Support ACP (with identity) on backup and import for documents that are private

sourcenetwork / defradb

DefraDB is a Peer-to-Peer Edge Database. It's the core data storage system for the Source Network Ecosystem, built with IPFS/IPLD, LibP2P, CRDTs, and Semantic web3 properties.

155 stars 32 forks source link

Support ACP (with identity) on backup and import for documents that are private #2430

Open shahzadlone opened 3 months ago

shahzadlone commented 3 months ago

Support ACP (with identity) on backup and import for documents that are private

shahzadlone commented 3 months ago

Relevant discussion: https://github.com/sourcenetwork/defradb/pull/2338#discussion_r1535693360

AndrewSisley commented 2 months ago

thought: Allowing sys admins to backup private data could be seen as a breach of trust, it might be better for users to grant the backup user backup permission (I say backup instead of read, as if encrypted on disk read suggests they are allowing the decryption of the doc(s)).