[Design] How to make sure only the proofset payer (the client) can store data in their proofset?

[jennijuju]

" I want to make sure that only I can upload data to the storage space that i paid for.:"

In the current service contracts, SPs are the ones creating proofset and addroots. We need to figure out how to add access control, so that only the client who bought the proofset can put data in.

Alternatives:

• add access control feature to the service contract
• client signs a message to authorize an addRoot when calling SynapseStorage.upload; SPs must include this signed message when calling addRoot on chain, and the service contract will validate

[jennijuju]

other than the request from Tim - some access control feature in the service is needed for the CDN add on as well - as its purchased at proof set level

[jennijuju]

@rjan90 i think this is done?

[rvagg]

This is done by using a signed blob passed through extraData from PDPVerifier to PandoraService which will reject and revert if the signature doesn't match the wallet.