Open ajs124 opened 1 year ago
push a storepath, with some signature
I should clarify that client-supplied signatures currently have no effect, and .narinfo
s only contain signatures generated on-the-fly using server-managed keys. The current implementation focuses on letting users upload paths without access to the signing keys, using time-limited tokens that can be replaced without causing disruption to users who only download.
The client-supplied signatures are, however, saved in the database so we can support client-managed signing later, with integration in the attic
client to make things seamless.
Ah, so when a cache is created, a private key is created and used to sign? Is that documented and I just missed it or is that not mentioned in the documentation.
That seems like a valid approach, I just assumed it worked otherwise, for some reason.
nix store sign
, with another key