feat: initial verify badge example with widget demo, SVG badge, and GitHub Pages deploy

bordumb · bordumb · commit a7cdac56079e · 2026-03-10T03:10:08.000Z
diff --git a/.auths/allowed_signers b/.auths/allowed_signers
@@ -0,0 +1,5 @@
+# Auths allowed signers file
+# Format: <email> ssh-ed25519 <public-key>
+
+alice@example.com ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIExampleKeyAliceReplaceMeWithRealKey000000000
+bob@example.com ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIExampleKeyBobReplaceMeWithARealKey00000000000
diff --git a/.github/workflows/deploy-badge-site.yml b/.github/workflows/deploy-badge-site.yml
@@ -0,0 +1,30 @@
+name: Deploy Badge Site
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'docs/**'
+
+permissions:
+  pages: write
+  id-token: write
+
+concurrency:
+  group: pages
+  cancel-in-progress: false
+
+jobs:
+  deploy:
+    environment:
+      name: github-pages
+      url: ${{ steps.deployment.outputs.page_url }}
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+
+      - uses: actions/upload-pages-artifact@v3
+        with:
+          path: docs
+
+      - id: deployment
+        uses: actions/deploy-pages@v4
diff --git a/.github/workflows/verify-commits.yml b/.github/workflows/verify-commits.yml
@@ -0,0 +1,24 @@
+name: Verify Commits
+on:
+  pull_request:
+  push:
+    branches: [main]
+
+permissions:
+  contents: read
+  pull-requests: write
+
+jobs:
+  verify:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+
+      - uses: auths-dev/auths-verify-github-action@v1
+        with:
+          allowed-signers-path: .auths/allowed_signers
+          fail-on-unsigned: true
+          post-pr-comment: 'true'
+          github-token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/Cargo.toml b/Cargo.toml
@@ -0,0 +1,7 @@
+[package]
+name = "example-verify-badge"
+version = "0.1.0"
+edition = "2021"
+
+[lib]
+path = "src/lib.rs"
diff --git a/LICENSE b/LICENSE
diff --git a/README.md b/README.md
@@ -0,0 +1,82 @@
+# Verification Badge with Auths
+
+This example demonstrates how to add a "Verified by Auths" badge and verification widget to your project using [Auths](https://github.com/auths-dev/auths).
+
+## Verification Status
+
+[![Commits Verified by Auths](docs/badge.svg)](https://your-org.github.io/example-verify-badge/)
+
+## Quick Start
+
+```bash
+# 1. Fork this repo
+# 2. Enable GitHub Pages (Settings > Pages > Source: GitHub Actions)
+# 3. Push to main — the badge site deploys automatically
+```
+
+## What's Included
+
+| Path | Purpose |
+|------|---------|
+| `docs/index.html` | Live verification widget demo page (all 3 display modes) |
+| `docs/badge.svg` | Static "Verified by Auths" badge for README embedding |
+| `.github/workflows/verify-commits.yml` | CI commit verification |
+| `.github/workflows/deploy-badge-site.yml` | Deploy verification page to GitHub Pages |
+
+## Embedding the Badge
+
+### Static Badge (works everywhere)
+
+Add this to your README:
+
+```markdown
+[![Commits Verified by Auths](https://your-org.github.io/your-repo/badge.svg)](https://your-org.github.io/your-repo/)
+```
+
+### Verification Widget (GitHub Pages / custom sites)
+
+Add the `<auths-verify>` web component to your HTML page:
+
+```html
+<script type="module" src="https://unpkg.com/@auths-dev/verify/dist/auths-verify.mjs"></script>
+
+<!-- Badge mode (compact) -->
+<auths-verify repo="your-org/your-repo" forge="github" mode="badge"></auths-verify>
+
+<!-- Detail mode (expanded) -->
+<auths-verify repo="your-org/your-repo" forge="github" mode="detail"></auths-verify>
+
+<!-- Tooltip mode (hover to expand) -->
+<auths-verify repo="your-org/your-repo" forge="github" mode="tooltip"></auths-verify>
+```
+
+### Important Note
+
+The `<auths-verify>` web component does **NOT** render in GitHub README files. GitHub strips custom HTML elements and `<script>` tags from Markdown. The widget works on:
+
+- GitHub Pages sites
+- Personal/project websites
+- Documentation platforms (Docusaurus, MkDocs, etc.)
+- Any HTML page you control
+
+For GitHub READMEs, use the static SVG badge instead.
+
+## Widget Display Modes
+
+| Mode | Description |
+|------|-------------|
+| `badge` | Compact badge showing verified/unverified status |
+| `detail` | Expanded view with signer info and verification details |
+| `tooltip` | Badge that expands on hover to show details |
+
+## How It Works
+
+1. The `<auths-verify>` widget loads a WASM module that performs cryptographic verification in the browser
+2. It fetches the repository's signing data from `refs/auths/` in the git repo
+3. Verification happens entirely client-side — no backend required
+4. The static SVG badge is a simple image for environments that don't support JavaScript
+
+## Prerequisites
+
+- GitHub Pages enabled on your repository
+- [Auths CLI](https://github.com/auths-dev/auths) for commit signing (`brew install auths-dev/auths-cli/auths`)
diff --git a/docs/badge.svg b/docs/badge.svg
@@ -0,0 +1,20 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="156" height="20">
+  <linearGradient id="b" x2="0" y2="100%">
+    <stop offset="0" stop-color="#bbb" stop-opacity=".1"/>
+    <stop offset="1" stop-opacity=".1"/>
+  </linearGradient>
+  <clipPath id="a">
+    <rect width="156" height="20" rx="3" fill="#fff"/>
+  </clipPath>
+  <g clip-path="url(#a)">
+    <path fill="#555" d="M0 0h47v20H0z"/>
+    <path fill="#4c1" d="M47 0h109v20H47z"/>
+    <path fill="url(#b)" d="M0 0h156v20H0z"/>
+  </g>
+  <g fill="#fff" text-anchor="middle" font-family="DejaVu Sans,Verdana,Geneva,sans-serif" font-size="11">
+    <text x="23.5" y="15" fill="#010101" fill-opacity=".3">auths</text>
+    <text x="23.5" y="14">auths</text>
+    <text x="100.5" y="15" fill="#010101" fill-opacity=".3">commits verified</text>
+    <text x="100.5" y="14">commits verified</text>
+  </g>
+</svg>
diff --git a/docs/index.html b/docs/index.html
diff --git a/src/lib.rs b/src/lib.rs
