mleku/next.orly.dev
1
0
Fork 1
Code Issues 5 Pull Requests Actions Packages Projects Releases Wiki Activity
Files
ea4a54c5e7ae254b90156c6b423b8bfce8795cb4
next.orly.dev/docs
History
mleku ea4a54c5e7 Add Cashu blind signature access tokens (NIP-XX draft) 
Implements privacy-preserving bearer tokens for relay access control using
Cashu-style blind signatures. Tokens prove whitelist membership without
linking issuance to usage.

Features:
- BDHKE crypto primitives (HashToCurve, Blind, Sign, Unblind, Verify)
- Keyset management with weekly rotation
- Token format with kind permissions and scope isolation
- Generic issuer/verifier with pluggable authorization
- HTTP endpoints: POST /cashu/mint, GET /cashu/keysets, GET /cashu/info
- ACL adapter bridging ORLY's access control to Cashu AuthzChecker
- Stateless revocation via ACL re-check on each token use
- Two-token rotation for seamless renewal (max 2 weeks after blacklist)

Configuration:
- ORLY_CASHU_ENABLED: Enable Cashu tokens
- ORLY_CASHU_TOKEN_TTL: Token validity (default: 1 week)
- ORLY_CASHU_SCOPES: Allowed scopes (relay, nip46, blossom, api)
- ORLY_CASHU_REAUTHORIZE: Re-check ACL on each verification

Files:
- pkg/cashu/bdhke/: Core blind signature cryptography
- pkg/cashu/keyset/: Keyset management and rotation
- pkg/cashu/token/: Token format with kind permissions
- pkg/cashu/issuer/: Token issuance with authorization
- pkg/cashu/verifier/: Token verification with middleware
- pkg/interfaces/cashu/: AuthzChecker, KeysetStore interfaces
- pkg/bunker/acl_adapter.go: ORLY ACL integration
- app/handle-cashu.go: HTTP endpoints
- docs/NIP-XX-CASHU-ACCESS-TOKENS.md: Full specification

