Page MenuHomePhabricator
Differential D8133

[identity] introduce RPC to update reserved usernames list
ClosedPublic
Actions

Authored by varun on Jun 6 2023, 12:39 PM.
Tags
None
Referenced Files
Unknown Object (File)
Wed, Apr 24, 9:00 AM
Unknown Object (File)
Wed, Apr 24, 9:00 AM
Unknown Object (File)
Wed, Apr 24, 9:00 AM
Unknown Object (File)
Wed, Apr 24, 9:00 AM
Unknown Object (File)
Wed, Apr 24, 8:59 AM
Unknown Object (File)
Wed, Apr 24, 8:56 AM
Unknown Object (File)
Feb 27 2024, 1:42 AM
Unknown Object (File)
Feb 27 2024, 1:42 AM
View All 26 Files
Subscribers
tomek

Details

Reviewers
ashoat
jon
Commits
rCOMM9596281a388f: [identity] introduce RPC to update reserved usernames list
Summary

when accounts are created/deleted on ashoat's keyserver, it will need to inform the identity service so that the list of reserved usernames can be updated.

Test Plan

will be tested when implemented on identity service

Diff Detail

Repository
rCOMM Comm
Branch
keyserver-identity (branched from master)
Lint
No Lint Coverage
Unit
No Test Coverage

Event Timeline

varun created this revision.Jun 6 2023, 12:39 PM
Herald added a reviewer: jon. · View Herald TranscriptJun 6 2023, 12:39 PM
Herald added a subscriber: tomek. · View Herald Transcript
Harbormaster completed remote builds in B20075: Diff 27510.Jun 6 2023, 12:58 PM
varun requested review of this revision.Jun 6 2023, 12:58 PM
varun added a child revision: D8134: [identity] implement addReservedUsername and removeReservedUsername RPCs.Jun 6 2023, 1:29 PM
ashoat requested changes to this revision.Jun 7 2023, 12:46 PM

I think we need some way to authenticate this request. We can't use the access token until keyservers are able to register with the identity service, which is still several weeks away. In yesterday's 1:1, you and I had talked about using a signed message for this, similar to how RegisterReservedPasswordUserStart works. To make that work we'd have to change the .proto here, though. What do you think?

This revision now requires changes to proceed.Jun 7 2023, 12:46 PM
jon requested changes to this revision.Jun 7 2023, 3:11 PM
jon added inline comments.
shared/protos/identity_client.proto
341–345

Feel we should have a separate remove and add rpc. Why conflate the two?

varun updated this revision to Diff 27572.Jun 8 2023, 10:24 PM

address feedback

Harbormaster completed remote builds in B20125: Diff 27572.Jun 8 2023, 10:41 PM
ashoat accepted this revision.Jun 9 2023, 7:21 AM

Makes sense. To address replay attacks we should definitely make sure that the signature has a recent timestamp

jon accepted this revision.Jun 9 2023, 11:01 AM
This revision is now accepted and ready to land.Jun 9 2023, 11:01 AM
varun updated this revision to Diff 27816.Jun 16 2023, 12:34 AM

changed username to message since we need to include timestamp

varun edited child revisions, added: D8231: [identity] add optional keyserver public key to config; removed: D8134: [identity] implement addReservedUsername and removeReservedUsername RPCs.Jun 16 2023, 12:44 AM
Harbormaster completed remote builds in B20293: Diff 27816.Jun 16 2023, 12:51 AM
Closed by commit rCOMM9596281a388f: [identity] introduce RPC to update reserved usernames list (authored by varun). · Explain WhyJun 16 2023, 11:41 AM
This revision was automatically updated to reflect the committed changes.
varun added a commit: rCOMM9596281a388f: [identity] introduce RPC to update reserved usernames list.

Revision Contents
Changeset List

PathSize
services/
identity/
src/
11 lines
shared/
protos/
18 lines

Diff 27510

View Options

services/identity/src/client_service.rs

Loading...
View Options

shared/protos/identity_client.proto

Loading...