Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for extracting X.509 cert chain from manifest #139

Open
emensch opened this issue Feb 28, 2024 · 1 comment
Open

Add support for extracting X.509 cert chain from manifest #139

emensch opened this issue Feb 28, 2024 · 1 comment
Labels
enhancement New feature or request
Milestone
[email protected]

Comments

@emensch
Copy link
Collaborator

emensch commented Feb 28, 2024

As it stands, there is no way to inspect a manifest's certificate chain with the JavaScript SDK. The underlying rust library has a ManifestStore::dump_cert_chain method that exposes this functionality, it just needs to be lined in through the WebAssembly/JavaScript layer.
@emensch emensch added the enhancement New feature or request label Feb 28, 2024
@dkozma dkozma added this to the [email protected] milestone Feb 29, 2024
@craigjohnwright
Copy link

craigjohnwright commented Apr 3, 2024
edited
Loading

Hello lovely people 👋

The BBC are currently prototyping a version of the web validator that also verifies that claims were signed by a pre-approved list of signers (to represent indirect trust by the BBC). For that we also need access to the certificate chain via WASM/c2pa-js. I think this will already be covered by this work but to make it more explicit: In addition to dump_cert_chain; could you also plumb through cert_chain and cert_chain_from_bytes?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
[email protected]
Development

No branches or pull requests
3 participants
@emensch @dkozma @craigjohnwright