Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Add support for application addresses with whitelisting
See original GitHub issueThis has to do with governing which addresses a gaia hub will accept writes on behalf of, which is a necessity for operating private hubs (https://github.com/blockstack/gaia#private-hubs)
Currently, the config.json file governs address whitelisting in Gaia. If a user wishes to restrict the set of addresses which can write to the gaia hub, this can pose a major usability issue.
Basically, if you want to whitelist an “identity address” like aaron.id’s 1EJh2y3xKUwFjJ8v29a2NRruPJ71neozEE – you cannot actually derive, say, my application address for app foo from the ID (or even the xpub, because these are all bip32 hardened indexes)
There’s a couple of approaches we could take:
-
Add endpoint to the gaia hub which will allow the blockstack-browser to modify the whitelist. This would require the notion of “admin addresses” which can modify the whitelist (you wouldn’t want applications, for example, to have this access)
-
blockstack.jsattaches a “proof” in the authentication header on gaia hub writes. This proof would show that the app address is derived from the identity address. The auth response token already proves this fact (by signing the JWT with the identity key, and including the app private key) — however, this would require (1) sharing the auth response token and (2) the app’s transit key, which we should not do. Instead, we’d probably want to include this as a new field in the auth response as a JWT withpayload = { appPublicKey, identityPublicKey }andsigner = identityPublicKey
I’m in favor of (2), as that’s probably the simplest to implement, and it keeps the gaia hub basically stateless (you would just whitelist identity addresses, and then the application addresses for those identities would follow from there.)
Would love to hear thoughts on this – tagging some people who I remember having views on this: @jcnelson @jackzampolin @larrysalibra @cwackerfuss
Issue Analytics
- State:
- Created 6 years ago
- Comments:11 (11 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
The “proof” is a signed assertion that a given public-key-hash is a child of the signer’s pub-key-hash, which should be the identity address.
For example, an assertion that
1Jrfd4ZHTd7ks5PdRHzBvmehZZVFvUFobRis a child of16LPutBwZQXy9BypANh1q2y5Z5fpwrmifp(which you can find out from my profile.json-- https://core.blockstack.org/v1/users/aaron.blockstack_berlin.id) – you need to be able to do this if you want to run a gaia hub which only authenticates requests from “16LPutBwZQXy9BypANh1q2y5Z5fpwrmifp” and also it’s child-keys.We currently use really long lived tokens – I agree this is a problem, and should be addressed, but I think that’s somewhat separate – here I’m not trying to authenticate, I’m just trying to get the gaia hub to associate an app address with a given identity address.
This has shipped!