Story #9581: As a user I can audit existing container images and verify its signatures - Container Support

Story #9581

 

 **Ticket moved to GitHub**: "pulp/pulp_container/510":https://github.com/pulp/pulp_container/issues/510 




 ---- 


 There will be a separate API call that will be provided with the (1) signature verification policy config (2) public keys to verify against (3) content to verify 

 A follow-up question: what to do in case validation failed? There should be some steps that will take care of removing tempered content. Should this be automatic or a separate manual call?

Back

Project

Profile

Help

Container Support

Story #9581