DNP_DAPPMANAGER icon indicating copy to clipboard operation
DNP_DAPPMANAGER copied to clipboard

Published 20 hours ago verified publisher icon dappnode

Generate JWTs on Dappmanager

Open dappnodedev opened this issue 6 months ago • 0 comments

Instead of hardcoding the JWT secrets in each of the clients, we could make the dappmanager responsible for their generation and distribution. The process is defined below:

  1. On start, dappmanager generates a random JWT per network and stores them

  2. There must be an allow list that defines which services have access to each secret. This could be inferred from the list of clients to be shown in the stakers

3A. The Dappmanager will expose an API endpoint that will return the secret in case that the request source is one of the allowed ones

3B. The Dappmanager will inject the value of that secret into the compose file of any client included in the allow list at installation time

  1. A function must be defined in the https://github.com/dappnode/staker-package-scripts repo so that the clients can use the JWT

dappnodedev avatar Aug 07 '24 11:08 dappnodedev