oci.Artifacts.ContainerImageSignature
This resource provides the Container Image Signature resource in Oracle Cloud Infrastructure Artifacts service.
Upload a signature to an image.
Example Usage
using System.Collections.Generic;
using Pulumi;
using Oci = Pulumi.Oci;
return await Deployment.RunAsync(() =>
{
var testContainerImageSignature = new Oci.Artifacts.ContainerImageSignature("testContainerImageSignature", new()
{
CompartmentId = @var.Compartment_id,
ImageId = oci_core_image.Test_image.Id,
KmsKeyId = oci_kms_key.Test_key.Id,
KmsKeyVersionId = oci_kms_key_version.Test_key_version.Id,
Message = @var.Container_image_signature_message,
Signature = @var.Container_image_signature_signature,
SigningAlgorithm = @var.Container_image_signature_signing_algorithm,
});
});
package main
import (
"github.com/pulumi/pulumi-oci/sdk/go/oci/Artifacts"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := Artifacts.NewContainerImageSignature(ctx, "testContainerImageSignature", &Artifacts.ContainerImageSignatureArgs{
CompartmentId: pulumi.Any(_var.Compartment_id),
ImageId: pulumi.Any(oci_core_image.Test_image.Id),
KmsKeyId: pulumi.Any(oci_kms_key.Test_key.Id),
KmsKeyVersionId: pulumi.Any(oci_kms_key_version.Test_key_version.Id),
Message: pulumi.Any(_var.Container_image_signature_message),
Signature: pulumi.Any(_var.Container_image_signature_signature),
SigningAlgorithm: pulumi.Any(_var.Container_image_signature_signing_algorithm),
})
if err != nil {
return err
}
return nil
})
}
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.Artifacts.ContainerImageSignature;
import com.pulumi.oci.Artifacts.ContainerImageSignatureArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
var testContainerImageSignature = new ContainerImageSignature("testContainerImageSignature", ContainerImageSignatureArgs.builder()
.compartmentId(var_.compartment_id())
.imageId(oci_core_image.test_image().id())
.kmsKeyId(oci_kms_key.test_key().id())
.kmsKeyVersionId(oci_kms_key_version.test_key_version().id())
.message(var_.container_image_signature_message())
.signature(var_.container_image_signature_signature())
.signingAlgorithm(var_.container_image_signature_signing_algorithm())
.build());
}
}
import pulumi
import pulumi_oci as oci
test_container_image_signature = oci.artifacts.ContainerImageSignature("testContainerImageSignature",
compartment_id=var["compartment_id"],
image_id=oci_core_image["test_image"]["id"],
kms_key_id=oci_kms_key["test_key"]["id"],
kms_key_version_id=oci_kms_key_version["test_key_version"]["id"],
message=var["container_image_signature_message"],
signature=var["container_image_signature_signature"],
signing_algorithm=var["container_image_signature_signing_algorithm"])
import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";
const testContainerImageSignature = new oci.artifacts.ContainerImageSignature("testContainerImageSignature", {
compartmentId: _var.compartment_id,
imageId: oci_core_image.test_image.id,
kmsKeyId: oci_kms_key.test_key.id,
kmsKeyVersionId: oci_kms_key_version.test_key_version.id,
message: _var.container_image_signature_message,
signature: _var.container_image_signature_signature,
signingAlgorithm: _var.container_image_signature_signing_algorithm,
});
resources:
testContainerImageSignature:
type: oci:Artifacts:ContainerImageSignature
properties:
#Required
compartmentId: ${var.compartment_id}
imageId: ${oci_core_image.test_image.id}
kmsKeyId: ${oci_kms_key.test_key.id}
kmsKeyVersionId: ${oci_kms_key_version.test_key_version.id}
message: ${var.container_image_signature_message}
signature: ${var.container_image_signature_signature}
signingAlgorithm: ${var.container_image_signature_signing_algorithm}
Create ContainerImageSignature Resource
new ContainerImageSignature(name: string, args: ContainerImageSignatureArgs, opts?: CustomResourceOptions);@overload
def ContainerImageSignature(resource_name: str,
opts: Optional[ResourceOptions] = None,
compartment_id: Optional[str] = None,
image_id: Optional[str] = None,
kms_key_id: Optional[str] = None,
kms_key_version_id: Optional[str] = None,
message: Optional[str] = None,
signature: Optional[str] = None,
signing_algorithm: Optional[str] = None)
@overload
def ContainerImageSignature(resource_name: str,
args: ContainerImageSignatureArgs,
opts: Optional[ResourceOptions] = None)func NewContainerImageSignature(ctx *Context, name string, args ContainerImageSignatureArgs, opts ...ResourceOption) (*ContainerImageSignature, error)public ContainerImageSignature(string name, ContainerImageSignatureArgs args, CustomResourceOptions? opts = null)
public ContainerImageSignature(String name, ContainerImageSignatureArgs args)
public ContainerImageSignature(String name, ContainerImageSignatureArgs args, CustomResourceOptions options)
type: oci:Artifacts:ContainerImageSignature
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ContainerImageSignatureArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- resource_name str
- The unique name of the resource.
- args ContainerImageSignatureArgs
- The arguments to resource properties.
- opts ResourceOptions
- Bag of options to control resource's behavior.
- ctx Context
- Context object for the current deployment.
- name string
- The unique name of the resource.
- args ContainerImageSignatureArgs
- The arguments to resource properties.
- opts ResourceOption
- Bag of options to control resource's behavior.
- name string
- The unique name of the resource.
- args ContainerImageSignatureArgs
- The arguments to resource properties.
- opts CustomResourceOptions
- Bag of options to control resource's behavior.
- name String
- The unique name of the resource.
- args ContainerImageSignatureArgs
- The arguments to resource properties.
- options CustomResourceOptions
- Bag of options to control resource's behavior.
ContainerImageSignature Resource Properties
To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.
Inputs
The ContainerImageSignature resource accepts the following input properties:
- Compartment
Id string The OCID of the compartment in which the container repository exists.
- Image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- Kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- Kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- Message string
The base64 encoded signature payload that was signed.
- Signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- Signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- Compartment
Id string The OCID of the compartment in which the container repository exists.
- Image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- Kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- Kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- Message string
The base64 encoded signature payload that was signed.
- Signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- Signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- compartment
Id String The OCID of the compartment in which the container repository exists.
- image
Id String The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key StringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key StringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message String
The base64 encoded signature payload that was signed.
- signature String
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm String The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- compartment
Id string The OCID of the compartment in which the container repository exists.
- image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message string
The base64 encoded signature payload that was signed.
- signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- compartment_
id str The OCID of the compartment in which the container repository exists.
- image_
id str The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms_
key_ strid The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms_
key_ strversion_ id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message str
The base64 encoded signature payload that was signed.
- signature str
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing_
algorithm str The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- compartment
Id String The OCID of the compartment in which the container repository exists.
- image
Id String The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key StringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key StringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message String
The base64 encoded signature payload that was signed.
- signature String
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm String The algorithm to be used for signing. These are the only supported signing algorithms for container images.
Outputs
All input properties are implicitly available as output properties. Additionally, the ContainerImageSignature resource produces the following output properties:
- Created
By string The id of the user or principal that created the resource.
- Display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- Id string
The provider-assigned unique ID for this managed resource.
- Time
Created string An RFC 3339 timestamp indicating when the image was created.
- Created
By string The id of the user or principal that created the resource.
- Display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- Id string
The provider-assigned unique ID for this managed resource.
- Time
Created string An RFC 3339 timestamp indicating when the image was created.
- created
By String The id of the user or principal that created the resource.
- display
Name String The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- id String
The provider-assigned unique ID for this managed resource.
- time
Created String An RFC 3339 timestamp indicating when the image was created.
- created
By string The id of the user or principal that created the resource.
- display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- id string
The provider-assigned unique ID for this managed resource.
- time
Created string An RFC 3339 timestamp indicating when the image was created.
- created_
by str The id of the user or principal that created the resource.
- display_
name str The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- id str
The provider-assigned unique ID for this managed resource.
- time_
created str An RFC 3339 timestamp indicating when the image was created.
- created
By String The id of the user or principal that created the resource.
- display
Name String The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- id String
The provider-assigned unique ID for this managed resource.
- time
Created String An RFC 3339 timestamp indicating when the image was created.
Look up Existing ContainerImageSignature Resource
Get an existing ContainerImageSignature resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.
public static get(name: string, id: Input<ID>, state?: ContainerImageSignatureState, opts?: CustomResourceOptions): ContainerImageSignature@staticmethod
def get(resource_name: str,
id: str,
opts: Optional[ResourceOptions] = None,
compartment_id: Optional[str] = None,
created_by: Optional[str] = None,
display_name: Optional[str] = None,
image_id: Optional[str] = None,
kms_key_id: Optional[str] = None,
kms_key_version_id: Optional[str] = None,
message: Optional[str] = None,
signature: Optional[str] = None,
signing_algorithm: Optional[str] = None,
time_created: Optional[str] = None) -> ContainerImageSignaturefunc GetContainerImageSignature(ctx *Context, name string, id IDInput, state *ContainerImageSignatureState, opts ...ResourceOption) (*ContainerImageSignature, error)public static ContainerImageSignature Get(string name, Input<string> id, ContainerImageSignatureState? state, CustomResourceOptions? opts = null)public static ContainerImageSignature get(String name, Output<String> id, ContainerImageSignatureState state, CustomResourceOptions options)Resource lookup is not supported in YAML- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- resource_name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- name
- The unique name of the resulting resource.
- id
- The unique provider ID of the resource to lookup.
- state
- Any extra arguments used during the lookup.
- opts
- A bag of options that control this resource's behavior.
- Compartment
Id string The OCID of the compartment in which the container repository exists.
- Created
By string The id of the user or principal that created the resource.
- Display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- Image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- Kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- Kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- Message string
The base64 encoded signature payload that was signed.
- Signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- Signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- Time
Created string An RFC 3339 timestamp indicating when the image was created.
- Compartment
Id string The OCID of the compartment in which the container repository exists.
- Created
By string The id of the user or principal that created the resource.
- Display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- Image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- Kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- Kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- Message string
The base64 encoded signature payload that was signed.
- Signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- Signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- Time
Created string An RFC 3339 timestamp indicating when the image was created.
- compartment
Id String The OCID of the compartment in which the container repository exists.
- created
By String The id of the user or principal that created the resource.
- display
Name String The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- image
Id String The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key StringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key StringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message String
The base64 encoded signature payload that was signed.
- signature String
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm String The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- time
Created String An RFC 3339 timestamp indicating when the image was created.
- compartment
Id string The OCID of the compartment in which the container repository exists.
- created
By string The id of the user or principal that created the resource.
- display
Name string The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- image
Id string The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key stringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key stringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message string
The base64 encoded signature payload that was signed.
- signature string
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm string The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- time
Created string An RFC 3339 timestamp indicating when the image was created.
- compartment_
id str The OCID of the compartment in which the container repository exists.
- created_
by str The id of the user or principal that created the resource.
- display_
name str The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- image_
id str The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms_
key_ strid The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms_
key_ strversion_ id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message str
The base64 encoded signature payload that was signed.
- signature str
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing_
algorithm str The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- time_
created str An RFC 3339 timestamp indicating when the image was created.
- compartment
Id String The OCID of the compartment in which the container repository exists.
- created
By String The id of the user or principal that created the resource.
- display
Name String The last 10 characters of the kmsKeyId, the last 10 characters of the kmsKeyVersionId, the signingAlgorithm, and the last 10 characters of the signatureId. Example:
wrmz22sixa::qdwyc2ptun::SHA_256_RSA_PKCS_PSS::2vwmobasva- image
Id String The OCID of the container image. Example:
ocid1.containerimage.oc1..exampleuniqueID- kms
Key StringId The OCID of the kmsKeyId used to sign the container image. Example:
ocid1.key.oc1..exampleuniqueID- kms
Key StringVersion Id The OCID of the kmsKeyVersionId used to sign the container image. Example:
ocid1.keyversion.oc1..exampleuniqueID- message String
The base64 encoded signature payload that was signed.
- signature String
The signature of the message field using the kmsKeyId, the kmsKeyVersionId, and the signingAlgorithm.
- signing
Algorithm String The algorithm to be used for signing. These are the only supported signing algorithms for container images.
- time
Created String An RFC 3339 timestamp indicating when the image was created.
Import
ContainerImageSignatures can be imported using the id, e.g.
$ pulumi import oci:Artifacts/containerImageSignature:ContainerImageSignature test_container_image_signature "container/imageSignatures/{imageSignatureId}"
Package Details
- Repository
- oci pulumi/pulumi-oci
- License
- Apache-2.0
- Notes
This Pulumi package is based on the
ociTerraform Provider.