From bfb760e7bb71a32db4568eee76d2e9576ceec995 Mon Sep 17 00:00:00 2001 From: Brent Baude Date: Mon, 19 Sep 2016 14:40:12 -0500 Subject: [PATCH] default.yaml: Define a default yaml for signing. The default.yaml is useful for out of the box experience. It allows the user to begin signing once atomic is install (and they have the proper gpg requirements). Note the .spec file will need to be updated to handle /etc/containers/registries.d/default.yaml. Closes: #633 Approved by: rhatdan --- Makefile | 4 ++++ default.yaml | 26 ++++++++++++++++++++++++++ 2 files changed, 30 insertions(+) create mode 100644 default.yaml diff --git a/Makefile b/Makefile index ebeb715..e01eca3 100644 --- a/Makefile +++ b/Makefile @@ -83,6 +83,10 @@ install-only: install -d $(DESTDIR)/etc/atomic.d + install -d $(DESTDIR)/etc/containers/registries.d + + install -m 644 default.yaml $(DESTDIR)/etc/containers/registries.d + .PHONY: install install: all install-only diff --git a/default.yaml b/default.yaml new file mode 100644 index 0000000..251acc4 --- /dev/null +++ b/default.yaml @@ -0,0 +1,26 @@ +# This is a default registries.d configuration file. You may +# add to this file or create additional files in registries.d/. +# +# sigstore: indicates a location that is read and write +# sigstore-staging: indicates a location that is only for write +# +# sigstore and sigstore-staging take a value of the following: +# sigstore: {schema}://location +# +# For reading signatures, schema may be http, https, or file. +# For writing signatures, schema may only be file. + +# This is the default signature write location for registries. +default-docker: +# sigstore: file:///var/lib/atomic/sigstore + sigstore-staging: file:///var/lib/atomic/sigstore + +# The 'docker' indicator here is the start of the configuration +# for docker registries. +# +# docker: +# +# privateregistry.com: +# sigstore: http://privateregistry.com/sigstore/ +# sigstore-staging: /mnt/nfs/privateregistry/sigstore +