upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-06-13 18:50:47 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions 9
nextcloud/lib
History
Micke Nordin 3b5107bc96 feat(http-sig): OCM Ed25519 keys, JWKS endpoint, http-sig capability 
OCM dual-stack integration of RFC 9421 alongside the existing cavage
publicKey path:

- OCMSignatoryManager: Ed25519 active/pending/retiring slot rotation
  backed by numbered pool appkeys, getRemoteKey for inbound JWK lookup
  with per-origin cache + cache-miss refetch, and getLocalEd25519Jwks
  for the JWKS endpoint.
- Rfc9421SignatoryManager: per-call wrapper that swaps in the Ed25519
  signatory and toggles `rfc9421.format`.
- OCMJwksHandler: serves /.well-known/jwks.json (RFC 7517) when signing
  is enabled.
- OCMDiscoveryService: advertises `http-sig` in capabilities when
  signing is enabled, and picks the signature scheme on outbound based
  on the remote's advertised capabilities.
- Application.php: register the JWKS well-known handler.

Signed-off-by: Micke Nordin <kano@sunet.se>
2026-05-27 11:03:55 +02:00
..
composer feat(wfe): add runtime operations 2026-05-18 12:23:49 +02:00
l10n fix(l10n): Update translations from Transifex 2026-05-26 00:23:14 +00:00
private feat(http-sig): OCM Ed25519 keys, JWKS endpoint, http-sig capability 2026-05-27 11:03:55 +02:00
public fix(http): avoid iconv for header ascii fallback 2026-05-22 14:58:14 +02:00
unstable feat(wfe): add runtime operations 2026-05-18 12:23:49 +02:00
base.php refactor: use strict operator 2026-04-30 00:51:29 +02:00
versioncheck.php ci(PHP): Test against 8.5 on CI 2025-12-19 15:34:34 +01:00