C2paSigningConfig

Field

Type

Description

alg

string

Signing algorithm. One of: ps256, ps384, ps512, es256, es384, es512, ed25519. The certificate must match.

private_key_path

string

Path to a PEM-encoded private key file readable by the Norsk Media process. Not the key contents.

sign_cert_path

string

Path to a PEM-encoded signing certificate file readable by the Norsk Media process. Not the certificate contents.

ta_url

string

Optional Time Authority URL. Empty string means use the C2PA_TA_URL environment variable if set, otherwise sign without a timestamp token.

stream_id

string

Identifier embedded in every signed segment’s c2pa.livevideo.segment assertion. Should be unique per logical stream.

chain_of_trust

bool

When true, this signer operates in derived mode: every output segment is expected to be derived from a C2PA-verified input segment, and each output segment carries a parentOf ingredient referencing the upstream manifest. When the upstream input has no verified parent for a given segment (verification not configured, verification failed, or warm-up gap), the segment is signed unchained and a c2pa_chain_dropped notification fires so the gap is observable.

When false (default), this is a root signer: it signs whatever it’s given, no chain-of-trust expectation, no notification on missing parent. Use false on an output whose input is unsigned; use true on an output downstream of a C2PA-verifying ingest.

scheme

C2paScheme

Selects which C2PA live-video signing method to use. Defaults to SEGMENT_MANIFEST_BOX (§19.3) for backwards compatibility.

validity_period_secs

uint32

Validity window (seconds) advertised in the §19.4 c2pa.session-keys assertion. Ignored when scheme is SEGMENT_MANIFEST_BOX. Zero falls back to a server-side default (currently 86400 = 24h).