dendrite

History

Kegsay 29d6481842 Wait for 8h between device list updates for blacklisted servers (#1344 )		2020-08-26 15:38:21 +01:00
..
api	Fix more E2E sytests (#1265 )	2020-08-12 22:43:02 +01:00
internal	Wait for 8h between device list updates for blacklisted servers (#1344 )	2020-08-26 15:38:21 +01:00
inthttp	Process inbound device list updates from federation (#1240 )	2020-08-05 13:41:16 +01:00
producers	Summarise key change logs (#1278 )	2020-08-18 11:14:37 +01:00
storage	Use Writer in shared package (#1296 )	2020-08-25 10:29:45 +01:00
README.md	Add boilerplate for key server APIs (#1196 )	2020-07-13 16:02:35 +01:00
keyserver.go	Add FederationClient interface to federationsender (#1284 )	2020-08-20 17:03:07 +01:00

README.md

Key Server

This is an internal component which manages E2E keys from clients. It handles all the Key Management APIs with the exception of /keys/changes which is handled by Sync API. This component is designed to shard by user ID.

Keys are uploaded and stored in this component, and key changes are emitted to a Kafka topic for downstream components such as Sync API.

Internal APIs

PerformUploadKeys stores identity keys and one-time public keys for given user(s).
PerformClaimKeys acquires one-time public keys for given user(s). This may involve outbound federation calls.
QueryKeys returns identity keys for given user(s). This may involve outbound federation calls. This component may then cache federated identity keys to avoid repeatedly hitting remote servers.
A topic which emits identity keys every time there is a change (addition or deletion).

### Endpoint mappings

Client API maps /keys/upload to PerformUploadKeys.
Client API maps /keys/query to QueryKeys.
Client API maps /keys/claim to PerformClaimKeys.
Federation API maps /user/keys/query to QueryKeys.
Federation API maps /user/keys/claim to PerformClaimKeys.
Sync API maps /keys/changes to consuming from the Kafka topic.