90bade9561
It is weird that `trusted_source` would default to `false` as that would imply that we normally don't trust our sources. This is opposite to the truth, by default we trust them but only if the Releases file can be verified (meaning it is signed by a GPG key known to apt). What we were telling apt is that it should trust this source even if the Releases file and the repository is unsigned. This is better captured with `allow_unsigned` and better highlights the danger of what you're doing, installing packages from a source we cannot authenticate.
11 lines
536 B
Text
11 lines
536 B
Text
# <%= @comment %>
|
|
<%- if @_include['deb'] then -%>
|
|
deb <%- if @architecture or @allow_unsigned -%>
|
|
[<%- if @architecture %>arch=<%= @architecture %> <% end %><% if @allow_unsigned %>trusted=yes<% end -%>
|
|
] <%- end %><%= @location %> <%= @release %> <%= @repos %>
|
|
<%- end -%>
|
|
<%- if @_include['src'] then -%>
|
|
deb-src <%- if @architecture or @allow_unsigned -%>
|
|
[<%- if @architecture %>arch=<%= @architecture %> <% end %><% if @allow_unsigned %>trusted=yes<% end -%>
|
|
] <%- end %><%= @location %> <%= @release %> <%= @repos %>
|
|
<%- end -%>
|