custom_bundle_signing

module

v0.0.0-...-547d54e Latest Latest Go to latest Published: Mar 5, 2024 License: Apache-2.0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/open-policy-agent/contrib

Links

Open Source Insights

README ¶

Custom Bundle Signing Example

This example demonstrates how to implement custom bundle signing and verification.

Starting at cmd/opa/main.go, we hook into OPA's RootCommand and inject a PersistentPreRun hook for certain OPA commands. We call bundle.RegisterSigner and bundle.RegisterVerifier for our custom implementations of the bundle.Signer and bundle.Verifier interfaces, respectively.

Our Signer and Verifier implementations demonstrate how to implement the interfaces, without actually performing any real signing or verification. To create a functional Signer and Verifier, you'll want to look at the DefaultSigner and DefaultVerifier implementations in OPA's source.

Use make build and make test to run this example locally.

Directories ¶

Path	Synopsis
cmd
opa
internal
setup

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL