gpg-key']]
}
exec { 'rvm-fix-to-install-single-user-rvm-gpg-key':
    path        => '/usr/bin:/usr/sbin:/bin',
    command     => 'curl -sSL https://rvm.io/mpapis.asc | gpg2 --import -',
    user        => "${user}",
    unless      => 'gpg2 --list-keys D39DC0E3',
    require     => [Package['gnupg2'], Package['curl']],
}

The mpapis.asc file should be available when rvm is available from rvm.io, so this is more failsafe, isn't it?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@rlex @hSATAC @DracoBlue