Is it possible to make a Solana program the signer for a transaction?
Question
I'm trying to write a Solana program with one instruction, MintOne , that mints a single token to a provided account.
It seems I need to do something like this:
- Create a token with the spl-token CLI
- Authorize the program as a minting authority for the token
- The program then "self signs" the MintTo transaction
Conceptually, I am having a hard time with 3. Is it even possible for a program to sign a transaction? The private key is not on chain, so I don't know how it would work.
Is it possible for a Solana program to be a signer? If not, how is this type of use case usually solved?
1 answers
solution1
0 ACCPTED 2022-05-11 16:37:43
Is it possible for a Solana program to be a signer?
Not directly, no.
Any time where you would want a Solana program to sign a transaction, use a Program Derived Address (PDA) instead. PDAs are just like public keys, so they can be mint authorities or anything else that an account address can be. PDAs allow a program to "fake" a signature on a transaction.
For this use case, you can do this:
- Create a token with the spl-token CLI
- Generate a PDA for the deployed program using a particular seed
- Authorize that PDA to be the mint authority for the token
- The program then uses
invoke_signedorCpiContext::new_with_signer(if you're using Anchor) with that PDA
This is secure because the Solana allows only that program to "fake" the PDA signature.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.