►
From YouTube: GSoC 2021 Git credentials binding 2021 07 21
Description
Jenkins git credentials binding office hours July 21, 2021. Topics included releasing changes, writing a blog post, next steps, package scoping, and resolving issues with private keys.
Meeting notes are available at https://docs.google.com/document/d/1gZneYIDWrT5S-1ACG641wfvxs7vnDC0RCYqy-EuuhwY/edit#heading=h.m0lph2u36pvh
A
C
A
A
A
So
do
you
have
any
questions
immediately
for
us
mark's
putting
on
some
of
his
questions
that
he
had
also
asked
in
the.
A
Channel,
I
think
maybe
that's
the
same
thing
as
you
too,
I
think.
Are
we
ready
to
release
the
username
password
credential
binding,
looks
like
mark,
had
done
some
testing,
he
had
done
some
testing
and
mostly
just
nitpick
reviews
at
this.
A
E
A
C
A
C
C
A
Yeah
so
mark
mark's,
teeing
up
a
great
question.
Any
objection
diverges
with
all
40
plus
commits.
Personally
I
have
no
objections.
E
Yeah
I
was,
I
was
intending
to
release
it
tonight
or
right
now.
Basically,
if,
if
we
as
a
group,
say
yes
we're
ready
to
go,
I
think
it's
time
to
merge
it
release
it,
and
then
you
can
base
your
private
key
implementation
on
a
stable
version.
Instead
of
having
to
do
all
sorts
of
games
with
versions
that
haven't
been
merged.
Yet.
E
Yeah,
I
feel
like
I've.
I've
been
not
as
intensely
focused
on
the
code
review
as
I
have
been
on
the
interactive
testing,
but
all
my
interactive
testing
has
been
been
quite
satisfactory,
so
I
I
don't
see
much
reason
to
to
delay
it,
and-
and
yes,
if,
if
we
have
objections
to
documentation
or
something
like
that,
those
are
pretty
easy
things
to
fix
the
functionality
is
there
and
I
feel
like
it's.
As
far
as
I
can
tell
it's
very
strong.
A
Yeah-
and
I
think
my
nitpick
doesn't
really
even
it
isn't
visible
on
the
ui-
I
I
will
check
your
screenshot
and
I
don't,
I
think,
we're
all
good
there.
So
it's
just
more
of
a
style
and.
A
E
Not
feeling
strongly
about
my
comments
there,
a
part
of
me
was
was
thinking
hey,
should
we
do
a
blog
post
to
to
introduce
it,
because
really,
this
is
one
of
the
top
three
most
requested.
Most
highly
voted
jenkins
enhancement
requests,
and
so
it
may
be,
it
may
justify
a
blog
post
to
say,
hey,
look
step.
One
of
this
highly
requested
here
here
are
some
ways
you
can
use
it.
E
A
E
E
E
E
E
A
A
C
E
He
had
already
said
yes,
so
so
I'm
I'm
going
to
go
ahead
and
do
the
merge
we'll
accept
that
there
are
justin.
Your
question
on
all
the
the
logging
improvement
that
rishabh
suggested
is
still
certainly
possible.
That's
not
blocked
by
releasing
again
or
by
by
doing
a
release,
formatting,
not
an
issue.
We
know
how
to
do.
E
E
E
C
E
B
B
E
And
did
I
interrupt
something?
I'm
sorry
we
were
just
discussing.
Actually,
your
timing
is
perfect
because
we
we
had
just
come
to
the
agreement
that
we
would
go
ahead
and
merge
so
that
I
could
start
the
release
process
and
we
may
even
have
the
release
done
by
the
time
our
meeting
ends
today,
and
but
there
was
this
one
question
you
asked
about:
why
why
this
is
added
to
the
contract
to
be
implemented?
E
D
My
question
yeah,
my
question
is
that
do
we
need
that?
Why
do
we
need
this
flexibility?
Is
it?
Is
this
portion
of
code
something
that.
D
E
E
D
No
as
we're
doing
with
this,
this
method
called
get
to
name
right,
gatekeeping
get
cli
get
to
so
there.
What
we're
doing
is
that
we're
ensuring
we
have.
We
have
placed
our
own
logic,
which
is
going
to
run,
but
we're
not
giving
placing
the
responsibility
of
the
user
to
implement
the
logic
to
resolve
the
game.
Similarly,
why
I
was
thinking
that?
