Set [breadway] SigLevel=Never (Forgejo db key unavailable to pacman)
This commit is contained in:
Breadway
parent
47ec044cd6
commit
9f9a5db5cc
1 changed files with 4 additions and 3 deletions
|
|
@ -33,11 +33,12 @@ Include = /etc/pacman.d/mirrorlist
|
||||||
# Packages are published to the Forgejo Arch registry (group "os") by the
|
# Packages are published to the Forgejo Arch registry (group "os") by the
|
||||||
# .forgejo/workflows/package.yml workflow in each repo, on tag push.
|
# .forgejo/workflows/package.yml workflow in each repo, on tag push.
|
||||||
#
|
#
|
||||||
# TODO: packages are currently unsigned (TrustAll). For production, sign
|
# Forgejo signs the repo db with a key pacman can't look up, so TrustAll
|
||||||
# them in CI with a GPG key and switch to SigLevel = Required.
|
# fails. SigLevel = Never skips verification (acceptable for this private
|
||||||
|
# repo over TLS). TODO: import Forgejo's signing key + SigLevel = Required.
|
||||||
# -----------------------------------------------------------------------
|
# -----------------------------------------------------------------------
|
||||||
# The section name must match Forgejo's served db filename
|
# The section name must match Forgejo's served db filename
|
||||||
# ({owner}.{group}.{domain}.db) — pacman fetches "<section>.db" from Server.
|
# ({owner}.{group}.{domain}.db) — pacman fetches "<section>.db" from Server.
|
||||||
[Breadway.os.git.breadway.dev]
|
[Breadway.os.git.breadway.dev]
|
||||||
SigLevel = Optional TrustAll
|
SigLevel = Never
|
||||||
Server = https://git.breadway.dev/api/packages/Breadway/arch/os/$arch
|
Server = https://git.breadway.dev/api/packages/Breadway/arch/os/$arch
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue