verifier

package

v1.3.1 Latest Latest Go to latest Published: Feb 20, 2025 License: Apache-2.0 Imports: 31 Imported by: 16

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/notaryproject/notation-go

Links

Open Source Insights

Documentation ¶

Overview ¶

Package verifier provides an implementation of notation.Verifier interface

Index ¶

Constants
Variables
func New(trustPolicy *trustpolicy.Document, trustStore truststore.X509TrustStore, ...) (notation.Verifier, error)
func NewFromConfig() (notation.Verifier, error)
func NewWithOptions(trustPolicy *trustpolicy.Document, trustStore truststore.X509TrustStore, ...) (notation.Verifier, error)
type VerifierOptions

Constants ¶

View Source

const (
	// HeaderVerificationPlugin specifies the name of the verification plugin
	// that should be used to verify the signature.
	HeaderVerificationPlugin = "io.cncf.notary.verificationPlugin"

	// HeaderVerificationPluginMinVersion specifies the minimum version of the
	// verification plugin that should be used to verify the signature.
	HeaderVerificationPluginMinVersion = "io.cncf.notary.verificationPluginMinVersion"
)

Variables ¶

View Source

var VerificationPluginHeaders = []string{
	HeaderVerificationPlugin,
	HeaderVerificationPluginMinVersion,
}

VerificationPluginHeaders specifies headers of a verification plugin

Functions ¶

func New ¶

func New(trustPolicy *trustpolicy.Document, trustStore truststore.X509TrustStore, pluginManager plugin.Manager) (notation.Verifier, error)

New creates a new verifier given trustPolicy, trustStore and pluginManager

func NewFromConfig ¶

func NewFromConfig() (notation.Verifier, error)

NewFromConfig returns a verifier based on local file system.

func NewWithOptions ¶

func NewWithOptions(trustPolicy *trustpolicy.Document, trustStore truststore.X509TrustStore, pluginManager plugin.Manager, verifierOptions VerifierOptions) (notation.Verifier, error)

NewWithOptions creates a new verifier given trustPolicy, trustStore, pluginManager, and verifierOptions

Types ¶

type VerifierOptions ¶

type VerifierOptions struct {
	// RevocationClient is an implementation of revocation.Revocation to use for
	// verifying revocation of code signing certificate chain
	//
	// Deprecated: RevocationClient exists for backwards compatibility and
	// should not be used. To perform code signing certificate chain revocation
	// check, use [RevocationCodeSigningValidator].
	RevocationClient revocation.Revocation

	// RevocationCodeSigningValidator is used for verifying revocation of
	// code signing certificate chain with context.
	RevocationCodeSigningValidator revocation.Validator

	// RevocationTimestampingValidator is used for verifying revocation of
	// timestamping certificate chain with context.
	RevocationTimestampingValidator revocation.Validator
}

VerifierOptions specifies additional parameters that can be set when using the NewWithOptions constructor

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
crl Package crl provides functionalities for crl revocation check.	Package crl provides functionalities for crl revocation check.
trustpolicy Package trustpolicy provides functionalities for trust policy document and trust policy statements.	Package trustpolicy provides functionalities for trust policy document and trust policy statements.
truststore Package truststore reads certificates in a trust store	Package truststore reads certificates in a trust store

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL