-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
It is too easy to accidentally rotate a single-sig AID #3
Comments
Thanks Nuttawut for the feedback, I agree it's important to have a warning before proceeding with the rotation. I'll open an internal ticket with the request. |
Confirmation popup is already added and is deployed as part of the latest deployment done last week. We can update the text to warn that rotation is irrevocable. |
@Arsh-Sandhu: Perhaps you could add the following message. I made the style similar to the message for multisig rotation
|
[from twin in jira] |
[from twin in jira] |
[from twin in jira] |
[from twin in jira] |
Tell Jira: Alias Are you certain you want to rotate the [alias] identifier? This is an irreversible action that will change the key associated with the identifier. Additionally, it may impact any multisig identifier in which this identifier is a participant. |
[from twin in jira] |
[from twin in jira] |
[from twin in jira] |
Is your feature request related to a problem? Please describe.
I feel that it is too easy for users to rotate their single-sig AIDs accidentally. Once published to witnesses, key rotation is permanent and irrevocable. Some users who do not have a deep understanding of KERI may also click the rotation button out of curiosity.
This will be a problem if the rotated AID is a member of a multi-sig AID since that single-sig AID can no longer be used for issuing ACDCs until the multi-sig group AID has also been rotated.
Describe the solution you'd like
There should be an extra step for the users to confirm that they really want to rotate their single-sig AIDs to prevent accidental rotation. The confirmation page/pop-up should also provide a warning that this action is irrevocable.
Additional context
Currently, there is a confirmation popup for multi-sig AID, but not for single-sig AID.
The text was updated successfully, but these errors were encountered: