Paul Flynn
Paul Flynn
### Proposed Changes * Adds Identifier to Protocol Enum * Require Identifier in KAS Resource Locator ### Checklist - [ ] A clear description of the change has been included...
### Proposed Changes * Adds Key Identifier section and references from KAS Payload and Policy Key sections * KAS section is now called KAS Key Identifier ### Checklist - [...
### Proposed Changes * Policy Key Access required with encrypted Policy * https://github.com/opentdf/platform/issues/900 ### Checklist - [ ] A clear description of the change has been included in this PR....
- Adds `identifier` field to Resource Locator - Updates Protocol Enum with `identifier ` size Closes #1203 Issue: https://github.com/opentdf/platform/issues/1203 Specification: https://github.com/opentdf/spec/pull/40 ADR: https://github.com/opentdf/platform/issues/900
All keys available for encryption via SDK clients should be exposed with a JWKS endpoint. Each JWK should have a property that can be used to match an attribute to...
OpenTDF uses Viper has its configuration library. One limitation is Viper does NOT support case sensitive keys, see https://github.com/spf13/viper?tab=readme-ov-file#does-viper-support-case-sensitive-keys Expected: all lower-case keys for configuration. Example of problem, `enforcDPoP`. Various...
# NanoTDF KAS resource locator path and key identifier ## Context ### Problem 1. KAS resource locator usage varies 2. No identifier for the KAS key in a NanoTDF The...
Policy Key Access support See https://github.com/opentdf/spec/tree/main/schema/nanotdf#342323-optional-policy-key-access Added a new function lookupKidByPublicKey to the Provider in the KAS service, which looks up the key ID based on the provided public key....
Proposed format for KAS URL ``` https://kas.example.com?kid=e0 ``` The 'getURL' method has been updated to 'GetURL' in the ResourceLocator struct. Also, a 'GetKasUrl' method has been added to the NanoTDFHeader...