Support persistence of multiple keys #51
Description
The current nv2 client persists the keys at:
/home/[user]/.docker/nv2/sha256/[image-digest].jwt
This means if we have 2 or more keys, they'll override them.
What we'd like to support is:
docker pull registry.wabbit-networks.io/net-monitor:v1
docker tag registry.wabbit-networks.io/net-monitor:v1 registry.acme-rockets.io/net-monitor:v1
# some validation of the image
docker notary sign \
--key ./wabbit-networks.key \
--cert ./wabbit-networks.crt \
registry.acme-rockets.io/net-monitor:v1
docker push registry.acme-rockets.io/net-monitor:v1In the above case, there are 2 signatures on registry.wabbit-networks.io/net-monitor:v1, as it was re-signed after some validation, and pushed to registry.acme-rockets.io/net-monitor:v1, Both signatures should be pushed.
Metadata
Metadata
Assignees
Labels
No labels