-
### Background
Due to the decision in https://github.com/opentdf/platform/issues/1296, KAS Grants are supported within policy from a registered KAS to an attribute namespace.
KAS and SDK logic s…
-
There is somewhere in the code that is logging all subject mappings when log level is set to debug. Debug log level should still be performant even when debugging an issue. With the log being so large…
-
In the go sdk it was detected that a protocol attack could happen by reading an excessively large manifest. We should introduce the same limits within the java-sdk.
Let's do a test that recreates the…
-
We should look to move off of github packages to support anonymous reads. I started this pr a while back but it required more work than expected to get setup.
https://github.com/opentdf/java-sdk/pul…
-
I would like to make sure our testing covers security cases, notably bugs which could result in denial of service conditions. As part of onboarding to the code I will look for opportunities for fuzzi…
-
Originally when we designed `CreateTDF` we decided to leverage the functional options pattern. For consistent developer experience (DX) we want to ensure the [nanoTDF SDK](https://github.com/opentdf/p…
-
In kas grants, the Local key type is marked as "deprecated". Until it is removed we should still support it.
-
Debug logs should be focused on debugging an issue in the platform. Currently we are logging readiness checks and this adds more noise than value.
```
{"time":"2024-08-30T16:03:18.265200807Z","lev…
-
see equivalent java-sdk issue for details https://github.com/opentdf/java-sdk/issues/153
-
HSM will not be directly supported in OpenTDF. Downstream projects that want to enable HSM support will need an extension point to configure an external crypto provider.
Acceptance Criteria
* remo…