Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Biscuit v5 #162

Open
wants to merge 28 commits into
base: main
Choose a base branch
from
Open

Biscuit v5 #162

wants to merge 28 commits into from

Conversation

Geal
Copy link
Contributor

@Geal Geal commented May 12, 2024

This PR holds the current development for the next Biscuit version (version 5 of the format)

ToDo

divarvel and others added 27 commits June 29, 2023 18:09
Specification for `reject if`
* add samples for reject if

* missing change
Co-authored-by: Clément Delafargue <[email protected]>
add spec and samples for map and array types
Also explictly document the `Get` binary operation
This introduces a new way to construct the payload for block signatures and external signatures:
- prefixes are used to recognize each type of signature: `BLOCK` or `EXTERNAL`
- prefixes are used to separate each part of the payload
- external signature payloads contain the signature of the previous block instead of the current block's public key
- block signatures now contain the signature of the previous block too
- the previous payload format for block signatures. is deprecated Still supported, but will be removed in a future major version
- the previous payload format for external signatures is not supported anymore

Co-authored-by: Clément Delafargue <[email protected]>
update samples (lenient equals sample)
This adds support for ECDSA signatures based on secp256r1. This will make it easier for biscuit tokens to work in environments with FIPS requirements, or with HSMs
improve a bit the specification for third-party block version constraints
@divarvel divarvel marked this pull request as ready for review November 26, 2024 13:33
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants