Project

Profile

Help

Story #9513

Story #9502: [EPIC] Contrainer Signing and Verification

As a user I can view container image signatures

Added by ipanova@redhat.com 13 days ago. Updated 7 days ago.

Status:
NEW
Priority:
Normal
Assignee:
-
Sprint/Milestone:
-
Start date:
Due date:
% Done:

0%

Estimated time:
Platform Release:
Groomed:
No
Sprint Candidate:
No
Tags:
Sprint:
Quarter:

Description

Provide an extension of the docker/distribution API.

Assuming a signed image has already been pushed into the Pulp Container Registry, one can read the signature(s)( any user with access to the image) using the following calls:

  • GET /extensions/v2/<namespace>/<name>/signatures/
  • GET /extensions/v2/<namespace>/<name>/signatures/<imagesha256digest>

See https://docs.openshift.com/container-platform/3.10/admin_guide/image_signatures.html#reading-image-signatures-via-registry-api and https://github.com/openshift/origin/pull/12504/files

History

#1 Updated by ipanova@redhat.com 13 days ago

  • Description updated (diff)

#2 Updated by ipanova@redhat.com 7 days ago

  • Description updated (diff)

Please register to edit this issue

Also available in: Atom PDF