X.509 signatures Rake task
When signing commits with X.509, the trust anchor might change and the signatures stored within the database must be updated.
Update all X.509 signatures
This task loops through all X.509 signed commits and updates their verification based on current certificate store.
To update all X.509 signatures, run:
Linux package (Omnibus)
sudo gitlab-rake gitlab:x509:update_signatures
Self-compiled (source)
sudo -u git -H bundle exec rake gitlab:x509:update_signatures RAILS_ENV=production