Hello community!
I am juandjara, you might recognize me from the Wafrn project
I have built a small service that you can host yourself that handles storage and distribution of keys for the use cases of limited-audience posts like “followers-only“ or “only-mentioned” users. It is loosely inspired in roomy-keyserver
I’m not sure if this is a current fit with the work currently being done, but I thought it would be easy to do and would solve some of my doubts about this, so I built it.
The project includes a server, a client library for that server, and lexicons for the XRPC methods available.
Authentication is done using ATProto Service Auth Tokens, so a current session can be restricted to use of one or a couple xrpc methods only.
The project has extensive documentation for the encryption protocol used and also for the security considerations taken when building it. Also there are several instructions on how to integrate this service with an appview and with your PDS, providing usage examples and code fragments for it.
Project is available on tangled at @djara.dev/atp-keyserver at main · tangled and on codeberg at https://codeberg.org/juandjara/atp-keyserver
I would love to hear your opinions about it.
Thanks everyone for creating this amazing tech and community.
