blob: 227013f7aa4e482b26898d4157e60023e4567863 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
|
import { CA } from './ca';
import { Provider } from './identity';
import { TLog } from './tlog';
import * as sigstore from './types/sigstore';
import type { KeySelector } from './verify';
interface CAOptions {
fulcioURL?: string;
}
interface TLogOptions {
rekorURL?: string;
}
export interface IdentityProviderOptions {
identityToken?: string;
oidcIssuer?: string;
oidcClientID?: string;
oidcClientSecret?: string;
oidcRedirectURL?: string;
}
export interface TUFOptions {
tufMirrorURL?: string;
tufRootPath?: string;
tufCachePath?: string;
}
export type SignOptions = CAOptions & TLogOptions & IdentityProviderOptions;
export type VerifyOptions = {
ctLogThreshold?: number;
tlogThreshold?: number;
certificateIssuer?: string;
certificateIdentityEmail?: string;
certificateIdentityURI?: string;
certificateOIDs?: Record<string, string>;
keySelector?: KeySelector;
} & TLogOptions & TUFOptions;
export declare const DEFAULT_FULCIO_URL = "https://fulcio.sigstore.dev";
export declare const DEFAULT_REKOR_URL = "https://rekor.sigstore.dev";
export declare function createCAClient(options: {
fulcioURL?: string;
}): CA;
export declare function createTLogClient(options: {
rekorURL?: string;
}): TLog;
export declare function artifactVerificationOptions(options: VerifyOptions): sigstore.RequiredArtifactVerificationOptions;
export declare function identityProviders(options: IdentityProviderOptions): Provider[];
export {};
|