replit/token-gated-economy
Archived
2
0
Fork 0
Code Issues 15 Pull Requests Actions Packages Projects Releases Wiki Activity
This repository has been archived on 2026-03-24. You can view files and clone it. You cannot open issues or pull requests or push a commit.
Files
a88784ebf8a42d3f6fed84a9a404f1b49d7fc9c8
token-gated-economy/OPERATOR.md
Claude (Opus 4.6) a88784ebf8 [claude] add Timmy Nostr keygen script + operator setup docs (#48) (#58) 
Co-authored-by: Claude (Opus 4.6) <claude@hermes.local>
Co-committed-by: Claude (Opus 4.6) <claude@hermes.local>
2026-03-23 14:52:49 +00:00

1.3 KiB
Raw Blame History

Operator Setup Guide

Timmy's Nostr Identity

Timmy uses a secp256k1 Nostr keypair for his on-chain identity. Without a persisted key, Timmy generates a new ephemeral identity on every restart — losing continuity with anyone who knew his previous npub.

One-time setup

  1. Generate a keypair:

    bash scripts/generate-timmy-nsec.sh

    This prints the nsec1... (private key), npub1... (public key), and an export line you can copy-paste.

  2. Set the environment variable in your deployment environment:

    • Replit: Add TIMMY_NOSTR_NSEC in the Secrets tab (padlock icon).
    • VPS (systemd): Add to /opt/timmy-tower/.env: 
      TIMMY_NOSTR_NSEC=nsec1...
    • Local dev: Export in your shell or add to a .env file: 
      export TIMMY_NOSTR_NSEC="nsec1..."

  3. Restart the API server. On startup you should see an INFO log:

    timmy-identity INFO timmy identity loaded from env { npub: "npub1..." }

    If you see a WARN instead, the env var is missing or malformed.

Security

  • The nsec is a private key — treat it like a password.
  • Never commit it to version control.
  • Never log it or expose it in API responses.
  • If compromised, generate a new keypair and update all references to the old npub.
Reference in New Issue View Git Blame Copy Permalink