C2paSigningSettings.chainOfTrust property

When true, this signer operates in derived mode: every output segment is expected to be derived from a C2PA-verified input segment, and each output segment carries a parentOf C2PA ingredient referencing the upstream manifest. When the upstream input has no verified parent for a given segment (verification not configured, verification failed, or warm-up gap), the segment is signed unchained and a c2pa_chain_dropped notification fires on the SDK’s NorskSettings.onNotification stream so the gap is observable.

When false (default), this is a root signer: it signs whatever it’s given, no chain-of-trust expectation, no notification on missing parent. Use false on an output whose input is unsigned; use true on an output downstream of a C2PA-verifying ingest.

Signature: