Hiểu về quyền hạn token
Quyền hạn mint account
- Mint Authority: Kiểm soát việc tạo token mới. Có thể mint token vào bất kỳ token account nào. Thường bị thu hồi sau khi nguồn cung ban đầu được tạo để tạo ra token có nguồn cung cố định.
- Freeze Authority: Kiểm soát khả năng đóng băng và rã đông token account. Có thể ngăn bất kỳ token account nào chuyển token. Thường bị thu hồi để đảm bảo người dùng rằng token của họ không thể bị đóng băng.
Quyền hạn token account
- Account Owner: Có toàn quyền kiểm soát token account. Có thể chuyển token, đốt token, phê duyệt delegate và đóng account khi số dư bằng không.
- Close Authority: Có thể đóng token account khi số dư của nó bằng không. Theo mặc định, đây là account owner nhưng có thể được ủy quyền cho account khác.
Cách thiết lập quyền hạn
Lệnh
SetAuthority
thay đổi hoặc thu hồi quyền hạn trên mint và token account. Chỉ quyền hạn hiện
tại mới có thể chuyển quyền của họ sang địa chỉ mới hoặc thu hồi chúng vĩnh viễn
bằng cách đặt quyền hạn thành null. Sau khi bị thu hồi, quyền hạn không thể được
khôi phục.
Token Program và Token Extension Program chia sẻ các triển khai tương tự để đạt được cùng chức năng.
Typescript
import {airdropFactory,appendTransactionMessageInstructions,createSolanaRpc,createSolanaRpcSubscriptions,createTransactionMessage,generateKeyPairSigner,getSignatureFromTransaction,lamports,pipe,sendAndConfirmTransactionFactory,setTransactionMessageFeePayerSigner,setTransactionMessageLifetimeUsingBlockhash,signTransactionMessageWithSigners} from "@solana/kit";import { getCreateAccountInstruction } from "@solana-program/system";import {getInitializeMintInstruction,getMintSize,TOKEN_PROGRAM_ADDRESS,findAssociatedTokenPda,getCreateAssociatedTokenInstructionAsync,getSetAuthorityInstruction,AuthorityType} from "@solana-program/token";// Create Connection, local validator in this exampleconst rpc = createSolanaRpc("http://localhost:8899");const rpcSubscriptions = createSolanaRpcSubscriptions("ws://localhost:8900");// Generate keypairs for fee payer and new authorityconst feePayer = await generateKeyPairSigner();const newAuthority = await generateKeyPairSigner();// Fund fee payerawait airdropFactory({ rpc, rpcSubscriptions })({recipientAddress: feePayer.address,lamports: lamports(1_000_000_000n),commitment: "confirmed"});// Generate keypair to use as address of mintconst mint = await generateKeyPairSigner();// Get default mint account size (in bytes), no extensions enabledconst space = BigInt(getMintSize());// Get minimum balance for rent exemptionconst rent = await rpc.getMinimumBalanceForRentExemption(space).send();// Get latest blockhash to include in transactionconst { value: latestBlockhash } = await rpc.getLatestBlockhash().send();// Instruction to create new account for mint (token program)// Invokes the system programconst createAccountInstruction = getCreateAccountInstruction({payer: feePayer,newAccount: mint,lamports: rent,space,programAddress: TOKEN_PROGRAM_ADDRESS});// Instruction to initialize mint account data// Invokes the token programconst initializeMintInstruction = getInitializeMintInstruction({mint: mint.address,decimals: 9,mintAuthority: feePayer.address,freezeAuthority: feePayer.address});// Use findAssociatedTokenPda to derive the ATA addressconst [associatedTokenAddress] = await findAssociatedTokenPda({mint: mint.address,owner: feePayer.address,tokenProgram: TOKEN_PROGRAM_ADDRESS});// Create instruction to create the associated token accountconst createAtaInstruction = await getCreateAssociatedTokenInstructionAsync({payer: feePayer,mint: mint.address,owner: feePayer.address});const instructions = [createAccountInstruction,initializeMintInstruction,createAtaInstruction];// Create transaction messageconst transactionMessage = pipe(createTransactionMessage({ version: 0 }),(tx) => setTransactionMessageFeePayerSigner(feePayer, tx),(tx) => setTransactionMessageLifetimeUsingBlockhash(latestBlockhash, tx),(tx) => appendTransactionMessageInstructions(instructions, tx));// Sign transaction message with all required signersconst signedTransaction =await signTransactionMessageWithSigners(transactionMessage);// Send and confirm transactionawait sendAndConfirmTransactionFactory({ rpc, rpcSubscriptions })(signedTransaction,{ commitment: "confirmed" });// Get transaction signatureconst transactionSignature = getSignatureFromTransaction(signedTransaction);console.log("\nMint Address:", mint.address.toString());console.log("New Authority Address:", newAuthority.address.toString());console.log("Associated Token Account Address:",associatedTokenAddress.toString());console.log("\nTransaction Signature:", transactionSignature);// Get a fresh blockhash for the authority change transactionconst { value: authorityBlockhash } = await rpc.getLatestBlockhash().send();// 1. Change Mint Authority (MintTokens)const setMintAuthorityIx = getSetAuthorityInstruction({owned: mint.address,owner: feePayer,authorityType: AuthorityType.MintTokens,newAuthority: newAuthority.address});// 2. Change Freeze Authority (FreezeAccount)const setFreezeAuthorityIx = getSetAuthorityInstruction({owned: mint.address,owner: feePayer,authorityType: AuthorityType.FreezeAccount,newAuthority: newAuthority.address});// Create transaction message for authority changesconst authorityTxMessage = pipe(createTransactionMessage({ version: 0 }),(tx) => setTransactionMessageFeePayerSigner(feePayer, tx),(tx) => setTransactionMessageLifetimeUsingBlockhash(authorityBlockhash, tx),(tx) =>appendTransactionMessageInstructions([setMintAuthorityIx, setFreezeAuthorityIx],tx));// Sign transaction message with all required signersconst signedAuthorityTx =await signTransactionMessageWithSigners(authorityTxMessage);// Send and confirm transactionawait sendAndConfirmTransactionFactory({ rpc, rpcSubscriptions })(signedAuthorityTx,{ commitment: "confirmed" });// Get transaction signatureconst transactionSignature2 = getSignatureFromTransaction(signedAuthorityTx);console.log("\nSuccessfully changed mint and freeze authorities");console.log("Transaction Signature:", transactionSignature2);// Get a fresh blockhash for the revoke transactionconst { value: revokeBlockhash } = await rpc.getLatestBlockhash().send();// 3. Example of revoking authority (setting to null)const revokeMintAuthorityIx = getSetAuthorityInstruction({owned: mint.address,owner: newAuthority,authorityType: AuthorityType.MintTokens,newAuthority: null});// Create transaction message for revokingconst revokeTxMessage = pipe(createTransactionMessage({ version: 0 }),(tx) => setTransactionMessageFeePayerSigner(feePayer, tx),(tx) => setTransactionMessageLifetimeUsingBlockhash(revokeBlockhash, tx),(tx) => appendTransactionMessageInstructions([revokeMintAuthorityIx], tx));// Sign transaction message with all required signers (newAuthority needs to sign)const signedRevokeTx = await signTransactionMessageWithSigners(revokeTxMessage);// Send and confirm transactionawait sendAndConfirmTransactionFactory({ rpc, rpcSubscriptions })(signedRevokeTx,{ commitment: "confirmed" });// Get transaction signatureconst transactionSignature3 = getSignatureFromTransaction(signedRevokeTx);console.log("\nSuccessfully revoked mint authority");console.log("Transaction Signature:", transactionSignature3);
Console
Click to execute the code.
Rust
Rust
use anyhow::Result;use solana_client::nonblocking::rpc_client::RpcClient;use solana_commitment_config::CommitmentConfig;use solana_sdk::{program_pack::Pack,signature::{Keypair, Signer},transaction::Transaction,};use solana_system_interface::instruction::create_account;use spl_token_interface::{id as token_program_id,instruction::{initialize_mint, set_authority, AuthorityType},state::Mint,};#[tokio::main]async fn main() -> Result<()> {// Create connection to local validatorlet client = RpcClient::new_with_commitment(String::from("http://localhost:8899"),CommitmentConfig::confirmed(),);let latest_blockhash = client.get_latest_blockhash().await?;// Generate a new keypair for the fee payerlet fee_payer = Keypair::new();// Generate a new keypair for the new authoritylet new_authority = Keypair::new();// Airdrop 1 SOL to fee payerlet airdrop_signature = client.request_airdrop(&fee_payer.pubkey(), 1_000_000_000).await?;client.confirm_transaction(&airdrop_signature).await?;loop {let confirmed = client.confirm_transaction(&airdrop_signature).await?;if confirmed {break;}}// Generate keypair to use as address of mintlet mint = Keypair::new();// Number of decimals for the mintlet decimals = 2;// Get default mint account size (in bytes), no extensions enabledlet mint_space = Mint::LEN;let mint_rent = client.get_minimum_balance_for_rent_exemption(mint_space).await?;// Instruction to create new account for mint (token program)let create_account_instruction = create_account(&fee_payer.pubkey(), // payer&mint.pubkey(), // new account (mint)mint_rent, // lamportsmint_space as u64, // space&token_program_id(), // program id);// Instruction to initialize mint account datalet initialize_mint_instruction = initialize_mint(&token_program_id(),&mint.pubkey(), // mint&fee_payer.pubkey(), // mint authoritySome(&fee_payer.pubkey()), // freeze authoritydecimals, // decimals)?;// Create transaction and add instructionslet transaction = Transaction::new_signed_with_payer(&[create_account_instruction, initialize_mint_instruction],Some(&fee_payer.pubkey()),&[&fee_payer, &mint],latest_blockhash,);// Send and confirm transactionclient.send_and_confirm_transaction(&transaction).await?;let mint_account = client.get_account(&mint.pubkey()).await?;let mint_data = Mint::unpack(&mint_account.data)?;println!("Mint Address: {}", mint.pubkey());println!("{:#?