Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

As a user I can audit existing container images and verify its signatures #510

Open
Tracked by #497
pulpbot opened this issue Dec 15, 2021 · 0 comments
Open
Tracked by #497

As a user I can audit existing container images and verify its signatures #510

pulpbot opened this issue Dec 15, 2021 · 0 comments
Labels
Feature Not on roadmap

Comments

@pulpbot
Copy link
Member

pulpbot commented Dec 15, 2021

Author: @ipanova ([email protected])

Redmine Issue: 9581, https://pulp.plan.io/issues/9581

There will be a separate API call that will be provided with the (1) signature verification policy config (2) public keys to verify against (3) content to verify

A follow-up question: what to do in case validation failed? There should be some steps that will take care of removing tempered content. Should this be automatic or a separate manual call?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Feature Not on roadmap
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ipanova @lubosmj @pulpbot