docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fixed table, again.

This commit is contained in:
Anne Henmi 2018-10-17 08:53:05 -06:00
parent e7202bbfc4
commit c9296ab1c9
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
engine/security/trust/content_trust.md
View File

@ -180,7 +180,7 @@ The signature verification feature is configured in the Docker daemon configurat
```
| Stanza | Description |
| ----------------------- |:--------------|
| ----------------------- |---------------|
| trust-pinning:root-keys |A mapping of image globs to root key IDs which should have signed the root metadata of the image trust data. These key IDs are canonical IDs; root keys in DCT are certificates tying the name of the image to the repo metadata, so each ones ID is different per repo. The ID of the private key (the canonical key ID) corresponding to the certificate though is the same no matter what the name of the mage.
If this setting is provided, any image not matching one of these globs will not be trusted at all (with the optional exception of official images - see below)