Expand description
Remote connection client for the Eidetica service.
RemoteConnection connects to an Eidetica service server and forwards
storage operations as RPC calls. It backs the RemoteBackend implementation
of the Backend seam and is not itself a BackendImpl.
Authentication uses the client-side-signing flow described in the Service
Architecture doc § Security Model: RemoteConnection::trusted_login drives
the daemon’s TrustedLoginUser / TrustedLoginProve challenge-response,
decrypts the user’s root signing key in-process, and signs the challenge
locally. The daemon never sees the password or the plaintext signing key.
After login, subsequent backend operations travel inside the Authenticated
envelope and are dispatched against the user’s identity; the daemon gates
each one per-tree against the target database’s auth settings.
Structs§
- Remote
Connection - A connection to a remote Eidetica service server over a Unix domain socket.