nats-queue-worker icon indicating copy to clipboard operation
nats-queue-worker copied to clipboard
verified publisher icon openfaas

Allow message to be verified

Open alexellis opened this issue 7 years ago • 3 comments

Feature: Non-repudiation for queue-worker callbacks

Suggested by: Ed Wilde @ewilde

We can use HMAC or RSA and HMAC together to sign messages when we use the X-Callback-Url. This means that receivers of the callback messages can verify the sender as the queue worker vs. some bad actor that discovered the URL.

alexellis avatar Jan 05 '19 12:01 alexellis

Via @ewilde https://tools.ietf.org/html/draft-cavage-http-signatures-05

alexellis avatar Feb 20 '19 16:02 alexellis

I've created a conceptual diagram for the http signatures flow: diagram

ewilde avatar Feb 24 '19 09:02 ewilde

Derek assign: ewilde

ewilde avatar Feb 24 '19 22:02 ewilde