{
"id": "tech.lenooby09.didgit.signatureProof",
"defs": {
"main": {
"key": "any",
"type": "record",
"record": {
"type": "object",
"required": [
"objectId",
"objectType",
"signatureType",
"signature",
"signedAt",
"signer"
],
"properties": {
"signer": {
"type": "string",
"maxLength": 128,
"description": "The DID of the signer."
},
"objectId": {
"type": "string",
"maxLength": 64,
"description": "The hex SHA-256 object ID being proven."
},
"signedAt": {
"type": "integer",
"description": "Unix timestamp (seconds) when the proof was created."
},
"signature": {
"type": "string",
"maxLength": 2048,
"description": "The base64url-encoded signature or JWT token."
},
"objectType": {
"type": "string",
"maxLength": 16,
"description": "The type of object.",
"knownValues": [
"blob",
"tree",
"commit",
"tag"
]
},
"pdsEndpoint": {
"type": "string",
"maxLength": 256,
"description": "The PDS endpoint that issued this proof (for service auth proofs)."
},
"signatureType": {
"type": "string",
"maxLength": 64,
"description": "The signature algorithm or token type (e.g., 'atproto-service-auth', 'jws', 'raw-ed25519', 'raw-ecdsa-secp256k1')."
}
}
},
"description": "A cryptographic proof that a did-git object was signed by a specific DID. This provides key-rotation-independent verification by anchoring the proof to a PDS or signing event."
}
},
"$type": "com.atproto.lexicon.schema",
"lexicon": 1
}