com.publicdomainrelay.temp.compute.config.wif.simple

johnandersen777.bsky.social

Schema Diff

+17 -6

From

CID
bafyreibird2dbea...
Indexed At
2026-05-17 20:30 UTC
View this version

To

CID
bafyreie2xrphlx6...
Indexed At
2026-05-17 20:59 UTC
View this version

Compatibility Analysis

Backward Compatible

Backward compatible. 2 non-breaking changes.

Non-Breaking Changes (2)
  • AddedVertex AddedVertex { vertex_id: "com.publicdomainrelay.temp.compute.config.wif.simple:body.accept_path" }
  • AddedEdge AddedEdge { src: "com.publicdomainrelay.temp.compute.config.wif.simple:body", tgt: "com.publicdomainrelay.temp.compute.config.wif.simple:body.accept_path", kind: "prop", name: Some("accept_path") }

Migration Guidance

Added Elements

  • AddedVertex { vertex_id: "com.publicdomainrelay.temp.compute.config.wif.simple:body.accept_path" }

Additional Notes

  • Non-breaking: AddedEdge { src: "com.publicdomainrelay.temp.compute.config.wif.simple:body", tgt: "com.publicdomainrelay.temp.compute.config.wif.simple:body.accept_path", kind: "prop", name: Some("accept_path") }
1 1 
{
2 2 
  "id": "com.publicdomainrelay.temp.compute.config.wif.simple",
3 3 
  "defs": {
4 4 
    "main": {
5 5 
      "key": "tid",
6 6 
      "type": "record",
7 7 
      "record": {
8 8 
        "type": "object",
9 9 
        "required": [
10 + 
          "accept_path",
10 11 
          "issuer_uri",
11 12 
          "to_issue",
12 13 
          "token_path",
13 14 
          "url_path",
14 15 
          "url_route",
15 16 
          "subject"
16 17 
        ],
17 18 
        "properties": {
18 19 
          "subject": {
19 - 
            "type": "string"
20 + 
            "type": "string",
21 + 
            "description": "The subject of tokens you request MUST follow this format."
20 22 
          },
21 23 
          "to_issue": {
22 - 
            "type": "string"
24 + 
            "type": "string",
25 + 
            "description": "The role of the token you will be issued within this compute providers RBAC, this role will allow for token exchange. You don't care about it unless you might be allowed to do other things. Inspect their RBAC policy if you care."
23 26 
          },
24 27 
          "url_path": {
25 - 
            "type": "string"
28 + 
            "type": "string",
29 + 
            "description": "Path on disk to file containing URL of token issuance service for requesting subsequent tokens from."
26 30 
          },
27 31 
          "url_route": {
28 - 
            "type": "string"
32 + 
            "type": "string",
33 + 
            "description": "The route against $(cat url_path) you can request new tokens from."
29 34 
          },
30 35 
          "issuer_uri": {
31 - 
            "type": "string"
36 + 
            "type": "string",
37 + 
            "description": "OIDC issuer URI, rfp actor configures their RBAC to trust this"
32 38 
          },
33 39 
          "token_path": {
34 - 
            "type": "string"
40 + 
            "type": "string",
41 + 
            "description": "Workload identity token which can be used with token issuance service for requesting subsequent tokens to talk to other services."
42 + 
          },
43 + 
          "accept_path": {
44 + 
            "type": "string",
45 + 
            "description": "Path on disk to the "
35 46 
          }
36 47 
        }
37 48 
      },
38 49 
      "description": "Simple Workload Identity Federation parameters used by the requester to obtain a token authorized for the provider."
39 50 
    }
40 51 
  },
41 52 
  "$type": "com.atproto.lexicon.schema",
42 53 
  "lexicon": 1
43 54 
}

Compare Other Versions

Lexicon Garden

@