Do not save private keys in asset store

Author: pawanpinjarkar

pkg/asset/agent/gencrypto/authconfig.go

@@ -17,7 +17,7 @@ import (
 
 // AuthConfig is an asset that generates ECDSA public/private keys, JWT token.
 type AuthConfig struct {
-	PublicKey, PrivateKey, Token string
+	PublicKey, Token string
 }
 
 var _ asset.Asset = (*AuthConfig)(nil)
@@ -49,10 +49,8 @@ func (a *AuthConfig) Generate(dependencies asset.Parents) error {
 		return err
 	}
 	// Encode to Base64 (Standard encoding)
-	encodedPrivateKeyPEM := base64.StdEncoding.EncodeToString([]byte(PrivateKey))
 	encodedPubKeyPEM := base64.StdEncoding.EncodeToString([]byte(PublicKey))
 
-	a.PrivateKey = encodedPrivateKeyPEM
 	a.PublicKey = encodedPubKeyPEM
 
 	token, err := localJWTForKey(infraEnvID.ID, PrivateKey)

pkg/asset/agent/gencrypto/authconfig_test.go

@@ -14,7 +14,7 @@ func TestAuthConfig_Generate(t *testing.T) {
 		name string
 	}{
 		{
-			name: "generate-public-private-keys",
+			name: "generate-public-key-and-token",
 		},
 	}
 	for _, tc := range cases {
@@ -27,7 +27,6 @@ func TestAuthConfig_Generate(t *testing.T) {
 
 			assert.NoError(t, err)
 
-			assert.NotEmpty(t, authConfigAsset.PrivateKey)
 			assert.NotEmpty(t, authConfigAsset.PublicKey)
 			assert.NotEmpty(t, authConfigAsset.Token)
 		})