Skip to content

Refactor note about controller property usage. #87

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Sep 8, 2024
Merged

Refactor note about controller property usage. #87

merged 1 commit into from
Sep 8, 2024

Conversation

msporny
Copy link
Member

@msporny msporny commented Sep 2, 2024
edited by pr-preview bot
Loading

This PR is an attempt to address issue #57 by refactoring the note about how the controller property is used.

Preview | Diff

@msporny msporny added the editorial This item is editorial in nature. label Sep 2, 2024
@msporny msporny mentioned this pull request Sep 2, 2024
Closed
decentralgabe
decentralgabe reviewed Sep 2, 2024
View reviewed changes
index.html
are authorized to perform certain actions associated with the resource with
which it is associated. To ensure explicit security guarantees, the
[=controller=] of a [=verification method=] cannot be inferred from the
[=controller document=]. It is necessary to explicitly express the identifier of
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is this statement asserting that if a verification method does not have a controller property one cannot assume the controller is the controller of the document itself? that does not seem correct

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rather, I think it says that the lack of a controller property, and any assumption that might be made stemming from this lack, is an inherent security issue.

selfissued
selfissued approved these changes Sep 2, 2024
View reviewed changes
Copy link
Collaborator

@selfissued selfissued left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is far less confusing what the text that it replaces.

@msporny msporny force-pushed the msporny-vm-controllers branch from a57d66c to bce3f0d Compare September 6, 2024 21:24
@msporny
Copy link
Member Author

msporny commented Sep 8, 2024

Editorial, multiple reviews, changes requested and made, no objections, merging.

@msporny msporny merged commit bc0bace into main Sep 8, 2024
1 check passed
@msporny msporny deleted the msporny-vm-controllers branch September 8, 2024 22:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dlongley dlongley dlongley approved these changes

@selfissued selfissued selfissued approved these changes

@jandrieu jandrieu Awaiting requested review from jandrieu

@longpd longpd Awaiting requested review from longpd

@iherman iherman Awaiting requested review from iherman

@dmitrizagidulin dmitrizagidulin Awaiting requested review from dmitrizagidulin

@TallTed TallTed Awaiting requested review from TallTed

@KDean-Dolphin KDean-Dolphin Awaiting requested review from KDean-Dolphin

@brentzundel brentzundel Awaiting requested review from brentzundel

+2 more reviewers

@decentralgabe decentralgabe decentralgabe approved these changes

@David-Chadwick David-Chadwick David-Chadwick approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

editorial This item is editorial in nature.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@msporny @dlongley @TallTed @David-Chadwick @decentralgabe @selfissued