Merge pull request #10122 from wozniakjan/image_signature/emphasize_s…

…ig_deletion emphasize deletion of all signatures if using invalid identity
openshift · Jun 25, 2018 · 563f5de · 563f5de
2 parents 61d0d62 + 6f2d730
commit 563f5de
Showing 1 changed file with 8 additions and 2 deletions.
diff --git a/admin_guide/image_signatures.adoc b/admin_guide/image_signatures.adoc
@@ -124,9 +124,15 @@ $ oc adm policy add-cluster-role-to-user system:image-auditor <user_name>
 endif::[]
 ====
 
+[IMPORTANT]
+====
 Using the `--save` flag on already verified image together with invalid GPG key
-or invalid expected identity causes the saved verification status to be removed,
-and the image will become unverified.
+or invalid expected identity causes the saved verification status and all
+signatures to be removed, and the image will become unverified. 
+
+In order to avoid deleting all signatures by mistake, you can run the command 
+without the `--save` flag first and check the logs for potential issues.
+====
 
 To verify an image signature use the following format: