Struct EventVerifierConfig 

pub struct EventVerifierConfig {
    pub verifying_keys: Arc<HashMap<String, VerifyingKey>>,
    pub hmac_keys: Arc<HashMap<String, Vec<u8>>>,
    pub require_signed: bool,
}

Verification configuration sourced once at startup.

Cheap to clone (Arc-wrapped keyring); pass into per-event hot loops.

Fields

verifying_keys: Arc<HashMap<String, VerifyingKey>>

signer_kid → VerifyingKey map. Empty when no verification key file is configured.

hmac_keys: Arc<HashMap<String, Vec<u8>>>

HMAC keys placeholder — currently always empty (supervisor signs Ed25519 only). Wired so the verify_signed_event_envelope call surface stays algorithm-agnostic.

require_signed: bool

When true, raw CloudEventV1 payloads (no signature wrapper) are rejected. Mirrors CELLOS_EVENT_REQUIRE_SIGNED=1.

Implementations

impl EventVerifierConfig

pub fn from_env() -> Result<Self>

Read configuration from process environment.

Variables:

• CELLOS_EVENT_VERIFY_KEYS_PATH: JSON keyring (kid → base64url ed25519 pubkey). Loaded with O_NOFOLLOW on Unix (mirrors SEC-15b).
• CELLOS_EVENT_REQUIRE_SIGNED: 1/true/yes/on → require every event to arrive in a signed envelope.

Returns Ok(default) when no key file is configured. Returns an error when the file is configured but cannot be loaded — fail-closed so a misconfigured operator does not silently accept unsigned traffic.

pub fn has_keys(&self) -> bool

Have any keys been loaded?

Trait Implementations

impl Clone for EventVerifierConfig

fn clone(&self) -> EventVerifierConfig

Returns a duplicate of the value.

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source.

impl Default for EventVerifierConfig

fn default() -> EventVerifierConfig

Returns the “default value” for a type.