signrpc+rpcserver: add signer macaroon permissions
This commit is contained in:
parent
9a73b9be78
commit
95226771ed
@ -38,6 +38,10 @@ var (
|
||||
Entity: "signer",
|
||||
Action: "generate",
|
||||
},
|
||||
{
|
||||
Entity: "signer",
|
||||
Action: "read",
|
||||
},
|
||||
}
|
||||
|
||||
// macPermissions maps RPC calls to the permissions they require.
|
||||
@ -50,6 +54,14 @@ var (
|
||||
Entity: "signer",
|
||||
Action: "generate",
|
||||
}},
|
||||
"/signrpc.Signer/SignMessage": {{
|
||||
Entity: "signer",
|
||||
Action: "generate",
|
||||
}},
|
||||
"/signrpc.Signer/VerifyMessage": {{
|
||||
Entity: "signer",
|
||||
Action: "read",
|
||||
}},
|
||||
}
|
||||
|
||||
// DefaultSignerMacFilename is the default name of the signer macaroon
|
||||
|
@ -115,6 +115,10 @@ var (
|
||||
Entity: "invoices",
|
||||
Action: "read",
|
||||
},
|
||||
{
|
||||
Entity: "signer",
|
||||
Action: "read",
|
||||
},
|
||||
}
|
||||
|
||||
// writePermissions is a slice of all entities that allow write
|
||||
|
Loading…
Reference in New Issue
Block a user