diff options
| author | gary rong <garyrong0905@gmail.com> | 2019-04-04 19:03:10 +0800 |
|---|---|---|
| committer | Péter Szilágyi <peterke@gmail.com> | 2019-04-04 19:03:10 +0800 |
| commit | d5cae48bae81cd6072255150162b26a3653f176e (patch) | |
| tree | e516341d29d6fbffbac0f389ef012fb273326c8b /signer/core | |
| parent | 9b3601cfce4d61cd303f5e243813fa89426259d4 (diff) | |
| download | go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar.gz go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar.bz2 go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar.lz go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar.xz go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.tar.zst go-tangerine-d5cae48bae81cd6072255150162b26a3653f176e.zip | |
accounts, cmd, internal: disable unlock account on open HTTP (#17037)
* cmd, accounts, internal, node, rpc, signer: insecure unlock protect
* all: strict unlock API by rpc
* cmd/geth: check before printing warning log
* accounts, cmd/geth, internal: tiny polishes
Diffstat (limited to 'signer/core')
| -rw-r--r-- | signer/core/api.go | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/signer/core/api.go b/signer/core/api.go index 184b90310..9da6ee2a2 100644 --- a/signer/core/api.go +++ b/signer/core/api.go @@ -139,7 +139,8 @@ func StartClefAccountManager(ksLocation string, nousb, lightKDF bool) *accounts. log.Debug("Trezor support enabled") } } - return accounts.NewManager(backends...) + // Clef doesn't allow insecure http account unlock. + return accounts.NewManager(&accounts.Config{InsecureUnlockAllowed: false}, backends...) } // MetadataFromContext extracts Metadata from a given context.Context |