2017-09-26 14:46:38 -04:00
---
2017-10-09 13:44:52 -04:00
title: "signer add"
description: "The signer add command description and usage"
2017-09-26 14:46:38 -04:00
keywords: "signer, notary, trust"
---
2017-10-09 13:44:52 -04:00
# trust signer add
2017-09-26 14:46:38 -04:00
```markdown
2017-10-25 13:45:10 -04:00
Usage: docker trust signer add [OPTIONS] NAME REPOSITORY [REPOSITORY...]
2017-09-26 14:46:38 -04:00
2017-10-25 13:45:10 -04:00
Add a signer
2017-09-26 14:46:38 -04:00
2017-10-25 13:45:10 -04:00
Options:
--help Print usage
-k, --key list Path to the signer's public key file
2017-09-26 14:46:38 -04:00
```
## Description
2017-10-09 13:44:52 -04:00
`docker trust signer add` adds signers to signed repositories.
2017-09-26 14:46:38 -04:00
## Examples
### Add a signer to a repo
2020-03-15 10:11:43 -04:00
To add a new signer, `alice` , to this repository:
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
No signatures for example/trust-demo
List of signers and their keys:
SIGNER KEYS
bob 5600f5ab76a2
Administrative keys for example/trust-demo:
2020-03-15 10:11:43 -04:00
Repository Key: 642692c14c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4555b3c6ab02f71e
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
2017-10-09 13:44:52 -04:00
Add `alice` with `docker trust signer add` :
2017-09-26 14:46:38 -04:00
```bash
2017-10-09 13:44:52 -04:00
$ docker trust signer add alice example/trust-demo --key alice.crt
2017-09-26 14:46:38 -04:00
Adding signer "alice" to example/trust-demo...
2020-03-15 10:11:43 -04:00
Enter passphrase for repository key with ID 642692c:
Successfully added signer: alice to example/trust-demo
2017-09-26 14:46:38 -04:00
```
2017-10-25 13:45:10 -04:00
`docker trust view` now lists `alice` as a valid signer:
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
No signatures for example/trust-demo
List of signers and their keys:
SIGNER KEYS
alice 05e87edcaecb
bob 5600f5ab76a2
Administrative keys for example/trust-demo:
2020-03-15 10:11:43 -04:00
Repository Key: 642692c14c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4555b3c6ab02f71e
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
## Initialize a new repo and add a signer
2017-10-09 13:44:52 -04:00
When adding a signer on a repo for the first time, `docker trust signer add` sets up a new repo if it doesn't exist.
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
No signatures or cannot access example/trust-demo
```
```bash
2017-10-09 13:44:52 -04:00
$ docker trust signer add alice example/trust-demo --key alice.crt
2017-09-26 14:46:38 -04:00
Initializing signed repository for example/trust-demo...
2020-03-15 10:11:43 -04:00
Enter passphrase for root key with ID 748121c:
Enter passphrase for new repository key with ID 95b9e55:
Repeat passphrase for new repository key with ID 95b9e55:
Successfully initialized "example/trust-demo"
Adding signer "alice" to example/trust-demo...
