505fe7a885
Some checks failed
Lighthouse CI / Lighthouse Audit (push) Has been cancelled
Lighthouse CI / Axe Accessibility Audit (push) Has been cancelled
Manifest Integrity / Validate Pack Fixtures (push) Has been cancelled
Manifest Integrity / Validate Schema Integrity (push) Has been cancelled
Manifest Integrity / Validate Contract Documents (push) Has been cancelled
Manifest Integrity / Audit SHA256SUMS Files (push) Has been cancelled
Manifest Integrity / Verify Merkle Roots (push) Has been cancelled
api-governance / spectral-lint (push) Has been cancelled
AOC Guard CI / aoc-guard (push) Has been cancelled
AOC Guard CI / aoc-verify (push) Has been cancelled
sm-remote-ci / build-and-test (push) Has been cancelled
Notify Smoke Test / Notification Smoke Test (push) Has been cancelled
oas-ci / oas-validate (push) Has been cancelled
Signals CI & Image / signals-ci (push) Has been cancelled
Signals Reachability Scoring & Events / reachability-smoke (push) Has been cancelled
Signals Reachability Scoring & Events / sign-and-upload (push) Has been cancelled
Concelier Attestation Tests / attestation-tests (push) Has been cancelled
Policy Lint & Smoke / policy-lint (push) Has been cancelled
Notify Smoke Test / Notify Unit Tests (push) Has been cancelled
Notify Smoke Test / Notifier Service Tests (push) Has been cancelled
Docs CI / lint-and-preview (push) Has been cancelled
48 lines
1.1 KiB
C#
48 lines
1.1 KiB
C#
using StellaOps.Replay.Core;
|
|
|
|
namespace StellaOps.Scanner.ProofSpine;
|
|
|
|
/// <summary>
|
|
/// Service for DSSE (Dead Simple Signing Envelope) signing operations.
|
|
/// </summary>
|
|
public interface IDsseSigningService
|
|
{
|
|
/// <summary>
|
|
/// Signs a payload and returns a DSSE envelope.
|
|
/// </summary>
|
|
Task<DsseEnvelope> SignAsync(
|
|
object payload,
|
|
string payloadType,
|
|
ICryptoProfile cryptoProfile,
|
|
CancellationToken cancellationToken = default);
|
|
|
|
/// <summary>
|
|
/// Verifies a DSSE envelope signature.
|
|
/// </summary>
|
|
Task<DsseVerificationOutcome> VerifyAsync(
|
|
DsseEnvelope envelope,
|
|
CancellationToken cancellationToken = default);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Cryptographic profile for signing operations.
|
|
/// </summary>
|
|
public interface ICryptoProfile
|
|
{
|
|
/// <summary>
|
|
/// Key identifier.
|
|
/// </summary>
|
|
string KeyId { get; }
|
|
|
|
/// <summary>
|
|
/// Signing algorithm identifier (e.g., "hs256", "ed25519").
|
|
/// </summary>
|
|
string Algorithm { get; }
|
|
}
|
|
|
|
public sealed record DsseVerificationOutcome(
|
|
bool IsValid,
|
|
bool IsTrusted,
|
|
string? FailureReason);
|
|
|