-
Notifications
You must be signed in to change notification settings - Fork 42
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Proposal: Add SignatureMediaTypes
array to RemoteVerifyOptions
in notation.Verify()
#217
Comments
The origination of this issue lies in #208 (comment) and I think we still need to figure out few things One reason to do so is that a certain signature media type with version v1 might have security issue and needs to release a v2 version. All signatures signed in v1 shall be skipped in notation.Verify(). In this case, we can set SignatureMediaTypes as [example v2] to filter out signatures already signed in v1.
|
Yes, the user needs to re- |
SignatureMediaTypes
array to RemoteVerifyOptions
in notation.Verify()
Created this issue to track adding SignatureMediaTypes array to RemoteVerifyOptions.
Proposed behavior:
One reason to do so is that a certain signature media type with version v1 might have security issue and needs to release a v2 version. All signatures signed in v1 shall be skipped in notation.Verify(). In this case, we can set SignatureMediaTypes as [example v2] to filter out signatures already signed in v1.
The text was updated successfully, but these errors were encountered: