20 lines
1.1 KiB
Markdown
20 lines
1.1 KiB
Markdown
# StellaOps Signer (Relocated)
|
|
|
|
> **Sprint 204 (2026-03-04):** The Signer module source has been consolidated under the Attestor trust domain.
|
|
> Source code is now at `src/Attestor/StellaOps.Signer/`.
|
|
> Architecture documentation is now in the [Attestor architecture dossier](../attestor/architecture.md#trust-domain-model-sprint-204----2026-03-04).
|
|
> Archived standalone docs are in `docs-archived/modules/signer/`.
|
|
|
|
## Runtime Identity (unchanged)
|
|
|
|
- Docker image: `stellaops/signer:dev`
|
|
- API base path: `/api/v1/signer/`
|
|
- DSSE signing endpoint: `POST /api/v1/signer/sign/dsse`
|
|
- Database schemas: `signer`, `key_management` (isolated from Attestor schema by design)
|
|
|
|
## Why the move
|
|
|
|
Signer, Attestor, and Provenance form the trust domain -- the set of services responsible for cryptographic evidence production, transparency logging, and verification. Consolidating source ownership under `src/Attestor/` makes trust-boundary responsibilities explicit while preserving runtime isolation and database schema separation.
|
|
|
|
See the [Trust Domain Model ADR](../attestor/architecture.md#security-boundary-no-merge-decision-adr) for the no-merge rationale.
|