Nano-node: RPC proposals

Created on 3 Jan 2017  ·  15Comments  ·  Source: nanocurrency/nano-node

Most helpful comment

All 15 comments

For invalid block you can seek if there is any "type" set. It' the method I'm using in Explorer to reveal invalid block.

New proposal:

  1. Add RPC command to retrieve release version e.g. 7.5.0

New proposal:
RPC to see blocks downloaded but not yet in the ledger. Perhaps just expand response of { "action": "block_count" }

New proposal:
RPC to see pending incoming transactions for account

Additional

Additional

  • RPC command to stop bootstrap

Additional

  • RPC command to rebroadcast block

Regarding the "Username and Password authentication for RPC" proposal (and apologies in advance if this is a dumb question, RaiBlocks/Nano newbie here..):

Is the rai_node RPC similar to JSONRPC from here https://github.com/spesmilo/electrum-docs/blob/master/cve.rst ?
(TLDR: the BTC Electrum wallet had a potential vulnerability whereby, if you opened a web browser and Electrum at the same time, some malicious webpage's JS code could probe the localhost RPC ports; since the request came from localhost, the wallet falsely believed they were legitimate user requests, they were not filtered/ignored like external access would have been)

If so, should the implementation of the password protection be prioritized ? I looked at this repo's issues, at the wiki, but could not find anything definite; thanks to anyone who can shed light on this.

@ttcoder FWIW I'm going to submit a PR soon with TLS + client certificates, which may be interesting for some. When configured with client certs, only users with a trusted client cert will be able to connect. A user/pwd sign-in API sounds useful too.

I think these were all implemented, otherwise we can make new issues.

Was this page helpful?
0 / 5 - 0 ratings

Related issues

stefonarch picture stefonarch  ·  30Comments

OriginalTaco picture OriginalTaco  ·  13Comments

cryptocode picture cryptocode  ·  17Comments

Jackoclypse picture Jackoclypse  ·  40Comments

Marc477 picture Marc477  ·  16Comments