You signed in with another tab or window.Reload to refresh your session.You signed out in another tab or window.Reload to refresh your session.You switched accounts on another tab or window.Reload to refresh your session.Dismiss alert
{{ message }}
This repository was archived by the owner on Nov 1, 2017. It is now read-only.
Copy file name to clipboardExpand all lines: content/v3/git/commits.md
+1-32Lines changed: 1 addition & 32 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -72,7 +72,7 @@ Please see the [blog post](/changes/2016-04-04-git-signing-api-preview) for full
72
72
73
73
To receive signature verification data in commit objects you must provide a custom[media type](/v3/media) in the`Accept` header:
74
74
75
-
application/vnd.github.cryptographer-preview+sha
75
+
application/vnd.github.cryptographer-preview
76
76
77
77
{{/tip}}
78
78
@@ -83,35 +83,4 @@ To receive signature verification data in commit objects you must provide a cust
83
83
<%= headers 200 %>
84
84
<%= json(:signed_git_commit) %>
85
85
86
-
###The`verification` object
87
-
88
-
The response will include a`verification` field whose value is an object describing the result of verifying the commit's signature. The following fields are included in the`verification` object:
89
-
90
-
Name | Type | Description
91
-
-----|------|--------------
92
-
`verified`|`boolean` | Does GitHub consider the signature in this commit to be verified?
93
-
`reason`|`string` | The reason for`verified` value. Possible values and their meanings are enumerated in the table bellow.
94
-
`signature`|`string` | The signature that was extracted from the commit.
95
-
`payload`|`string` | The value that was signed.
96
-
97
-
####The`reason` field
98
-
99
-
The following are possible`reason`s that may be included in the`verification` object:
100
-
101
-
Value | Description
102
-
------|------------
103
-
`expired_key` | The key that made the signature is expired.
104
-
`not_signing_key` | The "signing" flag is not among the usage flags in the GPG key that made the signature.
105
-
`gpgverify_error` | There was an error communicating with the signature-verification service.
106
-
`gpgverify_unavailable` | The signature-verification service is currently unavailable.
107
-
`unsigned` | The object does not include a signature.
108
-
`unkown_signature_type` | A non-PGP signature was found in the commit.
109
-
`no_user` | No user was associated with the`committer` email address in the commit.
110
-
`unverified_email` | The`committer` email address in the commit was associated with a user, but the email address is not verified on her/his account.
111
-
`bad_email` | The`committer` email address in the commit is not included in the identities of the PGP key that made the signature.
112
-
`unknown_key` | The key that made the signature has not been registered with any user's account.
113
-
`malformed_signature` | There was an error parsing the signature.
114
-
`invalid` | The signature could not be cryptographically verified using the key whose key-id was found in the signature.
115
-
`valid` | None of the above errors applied, so the signature is considered to be verified.
Copy file name to clipboardExpand all lines: content/v3/repos/commits.md
+1-32Lines changed: 1 addition & 32 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -98,7 +98,7 @@ Please see the [blog post](/changes/2016-04-04-git-signing-api-preview) for full
98
98
99
99
To receive signature verification data in commit objects you must provide a custom[media type](/v3/media) in the`Accept` header:
100
100
101
-
application/vnd.github.cryptographer-preview+sha
101
+
application/vnd.github.cryptographer-preview
102
102
103
103
{{/tip}}
104
104
@@ -109,35 +109,4 @@ To receive signature verification data in commit objects you must provide a cust
109
109
<%= headers 200 %>
110
110
<%= json(:signed_commit) %>
111
111
112
-
###The`verification` object
113
-
114
-
The response will include a`verification` field whose value is an object describing the result of verifying the commit's signature. The following fields are included in the`verification` object:
115
-
116
-
Name | Type | Description
117
-
-----|------|--------------
118
-
`verified`|`boolean` | Does GitHub consider the signature in this commit to be verified?
119
-
`reason`|`string` | The reason for`verified` value. Possible values and their meanings are enumerated in the table bellow.
120
-
`signature`|`string` | The signature that was extracted from the commit.
121
-
`payload`|`string` | The value that was signed.
122
-
123
-
####The`reason` field
124
-
125
-
The following are possible`reason`s that may be included in the`verification` object:
126
-
127
-
Value | Description
128
-
------|------------
129
-
`expired_key` | The key that made the signature is expired.
130
-
`not_signing_key` | The "signing" flag is not among the usage flags in the GPG key that made the signature.
131
-
`gpgverify_error` | There was an error communicating with the signature-verification service.
132
-
`gpgverify_unavailable` | The signature-verification service is currently unavailable.
133
-
`unsigned` | The object does not include a signature.
134
-
`unkown_signature_type` | A non-PGP signature was found in the commit.
135
-
`no_user` | No user was associated with the`committer` email address in the commit.
136
-
`unverified_email` | The`committer` email address in the commit was associated with a user, but the email address is not verified on her/his account.
137
-
`bad_email` | The`committer` email address in the commit is not included in the identities of the PGP key that made the signature.
138
-
`unknown_key` | The key that made the signature has not been registered with any user's account.
139
-
`malformed_signature` | There was an error parsing the signature.
140
-
`invalid` | The signature could not be cryptographically verified using the key whose key-id was found in the signature.
141
-
`valid` | None of the above errors applied, so the signature is considered to be verified.