mirror of
https://github.com/containers/podman.git
synced 2025-08-06 03:19:52 +08:00
--authfile command line argument for image sign command.
Adds the --authfile command line argument to allow users to use alternative authfile paths when signing images. Replaces: https://github.com/containers/podman/pull/10975 Fixes: https://github.com/containers/podman/issues/10866 Signed-off-by: José Guilherme Vanz <jvanz@jvanz.com> Signed-off-by: Daniel J Walsh <dwalsh@redhat.com>
This commit is contained in:

committed by
Daniel J Walsh

parent
d6d89fa79f
commit
6762d5e238
@ -23,6 +23,13 @@ Print usage statement.
|
||||
|
||||
Sign all the manifests of the multi-architecture image (default false).
|
||||
|
||||
#### **--authfile**=*path*
|
||||
|
||||
Path of the authentication file. Default is ${XDG\_RUNTIME\_DIR}/containers/auth.json
|
||||
|
||||
Note: You can also override the default path of the authentication file by setting the REGISTRY\_AUTH\_FILE
|
||||
environment variable. `export REGISTRY_AUTH_FILE=path`
|
||||
|
||||
#### **--cert-dir**=*path*
|
||||
|
||||
Use certificates at *path* (\*.crt, \*.cert, \*.key) to connect to the registry.
|
||||
@ -41,6 +48,8 @@ Sign the busybox image with the identity of foo@bar.com with a user's keyring an
|
||||
|
||||
sudo podman image sign --sign-by foo@bar.com --directory /tmp/signatures docker://privateregistry.example.com/foobar
|
||||
|
||||
sudo podman image sign --authfile=/tmp/foobar.json --sign-by foo@bar.com --directory /tmp/signatures docker://privateregistry.example.com/foobar
|
||||
|
||||
## RELATED CONFIGURATION
|
||||
|
||||
The write (and read) location for signatures is defined in YAML-based
|
||||
|
Reference in New Issue
Block a user