Notary is a tool for publishing and managing trusted collections of content. Publishers can digitally sign collections and consumers can verify integrity and origin of content. This ability is built on a straightforward key management and signing interface to create signed collections and configure trusted publishers.
Questions tagged [notary]
41 questions
1
vote
4 answers
docker push with local notary server returns error: x509: certificate signed by unknown authority
I have been working at setting up a docker notary on a Centos 8 machine. I followed the README.md for the notary project which tells me to use the testing certificate the project
comes with by moving it to the .notary folder in my home directory. My…
Rijo Simon
- 777
- 3
- 15
- 35
1
vote
0 answers
Docker Content Trust Runtime enforcement: how to specify a separate content trust server url (notary)
I am trying to setup runtime enforcement with Docker Content Trust, as specified here: https://docs.docker.com/engine/security/trust/content_trust/#runtime-enforcement-with-docker-content-trust.
{
"content-trust": {
"mode": "enforced"
…
nsx
- 21
- 2
1
vote
1 answer
Use a modified notary client for docker trust command
I am trying to set up docker so that it works with a modified version of notary, that pulls the private keys from my HSM.
For this I am using this fork from notary:
https://github.com/gemalto/notary
The notary command is working, I can sign files…
Edin Citaku
- 23
- 4
1
vote
1 answer
Artifactory default notary server
I am looking for artifactory default notary server . Dockerhub default notary server is notary.docker.io which is hosted on cloud. Does artifactory also supports any cloud notary server?
Divya Vyas
- 323
- 1
- 4
- 16
1
vote
1 answer
Docker trust: how to sign image without pushing it to repository
We run private docker registry, and I am trying to use notary to add image signing. I have notary set up, and Docker client can sign images as it pushes to the registry.
My problem is that we do not push to the same registry name we are pulling…
Sergei Genchev
- 35
- 1
- 5
0
votes
1 answer
Docker notary client for multi-platform image publishing succeeds but tag is not trusted
I have been following the steps in the action script here closely (https://github.com/sudo-bot/action-docker-sign/blob/main/action.yml) to trust and sign a multi-platform image. The only modification required was for the extraction of the SHA256…
J.R.
- 1,880
- 8
- 16
0
votes
1 answer
Corda Network-Map is up and running, but Notary is not in whitelist
I have a Corda Infrastructure with some nodes and a (not validating) notary. They're all using a Network Map for the compatibility zone, and all the corda nodes, including the notary, download the same network-parameters file.
When executing a flow,…
Andrean
- 313
- 1
- 4
- 13
0
votes
1 answer
how to relate docker trust root key ID to actual root key file
Given that the Docker Content Trust is enabled, I can see the Root Key information when I inspect a repo as below.
[root@lab admin]# docker trust inspect registry.XXXXXX.com/project/nginx --pretty
Signatures for…
yzftnt
- 83
- 1
- 6
0
votes
2 answers
How can I be sure that I am pulling a trusted image from docker?
We are using notary service along with third party provider aujas for signing the docker images.
I have a build machine from where we run the scripts to sign the images. So far so good.
When my customer pulls the image that we have signed, how can…
srinu259
- 309
- 4
- 14
0
votes
1 answer
Check status of a flow hash in corda notary
How do I query the status of a flowID (or its hash) in the notary vault?(consumed/not-consumed).
Thank you in advance.
JSilverII
- 1
- 1
0
votes
2 answers
Error NOTARY_HOSTED_SIGNER_ID_REQUIRED when trying to send an eNotary envelope
Let my envelope be as below :
{
"allowReassign": "false",
"documents": [
{
"documentBase64": "JVBE",
"documentId": "1",
"fileExtension": "PDF",
"name": "DocumentToNotarize"
}
…
Frederic
- 2,015
- 4
- 20
- 37
0
votes
1 answer
Notary cannot install Corda service
I was trying to configure Business network Operator services in my solution by adding the toolkit provided by r3 as corrdapp dependancy in my application.I am able to build the application but when I runnodes i am getting error for Notary
UPDATE
I…
Sil
- 25
- 5
0
votes
1 answer
Do BNO(Business Network Operator) have a Notary?
According to the Corda docs for eg: While on-boarding a node to Business network,if we want to approve a pending membership that has passed through the review and approval checks, BNO would approve it.So the procedure is,BNO does KYC checks,creates…
Sil
- 25
- 5
0
votes
1 answer
Access the Contract State within the Notary
I want to trigger a transaction in an External network from the Notary Service Flow just before consuming the Input State. The example is a Custodian service that triggers the notification to the Depository: Custodian on Corda & Depository on Hedera…
JSilverII
- 1
- 1
0
votes
1 answer
How are transactions counted in Corda toward the 10k free limit?
I can't find any documentation on what counts as a transaction and whose count it increases when a notary signs a transaction. Does only the initiating node have its transaction count increased? Or is it all nodes that participated in the flow? Does…
user13816817
- 11
- 1