Initialize every Aragon CLI download with it's own seed phrase #758
Comments
|
Thanks for opening your first issue in aragonCLI! Someone will circle back soon ⚡ |
|
I strongly oppose this, because it breaks the UX of how the bundled chain works (it comes with specific accounts holding permissions in already deployed repos / etc). Rather, the CLI should prompt you to use your own web3 provider (whether that's a |
|
Didn't know that would break the UX of the devchain package. Your suggestion sounds great though as it would totally resolve the Issue. That would be awesome. In addition, the docs on hack.aragon should have big bold warnings about the mnemonic seed phrase like the Truffle docs do |
|
+1 on the cli prompt. It took me a while to figure out how private keys worked. This would really improve the UX. Finding the |
|
@pythonpete32 Good point! Updated the CLI installation page with info on the Would also be great if the CLI itself prompted users with this information (and/or if that info was accessible via the |
|
Thanks both @burrrata and @pythonpete32 great feedback. We are currently thinking about this issues and how a roadmap to tackle them looks like, but be sure that improving the web3 providers is in my top priorities right now |
|
Also @pythonpete32 not sure if we already have an issue open for creating the |
💥 Proposal
AFAIK the Aragon CLI uses the same accounts from the same seed phrase for everyone. That's been fine mostly, but today I just tried to deploy a Rinkeby or and realized that the account was out of Rinkeby ETH. My first thought was, whatever I'll just add more. Then it dawned on me that actually anyone could take ownership of my DAO in the middle of my deployment. Even though it's just a Rinkeby test, this is still not good. It would be great if every download of the Aragon CLI came with a unique seed phrase.
The text was updated successfully, but these errors were encountered: