https://ocm.software/main/docs/concepts/Recent content in Concepts on Open Component ModelHugoen-UShttps://ocm.software/docs/concepts/component-identity/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/docs/concepts/component-identity/<h2 id="overview">Overview</h2> <p>OCM uses a coordinate system to uniquely identify every piece of software — from entire components down to individual artifacts. This page explains how that system works, what a component descriptor contains, and how identity stays stable regardless of where artifacts are stored.</p>https://ocm.software/main/docs/concepts/transfer-and-transport/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/transfer-and-transport/<p>Transfer is the mechanism that moves component versions from one OCM repository to another. During transfer, the component&rsquo;s identity, integrity, and signatures are preserved so that consumers can verify provenance at every stage of the delivery pipeline.</p>https://ocm.software/main/docs/concepts/signing-and-verification/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/signing-and-verification/<p>OCM uses cryptographic signatures to guarantee that component versions are authentic (created by a trusted party) and have not been tampered with during storage or transfer.</p>https://ocm.software/main/docs/concepts/credential-system/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/credential-system/<p>OCM operations frequently interact with protected services — OCI registries, private repositories, signing infrastructure. Rather than requiring credentials at every command invocation, OCM provides a central credential system that decouples <em>what needs authentication</em> from <em>how credentials are supplied</em>.</p>https://ocm.software/main/docs/concepts/resolvers/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/resolvers/<h2 id="why-resolvers">Why Resolvers?</h2> <p>In OCM, a component can <strong>reference</strong> other components. For example, an <code>app</code> component might reference a <code>backend</code> and a <code>frontend</code> component. These referenced components don&rsquo;t have to live in the same repository as the app — and in practice, they often don&rsquo;t. Teams publish components independently, to different registries or repository paths.</p>https://ocm.software/main/docs/concepts/resource-repositories/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/resource-repositories/<p>A component version describes a set of resources (container images, Helm charts, configuration files) but it does not necessarily store those resources itself. Resource repositories are the abstraction OCM uses to upload, download, and authenticate against the actual storage backends where resource artifacts live.</p>https://ocm.software/main/docs/concepts/kubernetes-controllers/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/kubernetes-controllers/<p>The OCM controllers reconcile OCM component versions into a Kubernetes cluster. They form a chain of four custom resources, each depending on the previous one becoming <code>Ready</code>:</p>https://ocm.software/main/docs/concepts/kubernetes-deployer/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/kubernetes-deployer/<p>The Deployer is a Kubernetes controller that takes an OCM resource, typically containing Kubernetes manifests such as a <code>ResourceGraphDefinition</code>, plain YAML, or other deployable content, downloads it from a <code>Resource</code>, and applies it to the cluster using server-side apply.</p>https://ocm.software/main/docs/concepts/plugin-system/Mon, 01 Jan 0001 00:00:00 +0000https://ocm.software/main/docs/concepts/plugin-system/<p>The Open Component Model (OCM) plugin system allows you to extend OCM&rsquo;s basic capabilities. Plugins add support for new repository types, credential providers, signing mechanisms, input formats, and more, without modifying OCM itself.</p>