Skip to content

Commit 2c8e5a5

Browse files
jkujku
committed
test: Add trust config for signing with staging rekor v2
This is current staging trust root and signing config, with just the rekor v2 instance added to signing config $ TRUSTCONFIG=test/assets/trust_config/staging-but-sign-with-rekor-v2.json $ sigstore --trust-config $TRUSTCONFIG sign README.md Signed-off-by: Jussi Kukkonen <[email protected]>
1 parent 179b53c commit 2c8e5a5

File tree

1 file changed

+183
-0
lines changed

1 file changed

+183
-0
lines changed

test/assets/trust_config/staging-but-sign-with-rekor-v2.json

Lines changed: 183 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,183 @@
1+
{
2+
"mediaType": "application/vnd.dev.sigstore.clienttrustconfig.v0.1+json",
3+
"trustedRoot": {
4+
"mediaType": "application/vnd.dev.sigstore.trustedroot+json;version=0.1",
5+
"tlogs": [
6+
{
7+
"baseUrl": "https://rekor.sigstage.dev",
8+
"hashAlgorithm": "SHA2_256",
9+
"publicKey": {
10+
"rawBytes": "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEDODRU688UYGuy54mNUlaEBiQdTE9nYLr0lg6RXowI/QV/RE1azBn4Eg5/2uTOMbhB1/gfcHzijzFi9Tk+g1Prg==",
11+
"keyDetails": "PKIX_ECDSA_P256_SHA_256",
12+
"validFor": {
13+
"start": "2021-01-12T11:53:27Z"
14+
}
15+
},
16+
"logId": {
17+
"keyId": "0y8wo8MtY5wrdiIFohx7sHeI5oKDpK5vQhGHI6G+pJY="
18+
}
19+
},
20+
{
21+
"baseUrl": "https://log2025-alpha1.rekor.sigstage.dev",
22+
"hashAlgorithm": "SHA2_256",
23+
"publicKey": {
24+
"rawBytes": "MCowBQYDK2VwAyEAPn+AREHoBaZ7wgS1zBqpxmLSGnyhxXj4lFxSdWVB8o8=",
25+
"keyDetails": "PKIX_ED25519",
26+
"validFor": {
27+
"start": "2025-04-16T00:00:00Z"
28+
}
29+
},
30+
"logId": {
31+
"keyId": "RycrnT/11WQ15JtgBXeYVLlFYMtbAka7+JnxUQaOX5E="
32+
}
33+
}
34+
],
35+
"certificateAuthorities": [
36+
{
37+
"subject": {
38+
"organization": "sigstore.dev",
39+
"commonName": "sigstore"
40+
},
41+
"uri": "https://fulcio.sigstage.dev",
42+
"certChain": {
43+
"certificates": [
44+
{
45+
"rawBytes": "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"
46+
},
47+
{
48+
"rawBytes": "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"
49+
}
50+
]
51+
},
52+
"validFor": {
53+
"start": "2022-04-14T21:38:40Z"
54+
}
55+
}
56+
],
57+
"ctlogs": [
58+
{
59+
"baseUrl": "https://ctfe.sigstage.dev/test",
60+
"hashAlgorithm": "SHA2_256",
61+
"publicKey": {
62+
"rawBytes": "MIICCgKCAgEA27A2MPQXm0I0v7/Ly5BIauDjRZF5Jor9vU+QheoE2UIIsZHcyYq3slHzSSHy2lLj1ZD2d91CtJ492ZXqnBmsr4TwZ9jQ05tW2mGIRI8u2DqN8LpuNYZGz/f9SZrjhQQmUttqWmtu3UoLfKz6NbNXUnoo+NhZFcFRLXJ8VporVhuiAmL7zqT53cXR3yQfFPCUDeGnRksnlhVIAJc3AHZZSHQJ8DEXMhh35TVv2nYhTI3rID7GwjXXw4ocz7RGDD37ky6p39Tl5NB71gT1eSqhZhGHEYHIPXraEBd5+3w9qIuLWlp5Ej/K6Mu4ELioXKCUimCbwy+Cs8UhHFlqcyg4AysOHJwIadXIa8LsY51jnVSGrGOEBZevopmQPNPtyfFY3dmXSS+6Z3RD2Gd6oDnNGJzpSyEk410Ag5uvNDfYzJLCWX9tU8lIxNwdFYmIwpd89HijyRyoGnoJ3entd63cvKfuuix5r+GHyKp1Xm1L5j5AWM6P+z0xigwkiXnt+adexAl1J9wdDxv/pUFEESRF4DG8DFGVtbdH6aR1A5/vD4krO4tC1QYUSeyL5Mvsw8WRqIFHcXtgybtxylljvNcGMV1KXQC8UFDmpGZVDSHx6v3e/BHMrZ7gjoCCfVMZ/cFcQi0W2AIHPYEMH/C95J2r4XbHMRdYXpovpOoT5Ca78gsCAwEAAQ==",
63+
"keyDetails": "PKCS1_RSA_PKCS1V5",
64+
"validFor": {
65+
"start": "2021-03-14T00:00:00Z",
66+
"end": "2022-07-31T00:00:00Z"
67+
}
68+
},
69+
"logId": {
70+
"keyId": "G3wUKk6ZK6ffHh/FdCRUE2wVekyzHEEIpSG4savnv0w="
71+
}
72+
},
73+
{
74+
"baseUrl": "https://ctfe.sigstage.dev/2022",
75+
"hashAlgorithm": "SHA2_256",
76+
"publicKey": {
77+
