Incomplete support for delegations in repo methods which contain a role name as an argument #266
Comments
Might be misinterpreting, but for |
|
I think what you're describing is the same as this suggestion above:
What I'm unsure of is whether it makes sense from a user's perspective to update the threshold for all incoming |
I don't think so. Some delegated roles will have different number of signers too -- however, I think in case it is easy, I think some library method should expose pulling a list of delegatees out of a delegated target file. So a user could iterate over them and set all incoming thresholds uniformly. |
|
Closing since the code base changed and so this is no longer relevant. With the new code base we support several types of delegations. Thanks for raising this 👍 |
There are a number of methods which may require breaking API changes to support delegations. These include:
Repo.GetThresholdRepo.SetThresholdRepo.RevokeKeyWithExpiresand callerRepo.RevokeKeyRepo.AddVerificationKeyWithExpirationand all callers, includingRepo.GenKey,Repo.GenKeyWithExpires,Repo.AddPrivateKey,Repo.AddPrivateKeyWithExpires, andRepo.AddVerificationKeyThese APIs might need to change change to support delegations, since they implement key management for roles. However, delegated targets keys are associated with delegations, not roles (see theupdateframework/specification#214).
One option to avoid a breaking change or adding more complex APIs would be to implement them such that the key changes apply simultaneously to all incoming delegations to a given role. In most cases (except for non-tree delegation graphs such as those illustrated in theupdateframework/specification#177), there will be only one incoming delegation to a given role, so this would be intuitive behavior.
The text was updated successfully, but these errors were encountered: