Open jeanmarc opened 4 months ago
Hi @jeanmarc In order to connect the Explorer app with Fabric-network, it required private_key and signcerts of Fabric-User provided by MSP you can use credentials of User in Explorer app instead of Admin credentials, to connect with Fabric-network. (path ../fabric-samples/test-network/organizations/peerOrganizations/org1.example.com/users/User1@org1.example.com/msp/keystore/prv_sk for test-network)
What would you like to be added?
Currently, the installation instructions for blockchain explorer indicate that I need to copy the private key of my organisation to the explorer environment, to allow it to connect to the network. From a security perspective, I prefer to have private keys present in at most one (1) location, and not share these keys between applications/components/containers that have different roles.
It would be appreciated if clear instructions are added on how to generate a new set of credentials that can be used by the explorer, instead of sharing the organisation admin key.
Why is this needed?
Security auditors will consider the replication of private keys as a security risk, which will make it much harder for us to get approvals for running hyperledger fabric based solutions.