Vervis/migrations/2019_02_03_verifkey.model
fr33domlover c2c4e24497 Support actor key expiration
Allow keys to specify expiration time using w3c security vocabulary. If a key
has expired, we treat it like sig validation failure and re-fetch the key from
the other server. And we never accept a sig, even a valid sig, if the key has
expired.

Since servers keep actors and keys in the DB, expiration can be a nice way to
ask that keys aren't used more than we want them to. The security vocab spec
also recommends to set expiration time on keys, so it's nice to support this
feature.
2019-02-05 04:05:44 +00:00

12 lines
191 B
Text

VerifKey
ident String
expires UTCTime Maybe
public ByteString
sharer RemoteSharerId
UniqueVerifKey ident
RemoteSharer
ident String
UniqueRemoteSharer ident