From 6a0a5b46c633f12ca0e754353b6a6f8818915ed8 Mon Sep 17 00:00:00 2001
From: seth <getchoo@tuta.io>
Date: Thu, 25 Jan 2024 09:20:49 -0500
Subject: add signed image support

---
 base/Containerfile | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'base/Containerfile')

diff --git a/base/Containerfile b/base/Containerfile
index ae51051..a4ff2f4 100644
--- a/base/Containerfile
+++ b/base/Containerfile
@@ -58,8 +58,13 @@ RUN cd /etc/yum.repos.d/ && \
 RUN readarray -td '' pkgs < <(/tmp/yq '.install[]' /tmp/packages.yaml) && \
 	rpm-ostree install "${pkgs[@]}"
 
+# enable automatic updates
 RUN sed -i 's/#AutomaticUpdatePolicy.*/AutomaticUpdatePolicy=stage/' /etc/rpm-ostreed.conf
 
+# bring in config layer
+COPY --from=ghcr.io/getchoo/config:${FEDORA_VERSION} /rpms /tmp/config
+RUN rpm-ostree install /tmp/config/container-policy/getchoo-container-policy*.rpm
+
 
 RUN rpm-ostree cleanup -m && \
 	rm -rf /tmp/* /var/* && \
-- 
cgit v1.2.3