The RHTAS Console is a web-based frontend for interacting with the Red Hat Trusted Artifact Signer (TAS) ecosystem. It provides user-friendly workflows for retrieving, verifying, and monitoring signed software artifacts, integrating with Sigstore services like Rekor, Fulcio, and TUF (The Update Framework).
Features in progress:
- View trust metadata and certificate details
- Verify signatures and attestations
- Retrieve container artifacts from registries
- Integrate with transparency logs (Rekor)
Links:
- RHTAS Console
- Based on PatternFly React Seed
- Uses PatternFly v6, React, and Storybook
git clone https://github.com/securesign/rhtas-console-ui
cd rhtas-console-ui
npm ci && npm run start:dev
# Install development/build dependencies
npm ci
# Start the development server
npm run start:dev
# Run a production build (outputs to "dist" dir)
npm run build
# Run the linter
npm run lint
# Run the code formatter
npm run format
# Start the express server (run a production build first)
npm run start| ENV VAR | Description | Default value |
|---|---|---|
| MOCK | Enables or disables mock data | off |
| AUTH_REQUIRED | Enable/Disable authentication | false |
| OIDC_CLIENT_ID | Set Oidc Client | frontend |
| OIDC_SERVER_URL | Set Oidc Server URL | http://localhost:8090/realms/console |
| OIDC_SCOPE | Set Oidc Scope | openid |
- To keep our code formatting in check, we use prettier
- To ensure code styles remain consistent, we use eslint
Environment Variables can be injected in the UI though environment.ts
RPM packages require explicit enablement. See konflux-rpm
Requirements:
Steps to setup RPM packages:
BASE_IMAGE=registry.access.redhat.com/ubi9/nodejs-22-minimal:latest
podman run -it $BASE_IMAGE cat /etc/yum.repos.d/ubi.repo > ubi.repo
Make sure the ubi.repo file has all repositories enabled enabled = 1 and then:
rpm-lockfile-prototype --image $BASE_IMAGE rpms.in.yaml