Initial Asymmetric Key support #48
Conversation
|
I can see the Java Test Results now. But I could not find the ScalaJS browser based ones. |
|
This is getting close to something that could be checked in (It's up to maintainers to decide how to proceed). |
Thanks, that's fantastic! I think there's still a couple things missing:
Besides that, this PR is very large. Probably more code here than in the entire repository right now 😉 rather than review it all at once, I will do it in the following order:
In fact, if you wouldn't mind splitting the PR into smaller PRs, then we could even merge each part as it's reviewed. (1) and (2) deserve a focused review, because they are introducing new public APIs. (3) should be straightforward implementations and you are very thorough with tests, so I have less concerns there. Let me know what you think. Thanks again for the tremendous effort here, this is a great addition to this library :) |
|
I think it would be quite difficult to cut this into smaller PRs because these work as a whole with the test suite. Signing and verifying just go together. Thinking of this as a sculpture: one has to first get the general form and then hack away to get the details smoothed out. Would it work if I made a PR to a branch on this repo, and then you could make the changes the way you see fit? I could then comment on those as future PRs with feedback on how it fits with the httpSig implementation I am writing. You are right the Node.js implementation is missing. I have nearly no experience of node.js . I think for someone who does that would be very easy - now that the tests are in place. The API definitely needs to be looked at carefully. What I did got things going which is useful as it helps one test better ideas. I don't have an opinions on using scala-js-dom or internalising the API. I just used the dom to reduce my work (if I had added that the PR would be even bigger :-) But it should be easy I think to internalise it and even to improve it. I think you have experience with that so you'll find that quite easy to do. It could also be added as a todo in the issue DB for a new PR, just as node js support could. My best contribution I think would be to start using it to see what is missing when used. I think one should call this "gestalt programming": get the whole working, then refine the smaller pieces, once the whole is understood to work. |
I agree, I didn't mean to suggest that we separate signing and verifying :) but rather that we focus separately on interface/API and implementation/testing, since I believe those are the two important parts of this PR. As you say yourself, the API deserves a careful look, and I thought that may be best served in its own PR, of course taking all the learnings from the "gestalt programming" you have done so diligently :)
It sounds like you won't be able to work on this, which is no problem 👍 unfortunately, I will not have time to work on this right now.
We can keep your PR open, and it can be picked up at any time in the future by you, me, or anyone else.
That sounds great :) |
|
The last commit adds Ed25519 support only for Java as discussed in issue #58 |
set up continuous integration
|
The branch for this PR is at https://github.com/bblfish/bobcats and needs to be updated with recent changes here. I'll close this here, and re-open an PR when I succeed it making the branches mergeable again. |
This is a PR for asymmetric key support.