Add a ProviderSigner interface near provider service construction (Address, Sign, Broadcast) sourced from the CLI client context/keyring. Pass it only to AEP-86 subsystems (inventory service, snapshot poster) so the security surface stays narrow. See §3.23. Whoever picks this up should also clean up the gRPC auth-header parsing bug documented in §3.20 — it's in the same file and trivially in-scope.
DoD: Signer interface in place and exercised by L-3 / L-10; merged before any AEP-86 inventory RPC ships.
Add a
ProviderSignerinterface near provider service construction (Address,Sign,Broadcast) sourced from the CLI client context/keyring. Pass it only to AEP-86 subsystems (inventory service, snapshot poster) so the security surface stays narrow. See §3.23. Whoever picks this up should also clean up the gRPC auth-header parsing bug documented in §3.20 — it's in the same file and trivially in-scope.DoD: Signer interface in place and exercised by L-3 / L-10; merged before any AEP-86 inventory RPC ships.