Metadata-Version: 2.1
Name: sdkms-git-sign-tool
Version: 0.2.0
Summary: Fortanix DSM Git Sign Tool
Home-page: https://support.fortanix.com
Author: Fortanix
Author-email: support@fortanix.com
License: Apache 2.0
Keywords: DSM,SDKMS,Fortanix DSM,git,sign-tool
Classifier: Development Status :: 5 - Production/Stable
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: Apache Software License
Classifier: Programming Language :: Python :: 2
Classifier: Programming Language :: Python :: 3
Classifier: Topic :: Security :: Cryptography
Description-Content-Type: text/markdown
Requires-Dist: sdkms ~=4.35.0
Requires-Dist: gitpython ~=3.1.44
Requires-Dist: PGPy ~=0.4.3
Requires-Dist: pyasn1 ~=0.4.8
Requires-Dist: python-dateutil ~=2.9.0
Requires-Dist: cryptography ~=36.0.0

# SDKMS Git Signing Tool

This is a utility for signing/verifying git commits with keys stored in Fortanix Self-Defending Key Management System. It includes commands for generating a PGP compatible key in SDKMS.

# Setup
1. In SDKMS create an App and an EC key (only NISTP256, NISTP384 and NISTP512 are supported). Take notes of:
    - App API Key
    - Key UUID

2. In you git repository, the following configuration is needed:

```
git config --local gpg.program </path/to/sdkms-git-sign-tool>
git config --local user.signingkey <Key UUID>
git config --local sdkms.endpoint <SDKMS endpoint>
git config --local sdkms.apikey <SDKMS API Key>
```

