The idea is to provide mutlichain as a service and expose the rpc endpoint to the user (secured by some mechanism to authenticate).
But in my opinion there are some calls that should not be exposed over rpc. At the moment every user with rpc access can:
- Shutdown the node
- read the private key of the wallet
- do upgrades
- and the worst: is able to encrypt the wallet
The if we expose multichain to some users, a single user can completely destroy the node.
I would expect that rpc users can only do non harmful calls, like using the wallet, but not really own the wallet.
Is there some best practice / workaround?