Docs — RPC protocol

Question

Docs — RPC protocol

nichoth opened this issue 4 years ago · 3 comments

Hey. I had a question that I couldn't find here or in the protocol guide. It says that peers replicate by calling createHistoryStream via RPC, but I was curious about where the permissions for RPC are created. For example, you wouldn't be able to call .publish on a remote server, to publish a message under the remote id.

Answer 1 · 2020-10-19T21:09:02.000Z

Hi @nichoth,

Plugins specify permissions:
https://github.com/ssb-js/secret-stack/blob/main/PLUGINS.md#pluginpermissions-object-optional

To make a method public, it should be included in the anonymous array in the permissions object.
e.g. the example in the above linked file makes a localPeers method public:

  permissions: {
    anonymous: [ 'localPeers' ]                                         
  },

createHistoryStream has it specified here:
https://github.com/ssbc/ssb-db/blob/master/index.js#L50

anonymous is the permission group that all remote callers are in by default. The local user and ssb-master-authenticated callers can call any method by default.

Answer 2 · 2020-10-19T22:16:04.000Z

thanks @clehner !

Answer 3 · 2021-06-02T18:00:00.000Z

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?