search

swicg / activitypub-http-signature

Repository for a SocialCG report on how HTTP Signature is used with ActivityPub
https://swicg.github.io/activitypub-http-signature/
11 stars 1 forks source link

Non-goal: authorization #14

Closed snarfed closed 7 months ago

snarfed commented 9 months ago

Authorization - object ownership, origin checks, permissions, etc - could be worth its own CG report eventually, but I'd propose that it's out of scope for this one specifically.

evanp commented 8 months ago

I agree. Authentication (AuthC) is just saying who you are. I think HTTP signature does that nicely.