2017-09-26 14:46:38 -04:00
Successfully added signer: alice to example/trust-demo
```
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
No signatures for example/trust-demo
SIGNED TAG DIGEST SIGNERS
List of signers and their keys:
SIGNER KEYS
alice 6d52b29d940f
Administrative keys for example/trust-demo:
2020-03-15 10:11:43 -04:00
Repository Key: 95b9e5565eac3ef5ec01406801bdfb70feb40c17808d2222427c18046eb63beb
Root Key: 748121c14bd1461f6c58cb3ef39087c8fdc7633bb11a98af844fd9a04e208103
2017-09-26 14:46:38 -04:00
```
## Add a signer to multiple repos
2020-03-15 10:11:43 -04:00
To add a signer, `alice` , to multiple repositories:
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
SIGNED TAG DIGEST SIGNERS
v1 74d4bfa917d55d53c7df3d2ab20a8d926874d61c3da5ef6de15dd2654fc467c4 bob
List of signers and their keys:
SIGNER KEYS
bob 5600f5ab76a2
Administrative keys for example/trust-demo:
2020-03-15 10:11:43 -04:00
Repository Key: ecc457614c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4555b3c6ab02f71e
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo2
2017-09-26 14:46:38 -04:00
SIGNED TAG DIGEST SIGNERS
v1 74d4bfa917d55d53c7df3d2ab20a8d926874d61c3da5ef6de15dd2654fc467c4 bob
List of signers and their keys:
SIGNER KEYS
bob 5600f5ab76a2
Administrative keys for example/trust-demo2:
2020-03-15 10:11:43 -04:00
Repository Key: ece554f14c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4553d2ab20a8d9268
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
2017-10-09 13:44:52 -04:00
Add `alice` to both repositories with a single `docker trust signer add` command:
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust signer add alice example/trust-demo example/trust-demo2 --key alice.crt
2017-09-26 14:46:38 -04:00
Adding signer "alice" to example/trust-demo...
2020-03-15 10:11:43 -04:00
Enter passphrase for repository key with ID 95b9e55:
2017-09-26 14:46:38 -04:00
Successfully added signer: alice to example/trust-demo
Adding signer "alice" to example/trust-demo2...
2020-03-15 10:11:43 -04:00
Enter passphrase for repository key with ID ece554f:
2017-09-26 14:46:38 -04:00
Successfully added signer: alice to example/trust-demo2
```
2017-10-25 13:45:10 -04:00
`docker trust view` now lists `alice` as a valid signer of both `example/trust-demo` and `example/trust-demo2` :
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo
2017-09-26 14:46:38 -04:00
SIGNED TAG DIGEST SIGNERS
v1 74d4bfa917d55d53c7df3d2ab20a8d926874d61c3da5ef6de15dd2654fc467c4 bob
List of signers and their keys:
SIGNER KEYS
alice 05e87edcaecb
bob 5600f5ab76a2
Administrative keys for example/trust-demo:
2020-03-15 10:11:43 -04:00
Repository Key: 95b9e5514c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4555b3c6ab02f71e
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
```bash
2017-10-25 13:45:10 -04:00
$ docker trust view example/trust-demo2
2017-09-26 14:46:38 -04:00
SIGNED TAG DIGEST SIGNERS
v1 74d4bfa917d55d53c7df3d2ab20a8d926874d61c3da5ef6de15dd2654fc467c4 bob
List of signers and their keys:
SIGNER KEYS
alice 05e87edcaecb
bob 5600f5ab76a2
Administrative keys for example/trust-demo2:
2020-03-15 10:11:43 -04:00
Repository Key: ece554f14c9fc399da523a5f4e24fe306a0a6ee1cc79a10e4553d2ab20a8d9268
Root Key: 3cb2228f6561e58f46dbc4cda4fcaff9d5ef22e865a94636f82450d1d2234949
2017-09-26 14:46:38 -04:00
```
2017-10-09 13:44:52 -04:00
`docker trust signer add` adds signers to repositories on a best effort basis, so it will continue to add the signer to subsequent repositories if one attempt fails:
2017-09-26 14:46:38 -04:00
```bash
2017-10-25 13:45:10 -04:00
$ docker trust signer add alice example/unauthorized example/authorized --key alice.crt
2017-09-26 14:46:38 -04:00
Adding signer "alice" to example/unauthorized...
you are not authorized to perform this operation: server returned 401.
Adding signer "alice" to example/authorized...
2020-03-15 10:11:43 -04:00
Enter passphrase for repository key with ID c6772a0:
2017-09-26 14:46:38 -04:00
Successfully added signer: alice to example/authorized
Failed to add signer to: example/unauthorized
```