tech.lenooby09.didgit.signatureProof

lexicon.store View official

Documentation

A cryptographic proof that a did-git object was signed by a specific DID. This provides key-rotation-independent verification by anchoring the proof to a PDS or signing event.

main record

A cryptographic proof that a did-git object was signed by a specific DID. This provides key-rotation-independent verification by anchoring the proof to a PDS or signing event.

Record Key any Any valid record key

Properties

objectId string Required

The hex SHA-256 object ID being proven.

maxLength: 64 bytes
objectType string Required

The type of object.

maxLength: 16 bytes
Known values: blob, tree, commit, tag
pdsEndpoint string Optional

The PDS endpoint that issued this proof (for service auth proofs).

maxLength: 256 bytes
signature string Required

The base64url-encoded signature or JWT token.

maxLength: 2048 bytes
signatureType string Required

The signature algorithm or token type (e.g., 'atproto-service-auth', 'jws', 'raw-ed25519', 'raw-ecdsa-secp256k1').

maxLength: 64 bytes
signedAt integer Required

Unix timestamp (seconds) when the proof was created.

signer string Required

The DID of the signer.

maxLength: 128 bytes
View raw schema 
{
  "key": "any",
  "type": "record",
  "record": {
    "type": "object",
    "required": [
      "objectId",
      "objectType",
      "signatureType",
      "signature",
      "signedAt",
      "signer"
    ],
    "properties": {
      "signer": {
        "type": "string",
        "maxLength": 128,
        "description": "The DID of the signer."
      },
      "objectId": {
        "type": "string",
        "maxLength": 64,
        "description": "The hex SHA-256 object ID being proven."
      },
      "signedAt": {
        "type": "integer",
        "description": "Unix timestamp (seconds) when the proof was created."
      },
      "signature": {
        "type": "string",
        "maxLength": 2048,
        "description": "The base64url-encoded signature or JWT token."
      },
      "objectType": {
        "type": "string",
        "maxLength": 16,
        "description": "The type of object.",
        "knownValues": [
          "blob",
          "tree",
          "commit",
          "tag"
        ]
      },
      "pdsEndpoint": {
        "type": "string",
        "maxLength": 256,
        "description": "The PDS endpoint that issued this proof (for service auth proofs)."
      },
      "signatureType": {
        "type": "string",
        "maxLength": 64,
        "description": "The signature algorithm or token type (e.g., 'atproto-service-auth', 'jws', 'raw-ed25519', 'raw-ecdsa-secp256k1')."
      }
    }
  },
  "description": "A cryptographic proof that a did-git object was signed by a specific DID. This provides key-rotation-independent verification by anchoring the proof to a PDS or signing event."
}

Lexicon Garden

@