Resource: Attestor
An attestor that attests to container image artifacts. An existing attestor cannot be modified except where indicated.
| JSON representation |
|---|
{ "name": string, "description": string, "updateTime": string, "etag": string, // Union field |
| Fields | |
|---|---|
name |
Required. The resource name, in the format: |
description |
Optional. A descriptive comment. This field may be updated. The field may be displayed in chooser dialogs. |
updateTime |
Output only. Time when the attestor was last updated. A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: |
etag |
Optional. A checksum, returned by the server, that can be sent on update requests to ensure the attestor has an up-to-date value before attempting to update it. See https://google.aip.dev/154. |
Union field attestor_type. Required. Identifies an attestor that attests to a container image artifact. This determines how an attestation will be stored, and how it will be used during policy enforcement. Updates may not change the attestor type, but individual attestor fields may be updated. attestor_type can be only one of the following: |
|
userOwnedDrydockNote |
A Drydock ATTESTATION_AUTHORITY Note, created by the user. |
Methods |
|
|---|---|
|
Creates an attestor, and returns a copy of the new attestor. |
|
Deletes an attestor. |
|
Gets an attestor. |
|
Gets the access control policy for a resource. |
|
Lists attestors. |
|
Sets the access control policy on the specified resource. |
|
Returns permissions that a caller has on the specified resource. |
|
Updates an attestor. |
|
Returns whether the given Attestation for the given image URI was signed by the given Attestor |