mirror of
https://github.com/project-zot/zot.git
synced 2024-12-16 21:56:37 -05:00
41b05c60dd
In order to verify signatures, users could upload their certificates and public keys using these routes: -> for public keys: /v2/_zot/ext/mgmt?resource=signatures&tool=cosign -> for certificates: /v2/_zot/ext/mgmt?resource=signatures&tool=notation&truststoreType=ca&truststoreName=name Then the public keys will be stored under $rootdir/_cosign and the certificates will be stored under $rootdir/_notation/truststore/x509/$truststoreType/$truststoreName. Also, for notation case, the "truststores" field of $rootir/_notation/trustpolicy.json file will be updated with a new entry "$truststoreType:$truststoreName". Also based on the uploaded files, the information about the signatures validity will be updated periodically. Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
29 lines
858 B
Go
29 lines
858 B
Go
//go:build !mgmt
|
|
// +build !mgmt
|
|
|
|
package extensions
|
|
|
|
import (
|
|
"github.com/gorilla/mux"
|
|
|
|
"zotregistry.io/zot/pkg/api/config"
|
|
"zotregistry.io/zot/pkg/log"
|
|
"zotregistry.io/zot/pkg/meta/repodb"
|
|
"zotregistry.io/zot/pkg/scheduler"
|
|
)
|
|
|
|
func IsBuiltWithMGMTExtension() bool {
|
|
return false
|
|
}
|
|
|
|
func SetupMgmtRoutes(config *config.Config, router *mux.Router, log log.Logger) {
|
|
log.Warn().Msg("skipping setting up mgmt routes because given zot binary doesn't include this feature," +
|
|
"please build a binary that does so")
|
|
}
|
|
|
|
func EnablePeriodicSignaturesVerification(config *config.Config, taskScheduler *scheduler.Scheduler,
|
|
repoDB repodb.RepoDB, log log.Logger,
|
|
) {
|
|
log.Warn().Msg("skipping adding to the scheduler a generator for updating signatures validity because " +
|
|
"given binary doesn't include this feature, please build a binary that does so")
|
|
}
|