Ariadne Conill 🐰Mar 16
capsudo provides a nice way of doing cross-container RPC: https://codeberg.org/kaniini/capsudo-rpc-demo
capsudo-rpc-demo

A demo of using capsudo with docker to do RPCs.

Codeberg.org
Show threadPoliorcetics
@ariadne having not looked too much into capsudo, I think I get the gist but what is happening in the delegator command line with the two capsudo calls ? (Is the second even a call ?)
Mar 16 at 11:30pmWeb
Show threadAriadne Conill 🐰Mar 16

@poliorcetics the delegator receives access to a widely-scoped capability factory by way of accessing /run/capsudo-private/rpc to mint capabilities.

it then creates a new factory which narrows that capability to the equivalent of {/run/capsudo-private/rpc, echo-upper} by wrapping it in an invocation.

Show threadPoliorceticsMar 16
@ariadne ohhh, okay, I missed that the first part was using public and the second private, thanks!