GPG support

[rlex]

"Warning, RVM 1.26.0 introduces signed releases and automated check of signatures when GPG software found.
Assuming you trust Michal Papis import the mpapis public key (downloading the signatures)."

This will install gnupg2 and import rvm gpg key under rvm user.

[hSATAC]

👍 for this.

[DracoBlue]

👍

[DracoBlue]

Since the keyserver did not work for me yesterday, I am using this workaround in my wrapper for single_user_rvm called https://github.com/DracoBlue/puppet-rvm :

single_user_rvm::install { "${user}":
    user => $user,
    require => [Exec['rvm-fix-to-install-single-user-rvm-gpg-key']]
}
exec { 'rvm-fix-to-install-single-user-rvm-gpg-key':
    path        => '/usr/bin:/usr/sbin:/bin',
    command     => 'curl -sSL https://rvm.io/mpapis.asc | gpg2 --import -',
    user        => "${user}",
    unless      => 'gpg2 --list-keys D39DC0E3',
    require     => [Package['gnupg2'], Package['curl']],
}

The mpapis.asc file should be available when rvm is available from rvm.io, so this is more failsafe, isn't it?