in cvm-attestation/src/AttestationProvider.py [0:0]
def print_tdx_platform_claims(self, encoded_token):
try:
claims = jwt.decode(encoded_token, options={"verify_signature": False})
if claims['x-ms-compliance-status'] == 'azure-compliant-cvm':
self.log.info(f"Claims:")
self.log.info(f"Attestation Type: {claims['x-ms-attestation-type']}")
self.log.info(f"TCB Status: {claims['attester_tcb_status']}")
self.log.info(f"TCB SVN : {claims['tdx_tee_tcb_svn']}")
self.log.info(f"TPM Persisted: {claims['x-ms-runtime']['vm-configuration']['tpm-persisted']}")
self.log.info(f"Report Data: {claims['tdx_report_data']}")
self.log.info(f"User Claims Digest: {claims['x-ms-runtime']['user-data']}")
self.log.info("Attested Platform Successfully!!")
except Exception as e:
raise AttestationProviderException(f'Exception while decoding jwt. Exception: {e}')