Why
do
we
need
to
place
that
responsibility
to
the
user
when
we
know
that
this
is
going
to
be
constant?
D
D
I
mean
I
have
provided
all
the
parameters
that
are
required
for
the
programmer
to
create
a
git
client
instance.
So,
and
in
my
implementation
I
am
not
using
the
repository,
so
there
is
a
method
dot
using
that
could
be
used
to
set
a
specific
repository
in
which
the
git
client
instance
will
be
available.
So
I'm
not
using
that,
so
I
think
that
could
be
used
by
another
programmer
based
on
his
in
on
their
logic.
D
That's
a
good
idea,
but
the
way
we
could
find
out
how
this
is
being
implemented
is
that
we
could
look
at
how
the
git
plug-in
uses
it
for
for
the
major
functionality
it
performs
right,
because
I
think
that
is
the
biggest
consumer
of
getting
a
good
client.
So
if,
if
we
know
that
we
can
safely
assume
that
this
is
90
or
let's
say,
99
of
the
users
are
going
to
do,
I'm
not
sure
I
I
did
not
get
the
point
of
using
the
repository
to.
D
D
I
mean
I,
there
are
two
options
right.
You
only
said
that
you
can
provide
a
default
installation
implementation
and
people
can
override
it
if
they
want
to
or
they
could
use
this.
D
I
think
if
this
is
what
is
being
used
majorly
by
the
consumers
of
this
api,
then
we
can
provide
the
default
implementation
and
remove
that
you
know
that
responsibility
from
the
user,
but
it's
not
it's
like
a
network.
I
I
don't
think
I'm
not
sure
if
this
is
something
that
we
should
do
right
now,
but
then
mark
said
that
this
is
permanent.
E
E
B
So
then
we
can,
we
can
safely.
C
D
Then
know
what
what
do
you
think
mark
and
justin?
Do
you
think
that
it's
an
effort?
We
should
take
right
now
or
it's
is
this
okay,
because.
E
So
as
I'm
prone
to
not
take
the
effort
just
because,
if
we
do
change
it,
I
feel
like
I've
got
to
go
through
interactive
again
and
verify
interactively
with
the
modified
code.
And
so
there's
there's
a
motivation
to
me
to
say
no,
let's
not
change
it.
Let's
go
ahead
and
ship
it
because
we
want
to
get
harshit
onto
fully
focused
on
the
private
key
work.
A
A
I
guess
if
it
was
easier,
if
it
was
easier
to
remove
it
than
that,
then
maybe
I
would
like
say
that
maybe
it'd
be
nice
to
remove
it
but
yeah.
Given
the
interactive
testing
that
you
have
to
do
like
that,
seems
reasonable,
and
and
given
the
facts
that
it's
quite
unlikely
that
someone's
going
to
take
a
dependency
on
this
api
anyways
and
the
harm
in
someone
taking
a
dependent
money
on
it-
probably
isn't
a
lot,
but.
E
So
so
to
double
check.
So
what
what
I
think
rashad
your
point
is,
is
if
I'm
implementing
the
get
credentials
binding
interface,
I
must
provide
an
implementation
of
get
get
client
instance
and
that
implementation,
I
must
provide,
will
probably
be
those
exact
two
lines
that
are
in
the
implementation
already.
D
Yes,
the
only
point,
the
only
logic
being
that
we
should
not
assume
that
the
user
is
a
customer
aware
of
the
date
to
of
the
git
plugins
ecosystem
or,
let's
say
apis.
Let's
say
they
want
to
implement
the
binding,
extend
the
binding
and
they
don't
want
to,
but
it
it
feels
like
an
extra
step.
But
then
it's
okay,
because
you
you
don't
need
you
said
the
reality
is
that
the
binding
itself
is
not
going
to
be
extended.
D
E
D
Then
no
for
me,
I
I
I'm
okay
for
both
the
cases.
If
you
want
to
change
the
implementation,
I'm
okay
with
that
as
well.
If
you
want
to
go
with
birds,
I'm
working
with
that
as
well.
E
E
E
E
E
A
A
E
No,
no,
that's
that's
something
that
has
to
we're
still.
We
still
release
from
my
desktop,
so
we
haven't
yet
switched
to
use
the
automated
release
systems,
so
this
will
be
yeah
I'll,
I'm
gonna
build
it
install
it
in
my
local
jenkins
instance
restart
the
instance.
E
Well
and
mark's
got
an
embarrassing
one
that
the
jenkins
released
that
should
have
happened
today,
didn't
because
there
was
an
infrastructure
problem
that
I
should
have
investigated,
but
I
I
didn't.
I
was
busy
doing
other
things
so
we're
one
day
late
for
the
jenkins
weekly
that
should
have
been
delivered
yesterday
or
it
should
have
been
delivered
today.
E
A
E
E
D
E
D
Also,
sorry,
to
interrupt
on
the
same
lines,
hardship
was
saying
that
the
the
libraries
we
tried
you
saying
that
they
were
not
able
to
get
the
correct
private
key.
D
They
were
not
able
to
convert
the
private
key
fast
phase
protected
private
key
into
the
correct
detected
priority
is
that
is
that
what
you
found
out,
I
think
the
for
when
I
change
the
format
of
the
file
format
to
pem
or
any
other
bbas
64
encoding,
the
private
key
generate
in
the
form
file
format
generated
is
not
being
accepted
by
the
in
the
server.
D
It
thinks
that
the
this,
the
the
public
and
the
priority
are
not
matching,
I
would
say
they
are
not
authenticating
forming
a
valid
key
pair,
so
I
think
they,
it
was
an
issue
when
I'm
converting
the
byte,
the
byte
for
the
byte
key
private
key
into
a
file
format,
so
that
this
is
where
I'm
getting
an
issue,
but
the
plugin
that
I
suggested
so
the
library
that
I
have
suggested
is
performing
this
on
by
its
own.
So
I
don't
have
to
care
much
about
the
formatting
of
the
file.
C
D
D
D
I
think
it
happening
in
all
of
the
law
I
have
tested
in
on
openssh
key
format,
or
only
for
now,
because
the
other
formats
are
being
handled
by
the
credentials,
but
me
so
that
was
yeah
bouncy
castle
apf
plugin
that
destroyed
the
entrance.
So
right.
That
was
not
an
issue
for.
C
A
It's
in
the
get
plugin
or
get
client
plugin.
You
said
right
yeah.
D
C
A
C
E
A
A
A
E
B
D
Sorry,
what
was
that
richard?
I
was
just
saying
that:
can
we
or
can
you
not
duplicate
this
to
the
git
plugin
instead
of
infilling
it
from
the
get
clamp.
E
And
really
to
me
the
when
I
look
at
that,
I
think
the
the
location
of
ssh
is
is
very
much
a
command
line,
get
specific
thing
and
command
line
gets
specific
things
probably
should
stay
inside
the
get
client
if,
if
my
preferences
are
held
just
because
that's
that's,
that's
a
kind.
That's
a
level
of
guessing
that
that
I
wish
we
didn't
have
to
do.
E
C
E
A
Yeah,
I
think
that
kind
of
makes
sense,
because
yeah
get
client
plug-in
as
a
dependency
of
git
plug-in
and
not
the
other
way
around
yeah.
E
A
A
A
Thing:
okay,
do
you
feel
like?
Are
there
other
things
that
you
think
you
can
look
at
for
the
sshj
thing
for
like,
while
we
figure
out
the
answer
to
the
license,
question
like
as
a
backup
plan
or
or
do
you
need
guidance
from
us.
D
D
D
D
To
compare,
actually,
this
is
saying
that
it
seems
to
be
near
a
relatively
new
library
right.
B
D
No,
no,
I
was
just
I
was
just
looking
at
the
library
yeah
if
it
works
for
you.
I
I
don't
have
a
problem
if
so
you're
directly
getting
the
the
decrypted
key
in
a
string,
content
right,
yeah
and
the
problem
you're
facing
with
ssj
or
any
other
library,
is
that
it
gives
you
that
same
content
in
a
buy
in
a
byte
array
in
a
byte
array,
and
then
you
have
to
convert
it
into
a
file
first
and
then
you
convert
that
to
a
pen
or
do
you
convert
that
into
a
string?
D
Base64,
sorry,
the
byte
array
into
a
string
and
then
encode
it
base
64
and
then
try
to
do
something
with
it.
D
B
D
D
No,
no
I'm
sorry.
I
was
just
saying
that
if
that
is
the
case
then
then
we
would
have
to
handle
those
keys
by
using
java's
pkcs
implementation,
because
it
would
not
understand
it
directly.
D
C
A
A
Might
have
been
my
side
too.
I
I
see
that
you
had
included
some
code
for
the
maverick
synergy.
Did
you
also
include
some
for
ssh?
Maybe
that
was
a
while
back
too.
So
I
apologize
if
that's
what
he
meant.
C
D
I
have
included
that
I
mentioned
the
methods
that
I
have
tested,
so
there
are
at
least
four
methods
at
least
three
or
four
so,
and
two
types
of
encoding
that
I'm
using
so
there's
four
base.
64
and
pem.
D
A
I'm
not
seeing
it,
but
that
could
be
my
search.
Foo
is
not
working
well
on
on
gitter
did
you,
I
guess
one
question
I'd
have
is
if
you
convert
directly
to
a
file
first,
are
you
passing
the
same
encoding
that
should
be
expected
for
for
the
byte
stream,
because
I
wonder
if
anything's
getting
like
kind
of
swapped
in
terms
of
liking
coatings,
but
I'm
I'm
assuming
you've,
probably
already
taken
a
look
at
that?
I
think
I
remember
you
passing
in
a
coating
before,
but.
C
A
Well,
so
when
you
write
a
file,
you
have
to
tell
it
what
encoding
you
want
to
write
the
file
with
I,
maybe
that
was
optional,
but
I
do
remember,
like
I
mean
I've
had
problems
in
the
past,
where,
if
I
don't
exactly
line
up
the
encoding
for
some
of
these
kind
of
more
interesting
use
cases,
sometimes
that
can
cause
some
problems.
D
E
Yeah,
although
for
me
the-
and
I
agree
the
more
mature
is,
is
interesting.
I
like
seeing
the
history
of
maverick
synergy
and
the
fact
that
it's
got
a
commercial
entity
behind
it.
That's
that's
very
comforting
comforting.
Yes,
if
the,
if
the
code
were
mit
licensed,
the
answer
would
be
trivial,
go
with
it.
Yeah.
D
A
Yeah-
and
I
guess
I
have
kind
of
what
might
potentially
be
a
silly
idea,
but
could
be
an
interesting
idea
from
a
licensing
perspective,
but
maybe
annoying
for
you
from
a
user
perspective
is
that
you
could,
since
this
is
a
particular
type
of
ssh
key
like
maybe
you
can
make
this
an
optional
plugin,
but
I'm
not.
I
don't
really
like
the
solution.
I
just
want
to
really
like
really
make
sure
that's
clear.
E
But
good
question:
so:
oh
no,
okay,
so
we've
at
least
got
some
components
that
are
dual
licensed.
The
java
native
access
library,
ie
jna,
is
dual
licensed:
apache
2o
and
lg
gtl21
and
java.
E
E
E
E
C
E
E
E
E
E
A
D
Well,
I'm
thinking
of
making
a
pr,
hopefully
like
today
or
the
binding,
particularly
in
for
linux
distributions,
because
for
the
windows
we
you
know,
I
have
to
first
make
the
method
public.
Only
then
it
will
work
for
windows
and
then
use
incrementals.
E
A
D
And
assuming
that
the
facebook
is
ended
and
if
it
has
then
will,
I
should
write
a
blog
for
the
facebook.
E
C
D
E
That's
the
one
we're
describing,
and
it's
just
one
ultimately
there
at
the
end
of
the
project,
we'll
want
you
to
do
a
blog
post
that
describes
the
experience
that
summarizes
and
that
highlights
the
functionality.
This
was
for
me
just
a
good
short-term
way
to
describe
it
for
people
so
that
they
can
realize
that
functionality
is
available.
The
project's
not
complete,
we
haven't
done
private
keys
yet,
but
it's
already
usable
and
shipped.
E
D
E
E
D
It's
it's
like
each
step
of
a
child's
life
is
defined
by
that
form.
E
E
D
I
mean
if
hashem
wants
to
focus
more
on
the
implementation
right
now,
and
rightly
so.
I
would
love
to
work
with
mark
or
I
just
like
the
writing
process.
So
I'd
like
to
contribute
that.
E
Yeah
well
and
that
harsha,
if,
if
you
don't
mind
not
being
one
of
the
authors
of
this,
I
think
it
might
be
good.
If
we
let
you
stay
focused
on
the
code,
do
you
do
you
have
a
feeling
one
way
or
the
other
gee?
I
want
to
be
a
writer,
and
I
want
to
do
some
writing
on
this
or
no
I'd
like
to
stay
on
the
code.