Merge pull request #24686 from hashicorp/paultyng-patch-1

Add page explaining provider trust tiers
This commit is contained in:
Paul Tyng 2020-04-16 10:53:47 -04:00 committed by GitHub
commit 1c9735bab5
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -0,0 +1,20 @@
---
layout: "registry"
page_title: "Terraform Registry - Provider Tiers
sidebar_current: "docs-registry-provider-tiers
description: |-
Published Provider tiers in the Terraform Registry
---
# Provider Tiers
There are three tiers of providers in the Terraform Registry:
* **Official Providers** - are built, signed, and supported by HashiCorp. Official Providers can typically be used without providing
provider source information in your Terraform configuration.
* **Partner Providers** - are built, signed, and supported by a third party. HashiCorp has verified the ownership of the private
key and we provide a chain of trust to the CLI to verify this programatically. To use Partner Providers in your Terraform
configuration, you need to specify the provider source, typically this is the namespace and name to download from the registry.
* **Community Providers** - are built, signed, and supported by a third party. HashiCorp does not provide a verification or chain
of trust for the signing. You will want to obtain and validate fingerprints manually if you want to ensure you are using a
binary you can trust.