From 9adbd59a34743ec5ab035fe5889dfc3a99bb47ba Mon Sep 17 00:00:00 2001 From: Oliver Gugger Date: Thu, 3 Sep 2020 14:35:45 +0200 Subject: [PATCH] README: mention macaroons --- README.md | 17 ++++++++++++----- 1 file changed, 12 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 5a1e0ea..05e7eca 100644 --- a/README.md +++ b/README.md @@ -333,18 +333,25 @@ pending swaps after a restart. Information about pending swaps is stored persistently in the swap database. Its location is `~/.loopd//loop.db`. -## Transport security +## Authentication and transport security -The gRPC and REST connections of `loopd` are encrypted with TLS the same way -`lnd` is. +The gRPC and REST connections of `loopd` are encrypted with TLS and secured with +macaroon authentication the same way `lnd` is. If no custom loop directory is set then the TLS certificate is stored in -`~/.loopd//tls.cert`. +`~/.loop//tls.cert` and the base macaroon in +`~/.loop//loop.macaroon`. -The `loop` command will pick up the file automatically on mainnet if no custom +The `loop` command will pick up these file automatically on mainnet if no custom loop directory is used. For other networks it should be sufficient to add the `--network` flag to tell the CLI in what sub directory to look for the files. +For more information on macaroons, +[see the macaroon documentation of lnd.](https://github.com/lightningnetwork/lnd/blob/master/docs/macaroons.md) + +**NOTE**: Loop's macaroons are independent from `lnd`'s. The same macaroon +cannot be used for both `loopd` and `lnd`. + ## Multiple Simultaneous Swaps It is possible to execute multiple swaps simultaneously. Just keep loopd