-
Notifications
You must be signed in to change notification settings - Fork 22
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
update api to allow credential-wrapped requests #489
Commits on Jun 1, 2023
-
update api to allow credential-wrapped requests
- stage - query - multiquery - history In order to handle string requests, we need to understand string when discerning whether we're dealing with an insert or a retract, so there are a couple updates to handle that (fql.parse/update? and update/insert? and update/retract?). In each case we unwrap the credential subject before parsing. We only use a limited subset of the credential spec internally, but the wide world of credentials has a very large schema and I didn't want to include it in our internal query/transaction schema.
Configuration menu - View commit details
-
Copy full SHA for 3635071 - Browse repository at this point
Copy the full SHA 3635071View commit details -
used derived id for verified credential issuer
We were just pulling the "issuer" field off of the verified credential, but that part of the credential is not signed. Now we just use the did key from the proof, which is part of the cryptographic signature. Also refactored the `generate` function and stubbed out an assertion that we can use in the future once our incoming credential subjects are proper json-ld.
Configuration menu - View commit details
-
Copy full SHA for 09474b0 - Browse repository at this point
Copy the full SHA 09474b0View commit details -
Configuration menu - View commit details
-
Copy full SHA for a352c16 - Browse repository at this point
Copy the full SHA a352c16View commit details -
use credential auth id in policy enforcement
If no role is specified, but a did is, look up the roles associated with the identity and enforce them on the operation.
Configuration menu - View commit details
-
Copy full SHA for 6343e77 - Browse repository at this point
Copy the full SHA 6343e77View commit details -
When staging with a policy-activating opt (:did or :role), you need to be able to subsequently transact with different policies for different users. This commit makes that possible by resetting the db to a root db after checking policies. If you want to interact with the db with a specific policy wrapping, you need to specify the identity/role with which you are doing so every time.
Configuration menu - View commit details
-
Copy full SHA for 326e93a - Browse repository at this point
Copy the full SHA 326e93aView commit details -
Configuration menu - View commit details
-
Copy full SHA for 32a3349 - Browse repository at this point
Copy the full SHA 32a3349View commit details
Commits on Jun 6, 2023
-
Configuration menu - View commit details
-
Copy full SHA for 5951fa3 - Browse repository at this point
Copy the full SHA 5951fa3View commit details -
use more efficient query for did roles
Since we know the subject ids for the predicates we care about, we don't need to invoke the whole query pipeline in order to get the results we care about. Cleaned up a redundant ns require for fql. Added some test cases to verify that no errors are thrown when there are no roles or identities.
Configuration menu - View commit details
-
Copy full SHA for b509653 - Browse repository at this point
Copy the full SHA b509653View commit details -
make policy role lookups more efficient
We were looking up an identity's roles, then looking up those roles iris, only to translate them back into iris. This allows us to skip the iri lookups and just keep the sids.
Configuration menu - View commit details
-
Copy full SHA for ecf05c0 - Browse repository at this point
Copy the full SHA ecf05c0View commit details
Commits on Jun 7, 2023
-
Configuration menu - View commit details
-
Copy full SHA for ce94640 - Browse repository at this point
Copy the full SHA ce94640View commit details