Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Store additional authorities in 02-client params #3675

Closed
crodriguezvega opened this issue May 28, 2023 · 1 comment
Closed

Store additional authorities in 02-client params #3675

crodriguezvega opened this issue May 28, 2023 · 1 comment
Labels
02-client needs discussion Issues that need discussion before they can be worked on
Milestone

Comments

@crodriguezvega
Copy link
Contributor

crodriguezvega commented May 28, 2023

Part of #1282

Problem

With governance v1, when executing messages that may be submitted by governance a check is performed to make sure that the address of the signer matches the authority set in the keeper. In the current design, it is possible only to specify one authority, which means that besides the governance module it is not possible to allow other address, such as x/group policy addresses, to also execute messages.

Proposal

Once the PR to self-manage 02-client params is merged, we could add an extra field to 02-client Params to store a list of addresses that, besides the authority set during instantiation of 02-client keeper through its constructor, would be allowed to execute the messages to recover and upgrade a client. This new field may be named, for example, AllowedAuthorities, and would be of type []string.

This addition would fulfil the delegation of responsibility for IBC related proposals to trusted groups (edit) benefit mentioned in #1282, and would be used for #3326.

@crodriguezvega crodriguezvega added needs discussion Issues that need discussion before they can be worked on 02-client labels May 28, 2023
@crodriguezvega crodriguezvega added this to the v8.0.0 milestone May 28, 2023
@crodriguezvega
Copy link
Contributor Author

After discussion with the SDK team, we will follow the approach recommended by them of granting other parties permission to execute messages on behalf of governance using authz.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
02-client needs discussion Issues that need discussion before they can be worked on
Projects
Status: Done 🥳
Development

No branches or pull requests

1 participant