public interface BuildSignatureOrBuilder
extends com.google.protobuf.MessageOrBuilder
| Modifier and Type | Method and Description |
|---|---|
String |
getKeyId()
An ID for the key used to sign.
|
com.google.protobuf.ByteString |
getKeyIdBytes()
An ID for the key used to sign.
|
BuildSignature.KeyType |
getKeyType()
The type of the key, either stored in `public_key` or referenced in
`key_id`
|
int |
getKeyTypeValue()
The type of the key, either stored in `public_key` or referenced in
`key_id`
|
String |
getPublicKey()
Public key of the builder which can be used to verify that the related
findings are valid and unchanged.
|
com.google.protobuf.ByteString |
getPublicKeyBytes()
Public key of the builder which can be used to verify that the related
findings are valid and unchanged.
|
com.google.protobuf.ByteString |
getSignature()
Signature of the related `BuildProvenance`.
|
findInitializationErrors, getAllFields, getDefaultInstanceForType, getDescriptorForType, getField, getInitializationErrorString, getOneofFieldDescriptor, getRepeatedField, getRepeatedFieldCount, getUnknownFields, hasField, hasOneofString getPublicKey()
Public key of the builder which can be used to verify that the related findings are valid and unchanged. If `key_type` is empty, this defaults to PEM encoded public keys. This field may be empty if `key_id` references an external key. For Cloud Container Builder based signatures, this is a PEM encoded public key. To verify the Cloud Container Builder signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from `BuildDetails` are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: `openssl sha256 -verify public.pem -signature signature.bin signed.bin`
string public_key = 1;com.google.protobuf.ByteString getPublicKeyBytes()
Public key of the builder which can be used to verify that the related findings are valid and unchanged. If `key_type` is empty, this defaults to PEM encoded public keys. This field may be empty if `key_id` references an external key. For Cloud Container Builder based signatures, this is a PEM encoded public key. To verify the Cloud Container Builder signature, place the contents of this field into a file (public.pem). The signature field is base64-decoded into its binary representation in signature.bin, and the provenance bytes from `BuildDetails` are base64-decoded into a binary representation in signed.bin. OpenSSL can then verify the signature: `openssl sha256 -verify public.pem -signature signature.bin signed.bin`
string public_key = 1;com.google.protobuf.ByteString getSignature()
Signature of the related `BuildProvenance`. In JSON, this is base-64 encoded.
bytes signature = 2;String getKeyId()
An ID for the key used to sign. This could be either an Id for the key stored in `public_key` (such as the Id or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
string key_id = 3;com.google.protobuf.ByteString getKeyIdBytes()
An ID for the key used to sign. This could be either an Id for the key stored in `public_key` (such as the Id or fingerprint for a PGP key, or the CN for a cert), or a reference to an external key (such as a reference to a key in Cloud Key Management Service).
string key_id = 3;int getKeyTypeValue()
The type of the key, either stored in `public_key` or referenced in `key_id`
.grafeas.v1beta1.build.BuildSignature.KeyType key_type = 4;BuildSignature.KeyType getKeyType()
The type of the key, either stored in `public_key` or referenced in `key_id`
.grafeas.v1beta1.build.BuildSignature.KeyType key_type = 4;Copyright © 2019 Google LLC. All rights reserved.