From 9000d129f222350acb3efdac41424a4a6a08f140 Mon Sep 17 00:00:00 2001 From: "mergify[bot]" <37929162+mergify[bot]@users.noreply.github.com> Date: Mon, 11 Sep 2023 20:47:17 +0000 Subject: [PATCH] [DOCS] Remove Cosign x-ref to ES book from Docker docs (#11629) (#11631) (cherry picked from commit c0e28dc1508fd8c6ae29283896e074ab445d1ee7) Co-authored-by: James Rodewig Co-authored-by: mergify[bot] <37929162+mergify[bot]@users.noreply.github.com> --- docs/shared-docker.asciidoc | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) diff --git a/docs/shared-docker.asciidoc b/docs/shared-docker.asciidoc index d8bb0528cf7..f783b5ef108 100644 --- a/docs/shared-docker.asciidoc +++ b/docs/shared-docker.asciidoc @@ -39,12 +39,21 @@ docker pull {dockerimage} . Verify the Docker image: + ["source", "sh", subs="attributes"] ------------------------------------------------- +---- wget https://artifacts.elastic.co/cosign.pub -cosign verify --key cosign.pub {dockerimage}:{version} ------------------------------------------------- +cosign verify --key cosign.pub {dockerimage} +---- ++ +The `cosign` command prints the check results and the signature payload in JSON format: + -For details about this step, refer to {ref}/docker.html#docker-verify-signature[Verify the {es} Docker image signature] in the {es} documentation. +[source,sh,subs="attributes"] +---- +Verification for {dockerimage} -- +The following checks were performed on each of these signatures: + - The cosign claims were validated + - Existence of the claims in the transparency log was verified offline + - The signatures were verified against the specified public key +---- endif::[]