Added KeyIdentity to replace KeyTriple

[MattDavis00]

KeyIdentity contains an ApplicationIdentity, ProviderIdentity and a key_name.
KeyTriple still exists but solely for the use by the OnDiskKeyInfoManager.
This is preliminary work towards the new SQLiteKeyInfoManager as part of #486

Apologies for the large pr... 👨🏼‍💻

There may be some incorrect variable naming in places regarding key_triple where it should be key_identity instead. I will address this in a future PR as this will be a ~200 loc by itself.

Closes #488

Signed-off-by: Matt Davis [email protected]

[ionut-arm]

Thanks for the massive change! 💪🏻 I left a bunch of comments below, apologies if some of them seem to contradict each other - I went on a journey of self-discovery myself, reading through this.

[ionut-arm]

Another few comments, should've noticed the pub fields yesterday :(

[hug-dev]

Thanks for the changes. Sorry for the big amount of review comments adding up to what you already got 😛
It is good though since this is a big and important change!

[MattDavis00]

Currently admin operations such as delete_client are not scoped to the authenticator of the administrator.
Example:

• Apps:
  app1-authenticator A
app2-authenticator B
• Admin:
  admin-authenticator B

Currently the admin can delete both app1 and app2. With regards to the new KIM and admin permissions, how do we want this to work? Currently only 1 authenticator is supported and hence this isn't really an issue yet. Do we want an administrator authenticated with authenticator B to be scoped only to actions on authenticator B resources, or do we want them to have "global" admin privileges where they can perform admin actions on any resource regardless of authenticator?

Edit: I have implemented the scoped version of this, rather than the "global" version of this. This is as we can always revert to a more lenient/less-restrictive set of permissions if we wish to.

[hug-dev]

Mainly fine for me. I think I should not block the implementation for too long since this is hard to work little by little here. And it's all OK since you are on your own branch.

Do we want an administrator authenticated with authenticator B to be scoped only to actions on authenticator B resources, or do we want them to have "global" admin privileges where they can perform admin actions on any resource regardless of authenticator?

I think the scoped version is the one that we want. Having the new KIM in mind we wrote in the book:

Only the clients using the same authentication method as this request will be deleted. It has no impact currently as only one authentication method in the service is supported but might do if the service supports multiple.