We are following this Sign and verify | Mender documentation link to validate sign and verify artifact. It is working as explained. Now our requirement is to runtime add the “ArtifactVerifyKey” and it value in mender.conf. Run time we want to add or remove this key-value pair. For that I believe the mender-client service needs to be restarted again. Can you help us with how and where should we restart the mender-client service post modification of key-value pair??
This is a use-case which is not easily supported at the moment. In general, for the client to pick up the new configuration, as you have observer, it has to be restarted.
The normal way to do this is to update the rootfs, however, I’m guessing this is a bit heavy-handed for you?
There is the option to create a custom update module for this, end restart the mender-client instead of rebooting.
Yes, your are right, rootfs update will be heavy-handed.
“There is the option to create a custom update module for this, end restart the mender-client instead of rebooting.”
In this case you suggest to send run-time “ArtifactVerifyKey” via mender update file?