tom.sherman.is
This is a WIP, mostly vibe coded PR that should show the direction of the implementation. Hopefully it gets the point across.
I haven't been able to run this yet because struggling to get my local environment working.
+242
-2
api/tangled/cbor_gen.go
+242
-2
api/tangled/cbor_gen.go
···if _, err := cw.Write(cbg.CborEncodeMajorType(cbg.MajMap, uint64(fieldCount))); err != nil {···+if err := cw.WriteMajorTypeHeader(cbg.MajTextString, uint64(len("oidcs_tokens"))); err != nil {······
+9
-3
api/tangled/tangledpipeline.go
+9
-3
api/tangled/tangledpipeline.go
···+Oidcs_tokens []*Pipeline_Step_Oidcs_tokens_Elem `json:"oidcs_tokens,omitempty" cborgen:"oidcs_tokens,omitempty"`
+1
cmd/gen.go
+1
cmd/gen.go
+1
-1
flake.nix
+1
-1
flake.nix
+17
lexicons/pipeline/pipeline.json
+17
lexicons/pipeline/pipeline.json
···
+15
-3
spindle/engine/engine.go
+15
-3
spindle/engine/engine.go
······-func New(ctx context.Context, cfg *config.Config, db *db.DB, n *notifier.Notifier, vault secrets.Manager) (*Engine, error) {+func New(ctx context.Context, cfg *config.Config, db *db.DB, n *notifier.Notifier, vault secrets.Manager, oidc *oidc.OidcTokenGenerator) (*Engine, error) {·········-func (e *Engine) StartSteps(ctx context.Context, wid models.WorkflowId, w models.Workflow, secrets []secrets.UnlockedSecret) error {+func (e *Engine) StartSteps(ctx context.Context, wid models.WorkflowId, w models.Workflow, secrets []secrets.UnlockedSecret, pipeline *models.Pipeline, pipelineId models.PipelineId) error {···
+14
spindle/models/pipeline.go
+14
spindle/models/pipeline.go
·········
+329
spindle/oidc/oidc.go
+329
spindle/oidc/oidc.go
···+// Hardcode the did as did:web of the issuer. At some point knots will have their own DIDs which will be used here+http.Error(w, fmt.Sprintf("failed to extract current public key from JWK: %v", err), http.StatusInternalServerError)+http.Error(w, fmt.Sprintf("failed to extract next public key from JWK: %v", err), http.StatusInternalServerError)+http.Error(w, fmt.Sprintf("failed to encode discovery document: %v", err), http.StatusInternalServerError)
+12
-3
spindle/server.go
+12
-3
spindle/server.go
·········-logger.Error("server error", "error", http.ListenAndServe(cfg.Server.ListenAddr, spindle.Router()))+logger.Error("server error", "error", http.ListenAndServe(cfg.Server.ListenAddr, spindle.Router(oidc)))···