"rawBytes": "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEh99xuRi6slBFd8VUJoK/rLigy4bYeSYWO/fE6Br7r0D8NpMI94+A63LR/WvLxpUUGBpY8IJA3iU2telag5CRpA==",
78+
"keyDetails": "PKIX_ECDSA_P256_SHA_256",
79+
"validFor": {
80+
"start": "2022-07-01T00:00:00Z",
81+
"end": "2022-07-31T00:00:00Z"
82+
}
83+
},
84+
"logId": {
85+
"keyId": "++JKOMQt7SJ3ynUHnCfnDhcKP8/58J4TueMqXuk3HmA="
86+
}
87+
},
88+
{
89+
"baseUrl": "https://ctfe.sigstage.dev/2022-2",
90+
"hashAlgorithm": "SHA2_256",
91+
"publicKey": {
92+
"rawBytes": "MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE8gEDKNme8AnXuPBgHjrtXdS6miHqc24CRblNEOFpiJRngeq8Ko73Y+K18yRYVf1DXD4AVLwvKyzdNdl5n0jUSQ==",
93+
"keyDetails": "PKIX_ECDSA_P256_SHA_256",
94+
"validFor": {
95+
"start": "2022-07-01T00:00:00Z"
96+
}
97+
},
98+
"logId": {
99+
"keyId": "KzC83GiIyeLh2CYpXnQfSDkxlgLynDPLXkNA/rKshno="
100+
}
101+
}
102+
],
103+
"timestampAuthorities": [
104+
{
105+
"subject": {
106+
"organization": "sigstore.dev",
107+
"commonName": "sigstore-tsa-selfsigned"
108+
},
109+
"uri": "https://timestamp.sigstage.dev/api/v1/timestamp",
110+
"certChain": {
111+
"certificates": [
112+
{
113+
"rawBytes": "MIICDzCCAZagAwIBAgIUCjWhBmHV4kFzxomWp/J98n4DfKcwCgYIKoZIzj0EAwMwOTEVMBMGA1UEChMMc2lnc3RvcmUuZGV2MSAwHgYDVQQDExdzaWdzdG9yZS10c2Etc2VsZnNpZ25lZDAeFw0yNTAzMjgwOTE0MDZaFw0zNTAzMjYwODE0MDZaMC4xFTATBgNVBAoTDHNpZ3N0b3JlLmRldjEVMBMGA1UEAxMMc2lnc3RvcmUtdHNhMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEx1v5F3HpD9egHuknpBFlRz7QBRDJu4aeVzt9zJLRY0lvmx1lF7WBM2c9AN8ZGPQsmDqHlJN2R/7+RxLkvlLzkc19IOx38t7mGGEcB7agUDdCF/Ky3RTLSK0Xo/0AgHQdo2owaDAOBgNVHQ8BAf8EBAMCB4AwHQYDVR0OBBYEFKj8ZPYo3i7mO3NPVIxSxOGc3VOlMB8GA1UdIwQYMBaAFDsgRlletTJNRzDObmPuc3RH8gR9MBYGA1UdJQEB/wQMMAoGCCsGAQUFBwMIMAoGCCqGSM49BAMDA2cAMGQCMESvVS6GGtF33+J19TfwENWJXjRv4i0/HQFwLUSkX6TfV7g0nG8VnqNHJLvEpAtOjQIwUD3uywTXorQP1DgbV09rF9Yen+CEqs/iEpieJWPst280SSOZ5Na+dyPVk9/8SFk6"
114+
},
115+
{
116+
"rawBytes": "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"
117+
}
118+
]
119+
},
120+
"validFor": {
121+
"start": "2025-04-09T00:00:00Z"
122+
}
123+
}
124+
]
125+
},
126+
"signing_config": {
127+
"mediaType": "application/vnd.dev.sigstore.signingconfig.v0.2+json",
128+
"caUrls": [
129+
{
130+
"url": "https://fulcio.sigstage.dev",
131+
"majorApiVersion": 1,
132+
"validFor": {
133+
"start": "2022-04-14T21:38:40Z"
134+
},
135+
"operator": "sigstore.dev"
136+
}
137+
],
138+
"oidcUrls": [
139+
{
140+
"url": "https://oauth2.sigstage.dev/auth",
141+
"majorApiVersion": 1,
142+
"validFor": {
143+
"start": "2025-04-16T00:00:00Z"
144+
},
145+
"operator": "sigstore.dev"
146+
}
147+
],
148+
"rekorTlogUrls": [
149+
{
150+
"url": "https://log2025-alpha1.rekor.sigstage.dev",
151+
"majorApiVersion": 2,
152+
"validFor": {
153+
"start": "2025-06-09T00:00:00Z"
154+
},
155+
"operator": "sigstore.dev"
156+
},
157+
{
158+
"url": "https://rekor.sigstage.dev",
159+
"majorApiVersion": 1,
160+
"validFor": {
161+
"start": "2021-01-12T11:53:27Z"
162+
},
163+
"operator": "sigstore.dev"
164+
}
165+
],
166+
"tsaUrls": [
167+
{
168+
"url": "https://timestamp.sigstage.dev/api/v1/timestamp",
169+
"majorApiVersion": 1,
170+
"validFor": {
171+
"start": "2025-04-09T00:00:00Z"
172+
},
173+
"operator": "sigstore.dev"
174+
}
175+
],
176+
"rekorTlogConfig": {
177+
"selector": "ANY"
178+
},
179+
"tsaConfig": {
180+
"selector": "ANY"
181+
}
182+
}
183+
}

0 commit comments

Comments
 (0)