Task: add task `update_das_process` overwriting an existing DAS processes
MVrachev opened this issue · 1 comments
MVrachev commented
What is the task about?
Add a task called update_das_process which will overwrite an existing Distributed Asynchronous Signing (DAS) process.
What needs to be done is to overwrite existing values of SIGNING_ROLE: https://repository-service-tuf.readthedocs.io/en/latest/devel/design.html#rstuf-repository-settings-configuration.
There are two cases that need to be covered:
- when a user wants to override a
bootstrapDAS process - when a user wants to override a
metadata updateDAS process
Things to check in the implementation:
BOOTSTRAPneeds to have a value ofsigning-<task id>to consider an overwrite ofbootstrapDAS process acceptable. Users need to send their initial bootstrap payload toPOST /api/v1/bootstrap, this task is to PATCH an existing DAS process, not for initializing a new one.- In the payload there needs to be metadata for a role that is already under a DAS process meaning we need to check that
SIGNING_<ROLE NAME>has a metadata dictionary value. - This task needs to accept a
payloadargument compatible with: repository-service-tuf/repository-service-tuf-api#415
References
- repository-service-tuf/repository-service-tuf-api#415
- repository-service-tuf/repository-service-tuf#327 (comment)
Code of Conduct
- I agree to follow this project's Code of Conduct
MVrachev commented
DELETE /api/v1/metadata/sign endpoint is implemented and together with the community, we agreed that this feature is not needed for now.