Feature #30594

Allow packages to be signed

Added by Stefan Neufeind almost 8 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
Extension Manager
Target version:
Start date:
2011-10-06
Due date:
% Done:

0%

PHP Version:
Tags:
Complexity:
Sprint Focus:

Description

This will require changes to:
  • Extension-archives (allow them to be signed)
    • either using an external signature (easier to integrate with current packages
    • or using an internal signature (will require changes to package-format)
  • Extension-manager (configuration/verification of signatures; optional per repository)
  • Extension-repository (automatically sign packages uploaded to the official TYPO3-repository)

History

#1 Updated by Stefan Neufeind almost 8 years ago

This will help ensure that extensions (from the official repository or from a local repository) are unmodified. This will help validate integrity especially for the use of unsecure communication (http) or the use of (potentially unreliable) mirror-servers.

#2 Updated by Mathias Schreiber almost 5 years ago

  • Category set to Extension Manager

#3 Updated by Mathias Schreiber over 4 years ago

  • Target version set to 7.3 (Packages)

#4 Updated by Mathias Schreiber over 4 years ago

  • Status changed from New to Closed

Taken into account in #63909.
The issues are not linked on purpose, so the refactoring ticket does not get bloated with relations.

Also available in: Atom PDF