search

zapstore / releastr

0 stars 2 forks source link

NIP-69 signature delegation #9

Open alltheseas opened 2 months ago

alltheseas commented 2 months ago

user story

As ZapStore lead dev, I would like to enable a method to let app devs sign a delegation linking their keys or certificate (set and forget), used in combination with the delegation tags (p/zap), so that they setup perpetual app release signatures.

acceptance criteria

  1. It should be set and forget by default
  2. AppDev has a way to set up, and
  3. AppDev had a method to revoke permissions
  4. AppDev has a method to link relevant signing keys

implementation details

  1. Sign nip-69
  2. linking PGP key OR APK certificate combined with
  3. Delegation (/p) tags
franzaps commented 2 months ago

https://github.com/fr4nzap/nips/blob/linked-cryptographic-identities/69.md

I think delegation tags are not really useful. In the scraper I will start extracting SHA-256 fingerprints from the APK X.509 certificates (including them in the NIP-94 metadata) so we can then query by i tag in NIP-69