> Does anyone know why this was omitted? Verifying a hash is straightforward.
A CID for a file is not a simple hash, it represents the root of a merkledag of a file tree and chunks of the file. Getting the dag metadata requires a p2p connection under normal circumstances. A public HTTP gateway, given the CID, returns file content, not the file tree or merkledag the CID is a hash over.
It's doable, but totally reasonable that they didn't include this in 1.0.
A CID for a file is not a simple hash, it represents the root of a merkledag of a file tree and chunks of the file. Getting the dag metadata requires a p2p connection under normal circumstances. A public HTTP gateway, given the CID, returns file content, not the file tree or merkledag the CID is a hash over.
It's doable, but totally reasonable that they didn't include this in 1.0.
further reading:
https://dag.ipfs.io/
https://cid.ipfs.io/