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2025-12-28 11:30:11 +02:00
..
plans
Add issue templates, CI workflows, and decentralization plan
2025-12-14 20:50:49 +01:00
ADAPTIVE_RATE_LIMITING_PLAN.md
Add PID-controlled adaptive rate limiting plan for relay operations
2025-12-11 22:17:29 +01:00
applesauce-reference.md
Interim release: documentation updates and rate limiting improvements
2025-12-12 08:47:25 +01:00
BUILD_PLATFORMS.md
Implement multi-platform build system with pure Go support
2025-11-04 20:29:19 +00:00
DEPLOYMENT_TESTING.md
Update dependencies and enhance deployment scripts
2025-10-24 21:03:44 +01:00
example-policy.json
Add default security configuration and policy recipes
2025-12-01 21:39:28 +00:00
example-policy.sh
Enhance policy system with global rules and age validation
2025-10-16 12:41:32 +01:00
FIND_IMPLEMENTATION_PLAN.md
develop registration ratelimit mechanism
2025-11-21 19:13:18 +00:00
FIND_INTEGRATION_SUMMARY.md
develop registration ratelimit mechanism
2025-11-21 19:13:18 +00:00
FIND_RATE_LIMITING_MECHANISMS.md
develop registration ratelimit mechanism
2025-11-21 19:13:18 +00:00
go-reference-type-analysis.md
implement messages and operations for FIND
2025-11-08 08:54:58 +00:00
GRAPH_IMPLEMENTATION_PHASES.md
add first draft graph query implementation
2025-12-04 09:28:13 +00:00
GRAPH_QUERY_IMPLEMENTATION_PLAN.md
add first draft graph query implementation
2025-12-04 09:28:13 +00:00
immutable-store-optimizations-gpt5.md
implement event table subtyping for small events in value log
2025-11-14 12:15:52 +00:00
LIBSECP256K1_DEPLOYMENT.md
fix workflow to fetch libsecp256k1.so
2025-11-25 06:03:22 +00:00
MEMORY_OPTIMIZATION_ANALYSIS.md
Decompose handle-event.go into DDD domain services (v0.36.15)
2025-12-25 05:30:07 +01:00
MULTI_PLATFORM_BUILD_SUMMARY.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
names.md
fix go.mod
2025-11-27 22:07:32 +00:00
NEO4J_BACKEND.md
Refactor database configuration to use centralized struct
2025-12-02 13:30:50 +00:00
NIP-XX-CASHU-ACCESS-TOKENS.md
Add Cashu blind signature access tokens (NIP-XX draft)
2025-12-28 11:30:11 +02:00
NIP-XX-Cluster-Replication.md
Add cluster replication configuration and enhance event handling
2025-11-03 19:55:14 +00:00
NIP-XX-distributed-directory-consensus.md
Add cluster replication features and membership management
2025-11-03 19:02:20 +00:00
NIP-XX-GRAPH-QUERIES.md
add first draft graph query implementation
2025-12-04 09:28:13 +00:00
orly-favicon.png
Enhance delete event handling and logging
2025-10-10 20:36:53 +01:00
orly.png
Add orly.png image to web and docs directories
2025-10-10 10:30:48 +01:00
POLICY_BUG_FIX_SUMMARY.md
Add ORLY_POLICY_PATH for custom policy file location
2025-12-14 18:36:04 +01:00
POLICY_CONFIGURATION_REFERENCE.md
Add policy configuration reference documentation
2025-12-02 18:12:11 +00:00
POLICY_EXAMPLE.json
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
POLICY_FINAL_FIX_SUMMARY.md
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
POLICY_FIX_SUMMARY.md
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
POLICY_README.md
Update policy management and documentation
2025-10-21 21:46:07 +01:00
POLICY_TROUBLESHOOTING.md
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
POLICY_USAGE_GUIDE.md
Add extensive tests and improve policy configuration handling
2025-12-02 07:51:59 +00:00
POLICY_VERIFICATION_REPORT.md
fix policy to ignore all req/events without auth
2025-11-21 15:28:07 +00:00
PUREGO_BUILD_SYSTEM.md
Add serve mode, fix binary tags, document CLI tools, improve Docker
2025-11-26 09:52:29 +00:00
PUREGO_MIGRATION_COMPLETE.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
RATE_LIMITING_TEST_REPORT_BADGER.md
Interim release: documentation updates and rate limiting improvements
2025-12-12 08:47:25 +01:00
RATE_LIMITING_TEST_REPORT_NEO4J.md
rate limiter test report
2025-12-12 21:59:00 +01:00
README_STRFRY_ANALYSIS.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
reiser4-optimizations-analysis.md
implement event table subtyping for small events in value log
2025-11-14 12:15:52 +00:00
RELAY_TESTING_GUIDE.md
Add closing section to RELAY_TESTING_GUIDE.md for improved clarity
2025-11-05 05:54:47 +00:00
strfry_websocket_analysis.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
strfry_websocket_code_flow.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
strfry_websocket_quick_reference.md
Add comprehensive documentation for CLAUDE and Nostr WebSocket skills
2025-11-06 16:18:09 +00:00
WASM_MOBILE_BUILD_PLAN.md
Update nostr to v1.0.7 with cross-platform crypto support
2025-12-02 11:21:28 +00:00
WEB_UI_EVENT_TEMPLATES.md
Add event template generator with 140+ Nostr event kinds (v0.36.2)
2025-12-16 10:39:02 +01:00
websocket-req-comparison.md
Refactor export functionality in App.svelte to support both GET and POST methods for event exports, enhancing flexibility in user permissions. Update server-side handling to accommodate pubkey filtering and improve response handling for file downloads. Adjust UI components to reflect these changes, ensuring a seamless user experience.
2025-10-09 14:55:29 +01:00