Open k-allagbe opened 1 year ago
@rngadam can you please elaborate on this a bit more? Fuzzy points on my part:
@k-allagbe will prototype a first implementation of the sequence diagram above and give feedback for discussion.
@rngadam what does the devops approbation process look like?
@k-allagbe DevOps has access to all the secrets of the server, so I would think using the server private key to encrypt a message that can only be decrypted by membrane-backend containing the client app to enable.
As discussed with @rngadam, the clients need a process to register to membrane without the need to manually exchange keys.
A solution for this would be an endpoint on membrane that would allow clients to download their configuration files (including server public key) at startup. But because the system should be a 2-way trust, there should also be a way to pass the client public key safely to the server which the server would then approve.