rpc: wallet, conflicting with zmq port
11 KiB
title |
---|
monero-wallet-rpc - Reference |
monero-wallet-rpc
- Reference
!!! note
This is only relevant for programmers. Everyday users won't need monero-wallet-rpc
.
!!! note
Use stagenet for learning and development on top of monero-wallet-rpc
.
RPC Command library
Overview
Provides wallet API over HTTP
Programmers can build thin user interfaces (UIs) on top of monero-wallet-rpc
.
Programmers can also use monero-wallet-rpc
to build arbitrary wallet automation driven by HTTP calls.
Think of monero-wallet-rpc
as complete wallet logic exposed via JSON-RPC over HTTP.
Wallet uses your private keys to understand your total balance, transactions history, and to facilitate creating transactions.
However, wallet does not store the blockchain and does not directly participate in the p2p network.
Depends on the full node
Wallet connects to a full node to scan the blockchain for your transaction outputs and to send your transactions out to the network.
The full node can be either local (same computer) or remote.
You can play with CLI wallet and GUI wallet first to understand the relationship between the full node, the wallet and the user.
Syntax
./monero-wallet-rpc --rpc-bind-port <port> (--wallet-file <file>|--generate-from-json <file>|--wallet-dir <directory>) [options]
Or with a config file:
./monero-wallet-rpc --config-file <arg>
Running
Make sure you are running a locally synced monerod
or point to a remote daemon with --daemon-address
option.
Linux (Production Example)
./monero-wallet-rpc --rpc-bind-port 28088 --wallet-file wallets/main/main --password walletPassword --rpc-login monero:rpcPassword --log-file logs/monero-wallet-rpc.log --max-log-files 2 --trusted-daemon --non-interactive
- If the RPC is used to retrieve information not dependent on any spending, consider using a view-only to prevent abuse.
--rpc-login
should be used in production to protect against any network attacks. An uncommon password protects against the case where the RPC port is open to the public
Windows (Development Example)
monero-wallet-rpc --rpc-bind-port 28088 --wallet-file wallets\main\main --password walletPassword --daemon-address http://node.supportxmr.com:18081 --untrusted-daemon --disable-rpc-login
- Specifying
--untrusted-daemon
is not necessary but tells yourself that the daemon is untrusted and that commands requiring a trusted daemon will be disabled - Default installation on Windows is
"C:\Program Files\Monero GUI Wallet"
Trouble Shooting
If the expected RPC URL, say http://127.0.0.1:28088/json_rpc, is unavailabe, or there is no terminal output saying that the server has been started, monero-wallet-rpc
might be trying to synchronize the wallet. In that case, you should use the GUI or CLI to sync that wallet file because using the GUI/CLI results in faster and measurable syncing.
The suggested way is to have two wallet files for the same keys. One that is used manually (synced often), and one that is used by monero-wallet-rpc
. Whenever you decide to use monero-wallet-rpc
and encounter the unresponsive issue, simply copy the files of the GUI/CLI wallet and replace the ones that were being used by monero-wallet-rpc
. This problem should only occur on the development system where monerod
or monero-wallet-rpc
might not have been running for weeks. In production, monerod
and monero-wallet-rpc
should have minimal downtimes, ensuring that the wallet is always synchronized.
API conventions
The API is based on JSON-RPC standard version 2.0.
All monero-wallet-rpc
method calls use the same JSON-RPC interface.
Assuming your monero-wallet-rpc
is running on 127.0.0.1:18088, you would call it like this:
IP=127.0.0.1
PORT=18088
METHOD="make_integrated_address"
PARAMS="{\"payment_id\":\"1234567890123456789012345678900012345678901234567890123456789000\"}"
curl \
-u username:password --digest \
-X POST http://$IP:$PORT/json_rpc \
-d '{"jsonrpc":"2.0","id":"0","method":"'$METHOD'","params":'"$PARAMS"'}' \
-H 'Content-Type: application/json'
The atomic unit used by the API is the smallest fraction of 1 XMR according to the monerod implementation. 1 XMR = 1e12 atomic units.
Options
Help and Version
Option | Description |
---|---|
--help |
Produce help message |
--version |
Output version information |
Pick Network
Option | Description |
---|---|
--testnet |
For testnet. Daemon must also be launched with --testnet flag |
--stagenet |
For stagenet. Daemon must also be launched with --stagenet flag |
Logging
Option | Description |
---|---|
--log-file <arg> |
Specify log file |
--log-level <arg> |
0-4 or categories |
--max-log-file-size <arg=104850000> |
Specify maximum log file size in bytes |
--max-log-files <arg=50> |
Specify maximum number of rotated log files to be saved (no limit by setting to 0) |
Daemon (Node)
Option | Description |
---|---|
--daemon-address <arg> |
Use daemon instance at <host>:<port> |
--daemon-host <arg> |
Use daemon instance at host <arg> instead of localhost |
--proxy <arg> |
[<ip>:]<port> socks proxy to use for daemon connections |
--trusted-daemon |
Enable commands which rely on a trusted daemon |
--untrusted-daemon |
Disable commands which rely on a trusted daemon |
--password <arg> |
Wallet password (escape/quote as | needed) |
--password-file <arg> |
Wallet password file |
--daemon-port <arg=0> |
Use daemon instance at port <arg> instead of 18081 |
--daemon-login <arg> |
Specify username[:password] for daemon RPC client |
--daemon-ssl <arg=autodetect) |
Enable SSL on daemon RPC connections: enabled|disabled|autodetect |
--daemon-ssl-private-key <arg> |
Path to a PEM format private key |
--daemon-ssl-certificate <arg> |
Path to a PEM format certificate |
--daemon-ssl-ca-certificates <arg> |
Path to file containing concatenated PEM format certificate(s) to replace system CA(s). |
--daemon-ssl-allowed-fingerprints <arg> |
List of valid fingerprints of allowed RPC servers |
--daemon-ssl-allow-any-cert |
Allow any SSL certificate from the daemon |
--daemon-ssl-allow-chained |
Allow user (via --daemon-ssl-ca-certificates) chain certificates |
Other Useful
Option | Description |
---|---|
--tx-notify <arg> |
Run a program for each new incoming transaction, '%s' will be replaced by the transaction hash |
--non-interactive |
Run non-interactive (useful when input is DEVNULL) |
--config-file <arg> |
Config file |
RPC
Option | Description |
---|---|
--rpc-bind-port <arg> |
Sets bind port for server |
--disable-rpc-login |
Disable HTTP authentication for RPC connections served by this process |
--restricted-rpc |
Restricts to view-only commands |
--rpc-bind-ip <arg=127.0.0.1> |
Specify IP to bind RPC server |
--rpc-bind-ipv6-address <arg=::1> |
Specify IPv6 address to bind RPC server |
--rpc-restricted-bind-ip <arg=127.0.0.1> |
Specify IP to bind restricted RPC server |
--rpc-restricted-bind-ipv6-address <arg=::1> |
Specify IPv6 address to bind restricted RPC server |
--rpc-use-ipv6 |
Allow IPv6 for RPC |
--rpc-ignore-ipv4 |
Ignore unsuccessful IPv4 bind for RPC |
--rpc-login <arg> |
Specify username[:password] required for RPC server |
--confirm-external-bind |
Confirm rpc-bind-ip value is NOT a loopback (local) IP |
--rpc-access-control-origins <arg> |
Specify a comma separated list of origins to allow cross origin resource sharing |
--rpc-ssl <arg=autodetect> |
Enable SSL on RPC connections: enabled|disabled|autodetect |
--rpc-ssl-private-key <arg> |
Path to a PEM format private key |
--rpc-ssl-certificate <arg> |
Path to a PEM format certificate |
--rpc-ssl-ca-certificates <arg> |
Path to file containing concatenated PEM format certificate(s) to replace system CA(s). |
--rpc-ssl-allowed-fingerprints <arg> |
List of certificate fingerprints to allow |
--rpc-ssl-allow-chained |
Allow user (via --rpc-ssl-certificates) chain certificates |
--disable-rpc-ban |
Do not ban hosts on RPC errors |
--rpc-client-secret-key <arg> |
Set RPC client secret key for RPC payments |
Open Existing Wallet
Option | Description |
---|---|
--wallet-file <arg> |
Use wallet <arg> |
--wallet-dir <arg> |
Directory for newly created wallets |
--prompt-for-password |
Prompts for password when not provided |
--max-concurrency <arg=0> |
Max number of threads to use for a parallel job |
Create new Wallet
Option | Description |
---|---|
--kdf-rounds <arg=1> |
Number of rounds for the key derivation function |
--hw-device <arg> |
HW device to use |
--hw-device-deriv-path <arg> |
HW device wallet derivation path (e.g., SLIP-10) |
--extra-entropy <arg> |
File containing extra entropy to initialize the PRNG (any data, aim for 256 bits of entropy to be useful, which typically means more than 256 its of data) |
--generate-from-json <arg> |
Generate wallet from JSON format file |
Windows Service
Option | Description |
---|---|
--run-as-service |
true if running as windows service |
--install-service |
Install Windows service |
--uninstall-service |
Uninstall Windows service |
--start-service |
Start Windows service |
--stop-service |
Stop Windows service |
Legacy and Rare Uses
Option | Description |
---|---|
--shared-ringdb-dir <arg=C:\ProgramData\.shared-ringdb, C:\ProgramData\.shared-ringdb\testnet if 'testnet', C:\ProgramData\.shared-ringdb\stagenet if 'stagenet'> |
Set shared ring database path |
--no-dns |
Do not use DNS |
--offline |
Do not connect to a daemon, nor use DNS |
--bitmessage-address <arg=http://localhost:8442/> |
Use PyBitmessage instance at URL <arg> |
--bitmessage-login <arg=username:password> |
Specify <arg> as username:password for PyBitmessage API |