Skip to main content

Signing Key File

Summary

Signing Key File is the path to a file containing a Signing Key.

The signing key is the private key used to sign a user's attestation JWT, which can be consumed by upstream applications to pass along identifying user session information such as username, id, and groups.

See Signing Key for more information.

How to configure

Config file keysEnvironment variablesTypeUsage
signing_key_fileSIGNING_KEY_FILEstringoptional

Examples

Signing Key File is useful when deploying in environments that provide secret management like Docker Swarm.

For example:

signing_key_file: '/run/secrets/POMERIUM_SIGNING_KEY'
SIGNING_KEY_FILE='/run/secrets/POMERIUM_SIGNING_KEY'