did-method-plc icon indicating copy to clipboard operation
did-method-plc copied to clipboard
verified publisher icon did-method-plc

server/constraints: Check blessed did:key algs

Open lorenzleutgeb opened this issue 10 months ago • 2 comments

Resolves #92. Error messages are slightly clearer.

With https://github.com/bluesky-social/atproto/pull/3620 I am proposing to add support for a third curve to @atproto/crypto.

Rotation keys and verification methods for "atproto" remain restricted to P-256 and secp256k1 as before, while others, e.g. verification methods for "example" are unrestricted and now allow any algorithms that @atproto/crypto supports.

It'd be great if the restriction to two blessed algorithms could be lifted in the future. I'd like to use Ed25519 not only for custom verification methods, but also for my rotation key. However, getting going with a custom verification method is much more important to me at the moment.

Should be merged and deployed before https://github.com/bluesky-social/atproto/pull/3620

lorenzleutgeb avatar Mar 09 '25 17:03 lorenzleutgeb

Just to make sure i've commented consistently on all these threads: we definitely want to support additional curves registered as verified credentials, did not realize how restrictive things were until this was reported, and plan to get this fixed relatively soon.

bnewbold avatar May 09 '25 22:05 bnewbold

Cool. If you need anything else from me, or I can help out, just tell me :)

lorenzleutgeb avatar May 10 '25 00:05 lorenzleutgeb

I think we have resolved the underlying issue with this change:

  • https://github.com/did-method-plc/did-method-plc/pull/101
  • https://github.com/bluesky-social/atproto/discussions/3928

bnewbold avatar Jun 05 '25 23:06 bnewbold