padreug

0 followers · 0 following

• RSS feed
• Atom feed
• SSH keys
• GPG keys

• Joined on 2025-12-31

Repositories

6

Projects Packages Public activity Starred repositories

padreug created pull request aiolabs/spirekeeper#28 2026-06-19 21:23:29 +00:00

docs(pairing): TTL + token-revoke now enforced post-bind (nsecbunkerd#27)

padreug created branch docs/ttl-revoke-enforced-post-bind in aiolabs/spirekeeper 2026-06-19 21:23:14 +00:00

padreug pushed to docs/ttl-revoke-enforced-post-bind at aiolabs/spirekeeper 2026-06-19 21:23:14 +00:00

b193f6262d docs(pairing): TTL + token-revoke now enforced post-bind (nsecbunkerd#27)

padreug pushed to dev at aiolabs/nsecbunkerd 2026-06-19 21:09:44 +00:00

0b9ffe8ca6 test(acl)(#29): DB-backed integration tests for checkIfPubkeyAllowed

padreug deleted branch issue-29-acl-integration-tests from aiolabs/nsecbunkerd 2026-06-19 21:09:44 +00:00

padreug merged pull request aiolabs/nsecbunkerd#33 2026-06-19 21:09:42 +00:00

test(acl): DB-backed integration tests for checkIfPubkeyAllowed (#29)

padreug closed issue aiolabs/nsecbunkerd#29 2026-06-19 21:09:42 +00:00

Add a DB-backed test harness + integration tests for checkIfPubkeyAllowed

padreug deleted branch docs-migration-runbook from aiolabs/nsecbunkerd 2026-06-19 21:09:29 +00:00

padreug pushed to dev at aiolabs/nsecbunkerd 2026-06-19 21:09:28 +00:00

14e20d50d4 docs: add migration & DB-maintenance runbook (never full-wipe nsecbunker.db)

padreug merged pull request aiolabs/nsecbunkerd#32 2026-06-19 21:09:27 +00:00

docs: migration & DB-maintenance runbook (never full-wipe nsecbunker.db)

padreug created pull request aiolabs/nsecbunkerd#33 2026-06-19 21:04:03 +00:00

test(acl): DB-backed integration tests for checkIfPubkeyAllowed (#29)

padreug created branch issue-29-acl-integration-tests in aiolabs/nsecbunkerd 2026-06-19 21:03:44 +00:00

padreug pushed to issue-29-acl-integration-tests at aiolabs/nsecbunkerd 2026-06-19 21:03:44 +00:00

bbcc9cd998 test(acl)(#29): DB-backed integration tests for checkIfPubkeyAllowed

padreug created pull request aiolabs/nsecbunkerd#32 2026-06-19 20:58:29 +00:00

docs: migration & DB-maintenance runbook (never full-wipe nsecbunker.db)

padreug created branch docs-migration-runbook in aiolabs/nsecbunkerd 2026-06-19 20:58:17 +00:00

padreug pushed to docs-migration-runbook at aiolabs/nsecbunkerd 2026-06-19 20:58:17 +00:00

14e20d50d4 docs: add migration & DB-maintenance runbook (never full-wipe nsecbunker.db)

padreug closed issue aiolabs/nsecbunkerd#12 2026-06-19 20:55:50 +00:00

Trim applyToken SigningCondition fan-out once override layer is rarely-consulted

padreug closed issue aiolabs/nsecbunkerd#25 2026-06-19 20:55:39 +00:00

Design discussion / RFC: enforce token + grant lifecycle at sign time (the root behind #24)

padreug closed issue aiolabs/nsecbunkerd#24 2026-06-19 20:55:34 +00:00

Token expiresAt (TTL) is not enforced post-bind — sign-time ACL ignores it

padreug commented on issue aiolabs/nsecbunkerd#12 2026-06-19 20:55:22 +00:00

Trim applyToken SigningCondition fan-out once override layer is rarely-consulted

Superseded by #27 (merged + deployed). This issue asked to trim the applyToken SigningCondition fan-out once the override layer became rarely-consulted — #27 went further and **removed it…