}", mint_data);// 1. Change Mint Authority (MintTokens)let set_mint_authority_ix = set_authority(&token_program_id(), // program id&mint.pubkey(), // mint accountSome(&new_authority.pubkey()), // new authorityAuthorityType::MintTokens, // authority type&fee_payer.pubkey(), // current authority&[&fee_payer.pubkey()], // signers)?;// 2. Change Freeze Authority (FreezeAccount)let set_freeze_authority_ix = set_authority(&token_program_id(), // program id&mint.pubkey(), // mint accountSome(&new_authority.pubkey()), // new authorityAuthorityType::FreezeAccount, // authority type&fee_payer.pubkey(), // current authority&[&fee_payer.pubkey()], // signers)?;// Create transaction for authority changeslet transaction = Transaction::new_signed_with_payer(&[set_mint_authority_ix, set_freeze_authority_ix],Some(&fee_payer.pubkey()),&[&fee_payer],latest_blockhash,);// Send and confirm transactionclient.send_and_confirm_transaction(&transaction).await?;let mint_account = client.get_account(&mint.pubkey()).await?;let mint_data = Mint::unpack(&mint_account.data)?;println!("\nMint and Freeze Authorities Updated");println!("{:#?}", mint_data);// 3. Example of revoking authority (setting to null)let revoke_mint_authority_ix = set_authority(&token_program_id(), // program id&mint.pubkey(), // mint accountNone, // new authority (None to revoke)AuthorityType::MintTokens, // authority type&new_authority.pubkey(), // current authority&[&new_authority.pubkey()], // signers)?;// Create transaction for revokinglet transaction = Transaction::new_signed_with_payer(&[revoke_mint_authority_ix],Some(&fee_payer.pubkey()),&[&fee_payer, &new_authority], // new_authority needs to signlatest_blockhash,);// Send and confirm transactionclient.send_and_confirm_transaction(&transaction).await?;let mint_account = client.get_account(&mint.pubkey()).await?;let mint_data = Mint::unpack(&mint_account.data)?;println!("\nMint Authority Revoked");println!("{:#?}", mint_data);Ok(())}
Console
Click to execute the code.
Python
Python
#!/usr/bin/env python3import asynciofrom solana.rpc.async_api import AsyncClientfrom solders.keypair import Keypairfrom solders.pubkey import Pubkeyfrom solders.transaction import VersionedTransactionfrom solders.message import MessageV0from spl.token.instructions import set_authority, SetAuthorityParamsfrom spl.token.constants import TOKEN_PROGRAM_IDfrom spl.token.instructions import AuthorityTypeasync def main():rpc = AsyncClient("http://localhost:8899")# Example keypairs and addressespayer = Keypair()current_authority = Keypair()new_authority = Keypair()mint_or_account = Pubkey.from_string("4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU")async with rpc:# Set new mint authorityset_mint_authority_instruction = set_authority(SetAuthorityParams(program_id=TOKEN_PROGRAM_ID,account=mint_or_account,authority=AuthorityType.MINT_TOKENS,current_authority=current_authority.pubkey(),new_authority=new_authority.pubkey()))# Get latest blockhashrecent_blockhash = await rpc.get_latest_blockhash()# Create messagemessage = MessageV0.try_compile(payer=payer.pubkey(),instructions=[set_mint_authority_instruction],address_lookup_table_accounts=[],recent_blockhash=recent_blockhash.value.blockhash)# Create transactiontransaction = VersionedTransaction(message, [payer, current_authority])print(f"Account/Mint: {mint_or_account}")print(f"Current Authority: {current_authority.pubkey()}")print(f"New Authority: {new_authority.pubkey()}")print(f"Authority Type: MintTokens")print(f"Payer: {payer.pubkey()}")print(f"Set authority transaction created successfully")async def set_freeze_authority_example():"""Example of setting freeze authority"""rpc = AsyncClient("http://localhost:8899")payer = Keypair()current_authority = Keypair()new_authority = Keypair()mint_address = Pubkey.from_string("4zMMC9srt5Ri5X14GAgXhaHii3GnPAEERYPJgZJDncDU")async with rpc:# Set freeze authorityset_freeze_authority_instruction = set_authority(SetAuthorityParams(program_id=TOKEN_PROGRAM_ID,account=mint_address,authority=AuthorityType.FREEZE_ACCOUNT,current_authority=current_authority.pubkey(),new_authority=new_authority.pubkey()))recent_blockhash = await rpc.get_latest_blockhash()message = MessageV0.try_compile(payer=payer.pubkey(),instructions=[set_freeze_authority_instruction],address_lookup_table_accounts=[],recent_blockhash=recent_blockhash.value.blockhash)transaction = VersionedTransaction(message, [payer, current_authority])print(f"\nFreeze Authority Example:")print(f"Mint: {mint_address}")print(f"Current Freeze Authority: {current_authority.pubkey()}")print(f"New Freeze Authority: {new_authority.pubkey()}")print(f"Set freeze authority transaction created successfully")if __name__ == "__main__":asyncio.run(main())asyncio.run(set_freeze_authority_example())
Console
Click to execute the code.
Is this page helpful?