Hello all,
We were looking into deploying a permissioned Daml Ledger using the Canton infrastructure and wanted to delve deeper into the specifics of identity management in such a setting. As described in the documentation here, it describes a:
Domain Topology Manager Request Service - Any topology transaction upload from the domain service is processed through the request service. The request service is configured with a request strategy. The request strategy inspects the topology transaction and decides how to deal with an topology transaction. Right now, three strategies have been implemented: auto-approve for un-permissioned domains, queue for permissioned domains (where transactions are just stored for later decision in the Request Store ) and reject for closed domains.
For our usecase, we could want to use the “queue” request strategy. Where is this configured exactly? Does the topology manager sit inside the canton image or is it a seperate service?
If I understand correctly, topology transaction changes are submitted by participants to the domain, where they are then added to a request store. These requests should then be accessible and managed through the Domain Topology Manager Request Service. However, I had a look at the Canton Administrative APIs and could find no documentation for such a service.