Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Signed metadata #82

Open
10 of 12 tasks
andrew opened this issue May 17, 2021 · 3 comments
Open
10 of 12 tasks

Signed metadata #82

andrew opened this issue May 17, 2021 · 3 comments
Labels
enhancement New feature or request
Milestone
v0.1.0

Comments

@andrew
Copy link
Member

andrew commented May 17, 2021
edited
Loading

Currently we only trust metadata downloaded directly from the original upstream registry, enabling forage to opt-in to trust metadata from other instances would mean we can pass metadata around over ipfs and pubsub whilst ensuring it came from one of the sources we trust (upstream registry or some specific forage instances ran by company/friends/services).

To do this we need to have forage instances sign their metadata and be able to verify it using their public key.

Tasks:

  • create/add public+private key pair
    • on startup, if no keys, create pair
    • command to refresh keys
    • command to import keys
  • manage trusted public keys
    • command to add trusted public key
    • command to remove trusted public key
  • share metadata over pubsub
  • sign metadata shared over pubsub
  • verify metadata received over pubsub
    • ignore metadata responses if verification fails
  • signer should be stored with metadata so it can be passed along to other instances
@andrew andrew added the enhancement New feature or request label May 17, 2021
andrew added a commit that referenced this issue May 17, 2021
@andrew
Unify 'have' and 'republish' pubsub messages
138f17d 
Refactoring to prepare for #82
@andrew andrew mentioned this issue May 19, 2021
Merged
4 tasks
@andrew
Copy link
Member Author

andrew commented May 19, 2021

PR for WIP over here: #85

@andrew
Copy link
Member Author

andrew commented May 24, 2021

#85 has been merged, now need to do some real world testing between instances and produce a demo.

@andrew
Copy link
Member Author

andrew commented May 24, 2021

Released as 0.0.18

@andrew andrew added this to the 0.1.0 milestone Jun 2, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
v0.1.0
Development

No branches or pull requests
1 participant
@andrew