Skip to content

Redact Private Key from CreateWallet API Response#521

Closed
Sankara-Jefferson wants to merge 42 commits intomainfrom
pr-517
Closed

Redact Private Key from CreateWallet API Response#521
Sankara-Jefferson wants to merge 42 commits intomainfrom
pr-517

Conversation

@Sankara-Jefferson
Copy link
Contributor

@Sankara-Jefferson Sankara-Jefferson commented Jun 19, 2025

Summary

This PR redacts the PrivateKey field from the response of the /wallet/create API endpoint to prevent accidental key exposure.

What Was Done

  • CreateHandler: removed PrivateKey from response payload by explicitly clearing the field before return.
  • Added a test case CreateWallet_privateKeyShouldBeRedacted to assert that PrivateKey is empty in the response.
  • Verified that all tests pass locally via go test ./api -v.

Rationale

Previously, the PrivateKey was included in plaintext in API responses. While this endpoint is useful for testing, returning secrets by default is a major security risk. This patch minimizes attack surface and sets groundwork for further key safety improvements.

Follow-ups (to be tracked)

  • Encrypt private keys at rest (symmetric key or KMS)
  • Add secure export flow (wallet export)
  • Audit other wallet-related endpoints for similar redaction
  • Add key handling docs to GitBook

Status

Ready for merge after CI passes.

ianconsolata
ianconsolata approved these changes Jul 29, 2025
View reviewed changes
Copy link
Collaborator

@ianconsolata ianconsolata left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, though it seems like there are some merge conflicts to resolve

web3-bot and others added 27 commits October 28, 2025 13:48
@web3-bot
ci: update Unified CI configuration (#78)
ce965a9 
Co-authored-by: web3-bot <web3-bot@users.noreply.github.com>
@xinaxu
Remove autobump and update version.json (#122)
c6bc3a9
@hannahhoward
chore(version): update for v0.3.0
70b67c0
@masih
Fix version file not matching latest release
863a574 
There seem to have been some manual releases which leaves version file
inconsistent with what the latest release is.
@xinaxu
Update version.json to v0.4.0 (#279)
988735c
@xinaxu
Update version to v0.4.1 (#288)
823eb5e
@xinaxu
Bump version to v0.5.0 (#343)
76c2cff 
This is the version for MVP milestone
@gammazero
new version (#380)
40f0e61
@xinaxu
Update version.json to v0.5.2 (#390)
f62d16b
@xinaxu
Update version.json to v0.5.3 (#397)
61cbf00
@xinaxu
Update version.json (#400)
11e97c9
@xinaxu
Update version.json to v0.5.5 (#403)
9366e9f
@gammazero
Update version (#407)
0a6da58 
New version includes retrieval optimization.
@xinaxu
Update version.json to v0.5.7 (#409)
7f17436
@gammazero
Update version (#414)
a2c690b
@gammazero
New release version (#422)
0ea2f9f
@xinaxu
Update version.json to 0.5.10 (#424)
a37855f
@xinaxu
Update version.json (#426)
b84c5cb
@xinaxu
bump version to v0.5.12 (#429)
b6c2b9f
@xinaxu
Bump version to v0.5.13 (#432)
07d8037
@xinaxu
Update version.json (#435)
d13955c
@ianconsolata
Update version.json to v0.5.15 (#442)
e526ee8
@ianconsolata
Bump version.json to 0.5.16 (#445)
361d5d8
@parkan
v0.5.17 release
6933f9e 
- update go-libp2p to v0.39.1
- enable HTTP(S)_PROXY and TCP_PROXY
@parkan
retry workflow
0f385a8
@zachfedor
Add create wallet handler, cmd, and API #469
5d4db47
@zachfedor
Run linter
6cea590
zachfedor and others added 15 commits October 28, 2025 13:48
@zachfedor
Refactor create wallet handler for offline key generation
6dc6249
@zachfedor
Run fmt
85658ff
@zachfedor
Generate swagger docs
c270986
@zachfedor
Create versioned migration process
2e0b01f
@zachfedor
Fix versioned migration schemas
02da1c7 
- Add init function to create full current schema on brand new clean
databases and run missing migrations on any databases using old
auto-migrate strategy with existing data.
- Add CLI commands to migrate up, down, or to a specified version by ID
- Add utility functions to get list of migration IDs ran on current
database, check if migration has run by ID, etc.
@zachfedor
Generate docs
2754a0d
@zachfedor
feat: add admin migrate which command
cfd293b
@zachfedor
fix: tests
3bedb0a
@zachfedor
feat: better documentation of create cmd
2abc31a
@zachfedor
fix: lint errors
b0f3861
@zachfedor
Update generated storage types file
6de93d6 
Fix struct tag ordering in handler/storage/types_gen.go to match
the current code generator output. This resolves CI failures where
go generate was detecting differences between committed and generated files.
@zachfedor
chore: fix go check (#518)
ff85805 
Merging this now — all tests have passed.
Redact private key from CreateWallet response and add test for redaction
24e14f8
Fix: Add space after comment slashes for gocritic
a720b55
@Sankara-Jefferson
Wallet create and migration (#517)
b590e52 
Add Wallet Create Handler + Migrate to Numeric Wallet ID.

Merging as all local test passed. The go version error will be addressed on a separate issue.
@parkan
Copy link
Collaborator

parkan commented Oct 28, 2025

this, in addition to not having a sane history, is only relevant with wallet creation functionality

closing this and will be mindful of this issue when re-implementing wallets

@parkan parkan closed this Oct 28, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ianconsolata ianconsolata ianconsolata approved these changes

@zachfedor zachfedor Awaiting requested review from zachfedor

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

9 participants

@Sankara-Jefferson @parkan @ianconsolata @web3-bot @xinaxu @hannahhoward @masih @gammazero @zachfedor