Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

deployments: API for querying artifact signatures

Description

Acceptance:

  • Can query whether an uploaded artifact is signed or not.

Affects versions

None

Environment

None

Checklist

Activity

Show:

Marcin Pasinski May 4, 2017 at 1:45 PM
Edited

As for the first one, yes. If there is a signature file it means artifact is signed. The easiest way for you to get the information will be to use verification callback.

The idea is, that verification callback is ONLY called when artifact is signed.

As for the second one, just ignore it. There is no way to get the key now. I will update acceptance criteria.

Krzysztof Jaśkiewicz May 4, 2017 at 1:08 PM
Edited

As I understand, if artifact contains manifest.sig then it is signed.

Where this key is stored?

^^

Krzysztof Jaśkiewicz April 24, 2017 at 11:26 AM

estimate: 13SP without acceptance tests:

  • doc api;

  • api versioning;

  • implementation;

  • unit tests;

 

Krzysztof Jaśkiewicz April 24, 2017 at 9:58 AM

Kristian Amlie February 15, 2017 at 2:07 PM

It will be, in the blocked task.

Fixed

Details

Assignee

Reporter

Labels

Story Points

Priority

Sprint

Backlog

yes

Zendesk Support

Checklist

Created February 14, 2017 at 2:23 PM
Updated June 25, 2024 at 11:55 AM
Resolved May 9, 2017 at 9:07 AM