coniks-go icon indicating copy to clipboard operation
coniks-go copied to clipboard
verified publisher icon coniks-sys

Include the extension policies into STR

Open vqhuy opened this issue 9 years ago • 3 comments

Does the directory need to include its extension policies in the STR so the client can check that policies against its current pining policies? E.g., the Policies struct could have a field SignedPromiseType: string to indicate what kind of promise the directory is using (e.g., "TemporaryBinding" or "None"). This check could be used to detect misconfig from the client-side (say, when the directory's useTBs is true but the client's useTBs is false).

vqhuy avatar Nov 01 '16 04:11 vqhuy

Yes

arlolra avatar Nov 01 '16 17:11 arlolra

I agree, the STR Policies are the right place to indicate the server's extension settings.

This check could be used to detect misconfig from the client-side

Is the idea that the client would simply change its configuration if it doesn't match the server's policy?

masomel avatar Nov 01 '16 19:11 masomel

Is the idea that the client would simply change its configuration if it doesn't match the server's policy?

Maybe we should notice to users and let them open new issue instead?

vqhuy avatar Nov 02 '16 01:11 vqhuy