Documentation ¶
Index ¶
- Constants
- func AddAnnotation(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, ...) error
- func AddRetry(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, ...) error
- func HandleRetry(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, ...) error
- func MarkFailed(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, ...) error
- func MarkSigned(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, ...) error
- func Reconciled(obj objects.TektonObject) bool
- func RetryAvailable(obj objects.TektonObject) bool
- type ObjectSigner
- type Signer
- type TaskRunVerifier
- type Verifier
Constants ¶
View Source
const ( // ChainsAnnotation is the standard annotation to indicate a TR has been signed. ChainsAnnotation = "chains.tekton.dev/signed" RetryAnnotation = "chains.tekton.dev/retries" ChainsTransparencyAnnotation = "chains.tekton.dev/transparency" MaxRetries = 3 )
View Source
const (
RekorAnnotation = "chains.tekton.dev/transparency-upload"
)
Variables ¶
This section is empty.
Functions ¶
func AddAnnotation ¶ added in v0.4.0
func HandleRetry ¶ added in v0.4.0
func MarkFailed ¶ added in v0.4.0
func MarkSigned ¶
func MarkSigned(ctx context.Context, obj objects.TektonObject, ps versioned.Interface, annotations map[string]string) error
MarkSigned marks a Tekton object as signed.
func Reconciled ¶ added in v0.4.0
func Reconciled(obj objects.TektonObject) bool
Reconciled determines whether a Tekton object has already passed through the reconcile loops, up to 3x
func RetryAvailable ¶ added in v0.4.0
func RetryAvailable(obj objects.TektonObject) bool
Types ¶
type ObjectSigner ¶ added in v0.13.0
type ObjectSigner struct { // Backends: store payload and signature // The keys are different storage option's name. {docdb, gcs, grafeas, oci, tekton} // The values are the actual storage backends that will be used to store and retrieve provenance. Backends map[string]storage.Backend SecretPath string Pipelineclientset versioned.Interface }
func (*ObjectSigner) Sign ¶ added in v0.13.0
func (o *ObjectSigner) Sign(ctx context.Context, tektonObj objects.TektonObject) error
Signs TaskRun and PipelineRun objects, as well as generates attesations for each Follows process of extract payload, sign payload, store payload and signature
type TaskRunVerifier ¶ added in v0.6.0
type TaskRunVerifier struct { KubeClient kubernetes.Interface Pipelineclientset versioned.Interface SecretPath string }
func (*TaskRunVerifier) VerifyTaskRun ¶ added in v0.6.0
Click to show internal directories.
Click to hide internal directories.