Ability to synchronize PGP keys to managed agents #536
Description
Is your feature request related to a problem? Please describe.
Argo CD supports verifying Git comments using PGP. It lets users configure PGP keys for commit verification through its API (UI, CLI). These keys will be stored in a ConfigMap, and then used by the argocd-repository-server to make sure the Git commit for a particular revision can be trusted.
For managed agents, the source of truth for all (or most) configuration will be the control plane. Administrators will configure the PGP keys centrally, and configure certain AppProjects to enforce the use of the appropriate key(s) for verification.
Describe the solution you'd like
The principal should propagate changes to the PGP keys to all managed agents. A managed agent should revert any changes to the PGP key config map made locally.
Describe alternatives you've considered
- Available PGP keys could be distributed to the managed agents by other means (e.g. OCM-io)
- No support for PGP keys
Additional context
Add any other context or screenshots about the feature request here.