The account assertion ties the name for an account in the snap universe to its store identifier and provides the authority’s confidence in the name’s validity. It is generated on user creation by the store where it’s maintained while the account exists.
Whenever a snap is installed, the account assertion linked to the owner of each snap is added to the system. To list account assertions present on a system, use the
snap known account command.
Account assertion fields
The following fields can be used in an account assertion:
authority-id: <authority account id>
account-id: <account id>
display-name: <friendly name for the account>
username: <store user name or nick>
timestamp: <UTC datetime>
sign-key-sha3-384: <key id> # Encoded key id of signing key
<signature> # Encoded signature
The index for this assertion is the
account-id and the fields are typically used in the following order:
validationwhen set to
certifiedmeans that the authority is confident in that the display name accurately describes the owner of the account while
unprovenmeans that no checks have been performed.
display-nameis a human-friendly name for the account-d, while username` is an optional username associated with the account.
timestampcontains the UTC formatted date and time that
See Assertion format for details on fields common to most assertions.
The following is a typical account assertion: