Managing Your Router
Last updated
Last updated
Routers have three distinct roles for management:
Router Signer - The address associated with the private key that is available to the router at runtime to sign payloads which authorize liquidity to be used to facilitate cross-chain transfers. The Router Signer also has the ability to remove the router’s liquidity to the designated recipient.
⚠️ The *Router Signer* key is effectively a hot wallet that must be accessible by an internet-connected router at all times, making it the least secure key in the system. It is important to understand the ramifications of a key compromise and configure the other roles appropriately to mitigate risks.
Recipient - The address that will receive funds when liquidity is removed. Example secure options are: a DAO treasury, a secure multisig, a custodial centralized exchange account which you trust. Since this is only a receiver address, it is not required to be able to sign and send transactions (i.e. in the custodial case).
ℹ️ There is an option to *not set* the recipient by setting it to `address(0)`. This will allow the `removeRouterLiquidity` functions to specify a recipient of their choice. This is a security risk and **not recommended** unless you are fully aware of the risks and have specific needs to do this.
Router Owner - The address that is able to set and change the Recipient address, as well as change itself to a different Router Owner address. The Router Owner can also remove the router’s liquidity to the designated recipient. This address should be a secure multisig, since it needs to be able to sign transactions to carry out the functionality.
ℹ️ Router Ownership can be *burned* (set to `address(0)`). This is of course the most secure way to manage a router, but the implications are you can never change the designated recipient.
Use this section if the router has never been initialized.
Coming soon!
Use the Connext repo to find the deployments for the chain you want to set up the router on:
Find the Connext.json deployment for that chain and copy the address.
Go to the website and enter the Connext contract address and choose the correct network.
Scroll to the RoutersFacet section and select the option for WRITE and connect with the Router Signer account.
Select the method initializeRouter and fill in the details for _owner and _recipient and execute the transaction.
Notify the Connext team to allowlist your router (this is still a permissioned role!).
ℹ️ Note: This is the easiest way to call the contract function but since it is an onchain function it can be called from any mechanism to send the correct function with the appropriate arguments.
Use these instructions to modify a router that has already been initialized.
Coming soon!
Use the functions setRouterRecipient, proposeRouterOwner, and acceptProposedRouterOwner on the RoutersFacet to modify the params as necessary.
Find the canonical TokenId by calling the adoptedToCanonical function on the TokenFacet and filling in the _adopted with the address of the token contract of the “adopted asset” (i.e. USDC).
With this information, call the removeRouterLiquidity function.
Use the to connect the Router Owner wallet to the Connext contract.
Navigate to the ‘Router’ tab on Connextscan 2.0 and click your router ID
Click ‘Manage Router, and remove funds using our ’Remove Liquidity’ UI feature
Use the to connect the Router Owner wallet to the Connext contract.
