MarketTakers/arbiter
5
0
Fork 0
Code Issues 27 Pull Requests 4 Packages Projects Releases Wiki Activity

feat(user-agent-auth): add RSA and ECDSA auth key types #29

Merged
Skipper merged 7 commits from feat-min-RSA-&-ECDSA-auth-pipeline into main 2026-03-14 14:41:47 +00:00
Conversation 2 Commits 7 Files Changed 33 +656 -203
CleverWild commented 2026-03-14 11:18:27 +00:00
Member
Copy Link

Extend user-agent authentication to support Ed25519, ECDSA (secp256k1), and RSA (PSS+SHA-256) with minimal protocol and storage changes. Add key_type to auth requests and useragent_client, update key parsing/signature verification paths, and keep backward compatibility by treating UNSPECIFIED as Ed25519.

Extend user-agent authentication to support Ed25519, ECDSA (secp256k1), and RSA (PSS+SHA-256) with minimal protocol and storage changes. Add key_type to auth requests and useragent_client, update key parsing/signature verification paths, and keep backward compatibility by treating UNSPECIFIED as Ed25519.
CleverWild added 1 commit 2026-03-14 11:18:28 +00:00
feat(user-agent-auth): add RSA and ECDSA auth key types
Some checks failed
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-audit Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
6030f30901 
Extend user-agent authentication to support Ed25519, ECDSA (secp256k1), and RSA (PSS+SHA-256) with minimal protocol and storage changes. Add key_type to auth requests and useragent_client, update key parsing/signature verification paths, and keep backward compatibility by treating UNSPECIFIED as Ed25519.
CleverWild requested review from Skipper 2026-03-14 11:18:35 +00:00
CleverWild added 1 commit 2026-03-14 11:40:41 +00:00
refactor(config): specify target for Windows in profile.dev settings
Some checks failed
ci/woodpecker/pr/server-audit Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
f8d27a1454
CleverWild added 2 commits 2026-03-14 12:23:19 +00:00
chore: squash migrations d29bca853b
revert(auth): remove RSA support from authentication and related components
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
42760bbd79
CleverWild added 1 commit 2026-03-14 12:57:17 +00:00
feat(auth): limited RSA support for signing
Some checks failed
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline failed
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
47144bdf81 
see server/clippy.toml
CleverWild added 1 commit 2026-03-14 13:13:20 +00:00
fix(rustc): config toolchaing mismatch
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline failed
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
c1c5d14133
Skipper requested changes 2026-03-14 13:29:59 +00:00
Dismissed
server/clippy.toml
@@ -0,0 +1,8 @@
disallowed-methods = [
Skipper commented 2026-03-14 13:15:10 +00:00
Owner
Copy Link

very good call, +rep

very good call, +rep
Skipper marked this conversation as resolved
server/crates/arbiter-proto/Cargo.toml
@@ -24,6 +24,7 @@ async-trait.workspace = true
[build-dependencies]
tonic-prost-build = "0.14.3"
protoc-bin-vendored = "3"
Skipper commented 2026-03-14 13:15:34 +00:00
Owner
Copy Link

this one is not needed as mise takes care of protoc

this one is not needed as `mise` takes care of `protoc`
server/crates/arbiter-proto/build.rs
@@ -3,6 +3,11 @@ use tonic_prost_build::configure;
static PROTOBUF_DIR: &str = "../../../protobufs";
fn main() -> Result<(), Box<dyn std::error::Error>> {
if std::env::var("PROTOC").is_err() {
Skipper commented 2026-03-14 13:15:37 +00:00
Owner
Copy Link

this one is not needed as mise takes care of protoc

this one is not needed as `mise` takes care of `protoc`
server/crates/arbiter-server/src/actors/user_agent/auth/state.rs
@@ -199,2 +256,2 @@
) -> Result<VerifyingKey, Self::Error> {
Ok(state_data.key)
) -> Result<AuthPublicKey, Self::Error> {
// ChallengeContext.key cannot be taken by value because smlang passes it by ref;
Skipper commented 2026-03-14 13:27:11 +00:00
Owner
Copy Link

juste use clone

juste use clone
CleverWild added 1 commit 2026-03-14 13:30:59 +00:00
clippy: fix
Some checks failed
ci/woodpecker/pr/server-audit Pipeline was successful
Details
ci/woodpecker/pr/server-vet Pipeline failed
Details
ci/woodpecker/pr/server-lint Pipeline was successful
Details
ci/woodpecker/pr/server-test Pipeline was successful
Details
17ac195c5d
Skipper approved these changes 2026-03-14 14:41:39 +00:00
Skipper merged commit 8fde3cec41 into main 2026-03-14 14:41:47 +00:00
Skipper deleted branch feat-min-RSA-&-ECDSA-auth-pipeline 2026-03-14 14:41:51 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Skipper
Labels
Clear labels
Compat
Breaking
Breaking change that won't be backward compatible
Difficulty
High
3
Hard difficulty. Experience needed to fix: A lot.
Difficulty
Low
1
Easy difficulty. Experience needed to fix: Not much. Good first issue.
Difficulty
Medium
2
Medium difficulty. Experience needed to fix: Intermediate.
Kind
Bug
This is a bug.
Kind
Enhancement
Improve existing functionality.
Kind
Feature
New functionality
Kind
RFC
Request for comments
Kind
Security
This is security issue
Kind
Testing
This is testing issue.
Kind
Tracking issue
An issue tracking the progress of sth. like the implementation of an RFC
Priority
Critical
1
The priority is critical
Priority
High
2
The priority is high
Priority
Low
4
The priority is low
Priority
Medium
3
The priority is medium
Reviewed
Confirmed
1
Issue has been confirmed
Reviewed
Duplicate
2
This issue or pull request already exists
Reviewed
Invalid
3
Invalid issue
Reviewed
Pending
4
Requires review by dev
Reviewed
Won't Fix
3
This issue won't be fixed
Status
Abandoned
3
Somebody has started to work on this but abandoned work
Status
Blocked
1
Something is blocking this issue or pull request
Status
Need More Info
2
Feedback is required to reproduce issue or to continue work
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
CleverWild Skipper goodvin testuser
No Assignees
2 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MarketTakers/arbiter#29
Delete Branch "feat-min-RSA-&-ECDSA-auth-pipeline"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?