Validate tenant for the given DWN Message

TBD54566975 / dwn-proxy-js

Apache License 2.0

1 stars 1 forks source link

Validate tenant for the given DWN Message #42

Open KendallWeihe opened 1 year ago

nearlyjuly commented 1 year ago

How will the list of tenant DIDs be stored? Will there be a config file entry for them or something similar?

KendallWeihe commented 1 year ago

How will the list of tenant DIDs be stored? Will there be a config file entry for them or something similar?

The dwn-sdk-js offers something known as tenant gating, you can see it as an optional param to the constructor here. And then this ticket is to add the explicit tenant validation (it's a function call exposed by the dwn-sdk-js), which'll probably go in the dwn-http-server.ts code here.

Here's the TenantGate interface exposed by the dwn-sdk-js

KendallWeihe commented 1 year ago

So as to your question @nearlyjuly, the list of tenant DIDs will be managed by the application and used via the tenant gating mechanism. For example, you could image an application, which depends on the dwn-proxy-js package, will manage a list of tenant DIDs, maybe in something like a secrets manager, and then use that list in it's implementation of the TenantGate interface which is passes into the DwnProxy constructor.