opensource/grafana
1
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-07-30 05:42:31 +08:00
Code Issues Packages Projects Releases Wiki Activity

Docs: Update plugin-signature-verification.md (#26030)

Browse Source 
minor edit
This commit is contained in:
Diana Payton
2020-07-06 13:08:32 -07:00
committed by GitHub
parent 3a57ba20cf
commit d72c25500a
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docs/sources/plugins/plugin-signature-verification.md
View File

@ -9,7 +9,7 @@ Plugin signature verification (signing) is a security measure to make sure plugi
## How it works ## How it works
For Grafana to be able to verify the digital signature of a plugin, the plugin must include a signed manifest file, _MANIFEST.txt_. The signed manifest file contains two sections: For Grafana to verify the digital signature of a plugin, the plugin must include a signed manifest file, _MANIFEST.txt_. The signed manifest file contains two sections:
- **Signed message -** The signed message contains plugin metadata and plugin files with their respective checksums (SHA256). - **Signed message -** The signed message contains plugin metadata and plugin files with their respective checksums (SHA256).
- **Digital signature -** The digital signature is created by encrypting the signed message using a private key. Grafana has a public key built-in that can be used to verify that the digital signature have been encrypted using expected private key. - **Digital signature -** The digital signature is created by encrypting the signed message using a private key. Grafana has a public key built-in that can be used to verify that the digital signature have been encrypted using expected private key.