Skip to content

Commit

Permalink
update adr
Browse files Browse the repository at this point in the history
  • Loading branch information
@thomas-nguy
thomas-nguy committed Jan 4, 2023
1 parent 61b57e2 commit 894a84d
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions docs/architecture/adr-009.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@
## Context

Some messages in cronos require permissions. For example changing the mapping to support new CRC20 auto-conversion contracts or disabling the bridge module in case of emergency. Right now, only the admin has the ability to use those messages.
The admin is a single address defined in cronos param's space and can be modified through governance. It is usually a multi-sig address shared by multiple trusted party in order to achieve a higher level of security.
The admin is a single address defined in cronos space and can be modified through governance. It is usually a multi-sig address shared by multiple trusted party in order to achieve a higher level of security.

While a single multi-sig admin address was originally implemented with simplicity in mind, realistically it is not practical to rely on a single address to perform all admin tasks.
As those operations could become more frequent (updating the token mapping) or needs to be trigger by external systems (circuit breaker for gravity module), it would be more practical to define a granular permission system which restrict certain operations to only "some" known addresses.
Expand All @@ -16,7 +16,7 @@ As those operations could become more frequent (updating the token mapping) or n

### Admin

A special address defined in cronos param's space that can be modified through governance. Usually a multi-sig address.
A special address defined in cronos space that can be modified through governance. Usually a multi-sig address.

### Permissioned addresses

Expand All @@ -31,7 +31,7 @@ An address in Cronos that carry no permissions.

For the above problem, we propose the following:

- Keep the admin address in Cronos param's space. The admin has all the permissions and has the ability to change the permission of an address.
- Keep the admin address in Cronos space. The admin has all the permissions and has the ability to change the permission of an address.

- By default, all addresses in Cronos are non-permissioned

Expand Down

0 comments on commit 894a84d

Please sign in to comment.