[Imported from Trac: page AccountingDesign, version 6]
warner
parent
f9f7061b5c
commit
164ec4d359
|
|
@ -157,17 +157,14 @@ the most important is a pubkey identifier that indicates to whom this
|
|||
authority is being delegated. The fields we'll define for v1 are:
|
||||
|
||||
* delegate-pubkey: (string) a pubkey identifier. The holder of the
|
||||
corresponding private key is hereby authorized to use the
|
||||
authority of the signer, as attenuated by the remainder
|
||||
of the fields in this certificate.
|
||||
* signer-gets-lease: (bool) if True, the signer of this certificate will
|
||||
be given a lease on the resulting shares. A privkey
|
||||
authorized by this chain will have control over a
|
||||
single full column of the lease table (all leases
|
||||
labeled with the signer's pubkey). In a full request
|
||||
chain (which contains a signed operation as well as the
|
||||
certificate chain), there must be exactly one True
|
||||
signer-gets-lease field, to make sure that there is
|
||||
corresponding private key is hereby authorized to use the authority of the
|
||||
signer, as attenuated by the remainder of the fields in this certificate.
|
||||
* signer-gets-lease: (bool) if True, the signer of this certificate will be
|
||||
given a lease on the resulting shares. A privkey authorized by this chain
|
||||
will have control over a single full column of the lease table (all leases
|
||||
labeled with the signer's pubkey). In a full request chain (which contains
|
||||
a signed operation as well as the certificate chain), there must be
|
||||
exactly one True signer-gets-lease field, to make sure that there is
|
||||
exactly one lease on the resulting share.
|
||||
* other attenuations: TBD (things like until=, SI=, UEBhash=, operation=,
|
||||
max-size=)
|
||||
|
|
|
|||
Loading…
Reference in a new issue