notation icon indicating copy to clipboard operation
notation copied to clipboard

Published 20 hours ago verified publisher icon notaryproject

Read certificate from windows certificate store

Open jimmychen92 opened this issue 1 year ago • 4 comments

Is your feature request related to a problem?

When integrating Notation CLI with a .NET application in a Windows environment, it is necessary to use a certificate from the Windows certificate store for artifact signing and verification. Since these certificates cannot be read as files, it is necessary to rely on a Windows library, such as the C# library mentioned in this article: https://sirarsalih.com/2018/01/30/fetching-an-installed-certificate-programmatically-from-the-windows-local-machine-store.

Due to this limitation of Windows, it can be difficult to leverage Notation in a Windows environment, particularly when using trust root certificates available in the Windows OS.

What solution do you propose?

In Notation CLI, there should be a way to read a certificate from the Windows certificate store. Currently, Notation only seems to work with certificates that are available in the file system or in a key vault.

What alternatives have you considered?

No other way I've thought would work, but open for suggestions.

Any additional context?

No response

jimmychen92 avatar Jun 24 '23 00:06 jimmychen92