This works, but the key generation happens internally and is magic for
our users. This is a problem as the user doesn't have control over
the key generation process (for example how many keys does he want to
use for succinct hash bin delegation) and it's not a good practice given
how important is the key generation step.
As a solution, remove the key generation logic from the second command
"init-succinct-roles" and instead move it to "add-key".
Now the full succinct process can be achieved with three commands:
Fixes #41
The current succinct delegation process has three parts:
but only two commands:
This works, but the key generation happens internally and is magic for our users. This is a problem as the user doesn't have control over the key generation process (for example how many keys does he want to use for succinct hash bin delegation) and it's not a good practice given how important is the key generation step.
As a solution, remove the key generation logic from the second command "init-succinct-roles" and instead move it to "add-key".
Now the full succinct process can be achieved with three commands:
Signed-off-by: Martin Vrachev mvrachev@vmware.com