mirror of
https://code.sup39.dev/repos/Wqawg
synced 2024-12-27 16:54:53 +09:00
c2c4e24497
Allow keys to specify expiration time using w3c security vocabulary. If a key has expired, we treat it like sig validation failure and re-fetch the key from the other server. And we never accept a sig, even a valid sig, if the key has expired. Since servers keep actors and keys in the DB, expiration can be a nice way to ask that keys aren't used more than we want them to. The security vocab spec also recommends to set expiration time on keys, so it's nice to support this feature.
12 lines
191 B
Text
12 lines
191 B
Text
VerifKey
|
|
ident String
|
|
expires UTCTime Maybe
|
|
public ByteString
|
|
sharer RemoteSharerId
|
|
|
|
UniqueVerifKey ident
|
|
|
|
RemoteSharer
|
|
ident String
|
|
|
|
UniqueRemoteSharer ident
|