GPG commit validation

[sapk]

Display signed commit and validation against gpg key in database. I have started with a very little UI with the a simple title attr indicating the reason.

Examples:

For comparison : https://github.com/sapk/testing-git/commits/master

Need and follow : #710 ✅ go-gitea/git#36 ✅

TODO List :

• UI of commits list
• UI of commit page
• UI file history (same as commits list)
• UI search commit (same as commits list)
• UI diff commit list (same as commits list)
• Add support for translation of new strings

[lunny]

build failed. and it seems the image is not transparent ?

[appleboy]

please following the style guide. https://github.com/go-gitea/gitea/blob/master/CONTRIBUTING.md#styleguide

[sapk]

Thx for the catch i will fix it in the PR of the API from where I start this one : #710

[sapk]

I didn't precise but this is a really early WIP.
The build failed is cause by the need of go-gitea/git#36 change.
In this go-gitea/git#36 we need to discuss a litlle about https://github.com/sapk-fork/git-module/blob/1395a17c1a5a05a465032519932794c486e43559/commit.go#L35 and test in this PR if we could do without or if is to much burden and keep the raw payload.

I open this PR mainly to be able to discuss UI design.

[sapk]

Validation of commit is ok and display a simple message on hover (title attr) with user/key that succeed or why it failed. (need go-gitea/git#36 to compile)

I need to add more detail in commit page.

For the little API part, I have a problem with json auto-encoding replacing "<" and ">" don't know the good way to tackle this prob in gitea.
https://golang.org/pkg/encoding/json/#Marshal
Example :

"verification": {
            "verified": true,
            "reason": "Antoine GIRARD \u003csapk@sapk.fr\u003e / AE8255B8A0D828E4",
            "signature": "-----BEGIN PGP SIGNATURE-----\n\niQEzBAABCAAdFiEEEIOwJg/1vpF1itJ4roJVuKDYKOQFAljC2uIACgkQroJVuKDY\nKOSkQgf+KFT2smNxRlL8S3zptsJAr4fQVV1Lmia5TdepJIUGDvlZMTNuNk2gHqeQ\nnuIJtKGzTD8s5vJIHUQSH2R82oizRPJNSaFKbohTwmMNphQ5uq4gt5DEELkfcNpo\n75N8m0ck+L2+iyPUqmvcofaUqRYjqrvMz/BJ7fB8kEzEJukvjkepfKAQ59T+dzYD\nTd5TY48L18lJv5EdBlNdzpP62/731LEEktUWb6Nttl4MCRXR5CBRPlpBv8rQekjX\nycUAnVM1Yk1BxUQ6zBXJj7xIrc5RChbsDnvAVZmzWtEzME+9w9JiTHg51EJ/fT36\nX6TUL4VQhEhdoQZqJDbzUmIYwPbUoQ==\n=lqpn\n-----END PGP SIGNATURE-----",
            "payload": "tree 7377d79e8a22b4ba522ea204fcdd175490706dd2\nparent 74cde12677bc548487ed1caf192eb19b0b7cf99c\nauthor Antoine GIRARD \u003csapk@sapk.fr\u003e 1488936721 +0100\ncommitter Antoine GIRARD \u003csapk@sapk.fr\u003e 1489165026 +0100\n\nImplement GPG API\n"
        },  

[ghost]

Great work! Like to see it in Gitea. 👍
But in my opinion your display solution looks more like a CI indicator. Maybe you want to use something like a lock which is green, open or gray. What do you think?

(And "Message" should be on the same line than all commit messages.)

[sapk]

Visual updated in description.

[ghost]

@sapk Great! If you only see the question mark, you do not know what is missing. I would use a gray lock which indicates that this commit is signed but not trusted.

[sapk]

I think that if we use a grey lock it could be understood as trusted (with less security) also by the user and that is not the case. Actually if you hover the question mark it display "No good signature found in keystore" but i plan to find a better describing string like "No known key found for this signature" ?
Furthermore, I will add more detail in the commit page about the signature and is validity against key in db.

[ghost]

@sapk I think it will also be much cleaner if you use no border radius between the hash and the symbol.

One might use border-top-left-radius and its variations. :)

[ghost]

@sapk I see your point. What about an open gray lock?

[sapk]

Changes made
I also tested changing the icon background a little darker but I don't really know if it is usefull.

[ghost]

Nice! 💯

Background is ok. Do you think some kind of really small green border around the hash and icon looks good? (Border)

[sapk]

Like that ?

[ghost]

Yes, looks good. :) Green border: "my hash is trusted" ✔️

[sapk]

Better ?

[ghost]

This is really good! But then we should add a gray border around untrusted signatures and commits without. :)

[sapk]

[sapk]

Some test for commit page.

[ghost]

Looks good. I would use a grey lock on commit page as you have used in the commit list - not a black one.

[ghost]

I am not sure if one should also use the border system of the commit list for the whole commit box on these single pages - so a green border around everything, might be too colorful.

[lunny]

Yes. green border and background with black text maybe better.

[lunny]

why use this log?

[sapk]

That my editor that auto-import :-(

[sapk]

So after testing it seems that .IssuerKeyId in sig is not the same the the KeyID of key so remove testing commits.

[lunny]

Another thing, maybe all Id should be ID.

[sapk]

@lunny I didn't found any "Id" string in my change where did you see it ?

[strk]

@sapk make lint should find any of those, but given drone passes I guess there are none ?

[strk]

LGTM, great to also see tests in here !

[strk]

@sapk I guess migrations are needed, right ?

[sapk]

@strk I have try to separate api and db from validation and presentation.
So there is no change in DB in this PR. All change needed were made in the API PR (with a bug for mariadb #1303). All the new types are just for display (CommitVerification, SignCommit). This PR is just validation of commit and display it. API handle change in DB and manipulation via API (Add, remove, list, ...)
A other PR for managing user gpg keys via UI is in WIP. #1293.

I think it will be best to merge it after fix #1303.

[lunny]

@sapk #1303 is merged, maybe this need rebase?

[sapk]

@lunny I could rebase to be sure that everything works and be more clear but it's not needed. The goal of API #710 was to put the foundation with db format and base object. This PR don't change DB and base object so this would merge seamlessly. All the new code is only call for rendering and don't even write to DB.

[lunny]

@sapk this PR is ready to review and merge?

[sapk]

Yes and allready have a LGTM ^^

[strk]

LGTM , but I think we should deal with vendoring in a different way (as I know another git vendor upgrade is needed for the --follow support :/)

[strk]

Make L-G-T-M work !

[lunny]

LGTM