`triton profile` should generate separate keys for Docker

Question

`triton profile` should generate separate keys for Docker

Closed this issue 5 years ago · 2 comments

Currently triton profile setup subcommands like docker-setup try to save a decrypted copy of your private key to disk for use with Docker. Since DOCKER-1005 has been rolled out very widely at this point, we can change this safely to instead generate a separate key + certificate for Docker that's signed by a main account key. This will be a safer setup from a security perspective and also a nicer user experience for people using an SSH agent with triton.

Answer 1 · 2018-04-21T02:32:36.000Z

Initial CR: https://cr.joyent.us/#/c/3860/

Answer 2 · 2020-04-09T19:48:26.000Z

This was implemented in 5734123.