Skip to content

sajayantony/nv2-demo

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
cmd/docker-nv2
cmd/docker-nv2
 
 
pkg
pkg
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

docker-nv2

Docker CLI plugin to demonstrate Notary v2 integration with Docker CLI, leveraging the notary v2 library.

Build and Install

This plugin requires golang with version >= 1.15.

To build and install, run

go build -o ~/.docker/cli-plugins/docker-nv2 ./cmd/docker-nv2

Instructions

Create Alias

For better demonstration experience, it is suggested to create the following alias in your shell:

alias docker="docker nv2"

or if you are using PowerShell on Windows,

function docker { cmd /c docker nv2 $args }

Example Run

On the producer machine:

docker notary --enabled
docker build -t $image .
docker notary sign --key identity.pem --cert identity.crt $image
docker push $image

On the consumer machine:

docker notary --enabled
docker pull $image

It may fail since the producer machine may use a self-signed certificate, or invalid certificates detected. See configurations for more details.

Configurations

The config file for notary is default at ~/.docker/nv2.json. The intermediate signatures are stored at ~/.docker/nv2/.

The config file looks like

{
    "enabled": true,
    "verificationCerts": [
        "path/to/the/certs/for/verification"
    ]
}

To pull images properly, certification paths are required to be provided at verificationCerts. It is suggested to use absolute paths.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages