Show Signer in commit lists and add basic trust

[zeripath]

Show the avatar of the signer in the commit list pages as we do not
enforce that the signer is an author or committer. This makes it
clearer who has signed the commit.

Also display commits signed by non-members differently from
members and in particular make it clear when a non-member signer
is different from the committer to help reduce the risk of
spoofing.

Signed-off-by: Andrew Thornton [email protected]

Screenshots

Verified Commits

Untrusted Commits (signed by committer who is not a member of the repository)

Unmatched Commits (signed by committer who is not a member of the repository and the committer and the signer are not matched)

Bad signature

[6543]

can you add a screenshot before/after?

[zeripath]

@6543 Screenshots are up

[silverwind]

Dark theme will probably need a few fixes as this introduces a lot of bright color rules.

[codecov-io]

Codecov Report

Merging #10425 into master will decrease coverage by 0.01%.
The diff coverage is 34.65%.

@@            Coverage Diff             @@
##           master   #10425      +/-   ##
==========================================
- Coverage   43.68%   43.67%   -0.02%     
==========================================
  Files         586      586              
  Lines       81467    81473       +6     
==========================================
- Hits        35591    35584       -7     
- Misses      41465    41478      +13     
  Partials     4411     4411

Impacted Files	Coverage Δ
models/gpg_key.go	53.42% <ø> (+0.09%)	⬆️
routers/api/v1/repo/pull.go	34.63% <ø> (ø)	⬆️
modules/auth/admin.go	0% <0%> (ø)	⬆️
routers/admin/admin.go	10.29% <0%> (ø)	⬆️
routers/api/v1/repo/issue_subscription.go	0% <0%> (ø)	⬆️
models/login_source.go	25.45% <0%> (ø)	⬆️
routers/repo/view.go	36.82% <0%> (ø)	⬆️
modules/auth/pam/pam_stub.go	0% <0%> (ø)	⬆️
routers/api/v1/admin/user.go	30.09% <0%> (ø)	⬆️
routers/user/auth.go	11.4% <0%> (ø)	⬆️
... and 53 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update af172ef...ab8e196. Read the comment docs.

[zeripath]

I've updated colors for dark theme and adjusted the less

[silverwind]

Small request: Can you make the red/green/yellow badges' text color either match the border color (except yellow on light theme, go orange there)? I think they would look better with a text color instead of dull grey.

[zeripath]

@silverwind I don't understand.

[silverwind]

I don't understand

Badge text color is always grey (same as unsigned)

While I think they would look better with some color (same as border here):

Can of course be done in a separate PR.

[silverwind]

There is a slight vertical centering error with the hash text here:

Can't investigate now cause the build fails, but I think you can probably just do flexbox centering inside the tag.

[zeripath]

So I'm not a fan of changing the colour of the shas - I think they would stand out too much.

In terms of the slight vertical centering issue it's because of the height of the avatar. I think if we stick a few px padding-top that would sort it.

[zeripath]

I didn't adjust the view_list.tmpl - I've done that now. That should fix the problem.

[zeripath]

@lafriks I'm not sure how others do this - we should probably extend this functionality to include repository specific pubkeyrings +/- signed pubkeys.

[lafriks]

Why not use server wide keyring with also historical keys?

[silverwind]

I didn't adjust the view_list.tmpl - I've done that now. That should fix the problem.

It does not seem to have helped. HTML on repo page:

[zeripath]

Why not use server wide keyring with also historical keys?

It's an option, we probably want per repository settings though.

I think these are for another PR - this one just establishes a very simple trust model - we can codify more complex ones in time.

[zeripath]

I didn't adjust the view_list.tmpl - I've done that now. That should fix the problem.

It does not seem to have helped. HTML on repo page:

Weird it seemed to fix things over here.

I'm out of time to look at this again tonight - it's bed time for me - feel free to send a pr to my pr or suggest changes if you figure out how to fix things.

[6543]

I'm fine with the go part - I'll leafe js/css part to silverwind

[silverwind]

Should really un-nest and share .sha.label styles. Maybe I'll have a look later.

[guillep2k]

I think this PR is a huge improvement, but I see the problem with the updated keys. I agree it can be refined in a later PR.

We've got a commit table: could that help to hold the "historic"/calculated value? For migrations, the user could choose what to do with previous commits (mark them invalid/orange or "undefined"/gray).

[guillep2k]

Only a couple of nits. 👍

[silverwind]

There's two <i> icons (lock and cog) here on the lock, is that intentional?

[zeripath]

@silverwind I fixed it! -- oops I think that this little fix didn't make it in! I'll open another PR for it.

[zeripath]

@silverwind yes that's intentional if that's the server key.

[silverwind]

The alignment issue with the icons still persists for me. It's because there is a extra <div> in the template on the commits list that is absent on the repo page.

I think the .sha.label needs to be extracted to its own template file and included in bothcommits_list.tmpl and view_list.tmpl. Afterwards, un-nest the CSS so it can be used in more places in the future.

[zeripath]

diff --git a/templates/repo/view_list.tmpl b/templates/repo/view_list.tmpl
index c296eb7be..a1c8c133e 100644
--- a/templates/repo/view_list.tmpl
+++ b/templates/repo/view_list.tmpl
@@ -16,10 +16,11 @@
                                        {{end}}
                                {{end}}
                                <a rel="nofollow" class="ui sha label {{if .LatestCommit.Signature}} isSi
-                                               <span class="shortsha">{{ShortSha .LatestCommit.ID.String
+                                       <span class="shortsha">{{ShortSha .LatestCommit.ID.String}}</span
+                                       <div class="ui detail icon button">
                                                {{if .LatestCommit.Signature}}
                                                        {{if .LatestCommitVerification.Verified}}
-                                                               <div class="ui detail icon button" title=
+                                                               <div title="{{if eq .LatestCommitVerifica
                                                                        {{if ne .LatestCommitVerification
                                                                                <i class="lock icon"></i>
                                                                                <img class="ui signature 
@@ -32,11 +33,10 @@
                                                                        {{end}}
                                                                </div>
                                                        {{else}}
-                                                               <div class="ui detail icon button">
-                                                                       <i title="{{$.i18n.Tr .LatestComm
-                                                               </div>
+                                                               <i title="{{$.i18n.Tr .LatestCommitVerifi
                                                        {{end}}
                                                {{end}}
+                                       </div>
                                </a>
                                {{template "repo/commit_status" .LatestCommitStatus}}
                                {{ $commitLink:= printf "%s/commit/%s" .RepoLink .LatestCommit.ID }}

[silverwind]

Yes, that missing <div class="ui detail icon button"> is the issue.

@silverwind yes that's intentional if that's the server key.

Would move the cog 1px (or .5px) to the top so it's "more" centered.