On 09/09/2016 07:44 AM, Cristian Falcas wrote: > Hello, > > What is the purpose of the "--gpg-key" parameter from create repo command? > > It is used to verify the upstream rpms or to sign the rpms after they are > imported in pulp?
Hi Cristian, `--gpg-key` looks like it should be the full path to the public portion of the GPG key pair that signed the RPMs. It's then provided to the consumer using the consumer feature of Pulp. It's not, as far as I know, published over HTTPS. The key looks like it's stored as a file on the consumer and yum's usual GPG signature checking is used. -- Jeremy Cline XMPP: [email protected] IRC: jcline
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Pulp-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/pulp-list
