New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
rpc: Bake and validate macaroons with external permissions #5304
rpc: Bake and validate macaroons with external permissions #5304
Conversation
4c463a1
to
8a05ff5
Compare
7cedca4
to
56651aa
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Great feature, thanks a lot for the PR!
Also nice commit structure, was very easy to review.
Did a high-level pass and left some comments. Just a heads up: As we're currently in the RC phase for v0.13.0-beta
this won't make it into that version and further reviews might be somewhat delayed. Hope to get this in soon in the v0.14.0
cycle though!
56651aa
to
9a4144a
Compare
b7fc717
to
51dacf5
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Just one comment about returning the error, otherwise LGTM 🎉
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I learned a lot while reviewing this :) Great commit structure.
I left some nit comments (mostly just about updating rest-annotations.yml and re-running make rpc
) and one question about the arguments passed to CheckMacAuth
35fb878
to
35eb7ea
Compare
5ca63da
to
cae0a34
Compare
Just needs an addition to the release notes now for 0.14! |
cae0a34
to
f07e57c
Compare
Great, rebased that and added some release notes @Roasbeef ! Also thank you for the reviews @guggero and @ellemouton ! |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Almost there, found 3 more small issues 😅
f07e57c
to
449f84d
Compare
Visit https://dashboard.github.orijtech.com?back=0&pr=5304&remote=true&repo=orbitalturtle%2Flnd to see benchmark details. |
Sorry for taking so long - made those changes @guggero |
Following step two of these directions for stateless-remote mode (lightninglabs/lightning-terminal#160), this PR:
Use case: With the new BakeMacaroon option, users of lightning terminal can bake a "super" macaroon permitting a user to use LND calls, as well as calls to the daemons Loop, Pool, and Faraday. The daemons incorporated into lightning terminal can use CheckMacaroonPermissions to validate the macaroon