Closed job closed 3 years ago
So, if I understand this right, -verify
simply checks a signature in the JSON stuff?
Yes. The JSON data is canonicalized in a specific way and then signed, but I think it should be left as a decision for the operator where to pull the VRP set from and how to safely transport it.
ok so more like only octorpki signs and we don't care. this is low priority till its time to refactor things.
Simplify the code by shifting responsibility of VRP transport to elsewhere