Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update: Key Injection Readme #29

Merged
merged 4 commits into from
May 3, 2024
Merged

Update: Key Injection Readme #29

merged 4 commits into from
May 3, 2024

Conversation

hitchhooker
Copy link
Contributor

This PR adds a comprehensive Readme file explaining the key injection process in Polkadot nodes using an Ansible script. The Readme file provides essential information about different key types, their purposes, and the step-by-step process of key injection in Polkadot nodes. This documentation will be helpful for users who are looking to set up and configure a node in the Polkadot network.

@cla-bot-2021
Copy link

cla-bot-2021 bot commented Apr 14, 2023

User @hitchhooker, please sign the CLA here.

@BulatSaif
Copy link
Contributor

Thank you, @hitchhooker, for your contribution. Your documentation is very helpful. However, I would suggest adding a note about the security considerations when using an Ansible role for managing the session key. This is important to address any potential misconceptions regarding the recommended way to manage keys on Polkadot.

Instead of assuming that this method is the recommended approach, it would be beneficial to mention that the recommended way to manage keys on Polkadot is by calling the author_rotateKeys RPC method. It's important to highlight that using an Ansible role for managing the session key is possible, but it requires careful attention to security.

For Testnets, managing the session key with Ansible is a common practice. However, when it comes to Mainnet, I would recommend paying closer attention to the following security considerations before using this role:

Secure storage of keys in Ansible variables: Ensure that keys are stored in Ansible variables in an encrypted format. This helps protect them from unauthorized access.

Unique keys for each node: It is crucial to avoid applying the same session key to multiple nodes. If two nodes share the same session key, they can be perceived as malicious, potentially leading to penalties such as being declared as a child or even being slashed.

By including this note about the security considerations, readers will be better informed about the recommended approach and the necessary precautions when using an Ansible role for managing the session key on Polkadot.

@stojanov-igor
Copy link

The pull request has been stale for more than a year.

@hitchhooker Can you add the notes that @BulatSaif is asking for?

@hitchhooker
Copy link
Contributor Author

Thank you for notifying. I had completely missed the reply here. Will take a look on it.

@BulatSaif BulatSaif merged commit 6e1e265 into paritytech:main May 3, 2024
1 of 2 checks passed
@BulatSaif
Copy link
Contributor

@hitchhooker, Thank you for your contribution!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BulatSaif BulatSaif BulatSaif approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hitchhooker @BulatSaif @stojanov-igor