Hive Developer Portal

PY: Using Keys Securely
Learn how Hive-Python library handles transaction signing with user’s key and how to securely manage your private keys.
Full, runnable src of Using Keys Securely can be downloaded as part of: tutorials/python.
Intro
Hive python library has 2 ways to handle your keys. One is from source code, another one is through command line interface called steempy
. steempy
cli is installed by default when you install steem-python library on your machine.
Steps
- App setup - Library install and import
- Key usage example - Example showing how to import keys
1. App setup
In this tutorial we are only using steem
package - steem-python library.
# initialize Hive class
from steem import Hive
# defining private keys inside source code is not secure way but possible
s = Hive(keys=['<private_posting_key>', '<private_active_key>'])
Last line from above snippet shows how to define private keys for account that’s going to transact using script.
2. Key usage example
After defining private keys inside Hive class, we can quickly sign any transaction and broadcast it to the network.
# above will allow accessing Commit methods such as
# demo account sending 0.001 HIVE to demo1 account
s.commit.transfer('demo','0.001','HIVE','memo text','demo1')
Above method works but it is not secure way of handling your keys because you have entered your keys within source code that you might leak accidentally. To avoid that, we can use CLI - command line interface steempy
.
You can type following to learn more about steempy
commands:
steempy -h
steempy
lets you leverage your BIP38 encrypted wallet to perform various actions on your accounts.
The first time you use steempy, you will be prompted to enter a password. This password will be used to encrypt the steempy wallet, which contains your private keys.
You can import your Hive username with following command:
steempy importaccount username
Next you can import individual private keys:
steempy addkey <private_key>
That’s it, now that your keys are securely stored on your local machine, you can easily sign transaction from any of your Python scripts by using defined keys.
# if private keys are not defined
# accessing Wallet methods are also possible and secure way
s.wallet.get_active_key_for_account('demo')
Above line fetches private key for user demo
from local machine and signs transaction.
steempy
also allows you to sign and broadcast transactions from terminal. For example:
steempy transfer --account <account_name> <recipient_name> 1 HIVE memo
would sign and broadcast transfer operation,
steempy upvote --account <account_name> link
would sing and broadcast vote operation, etc.
That’s it!
To Run the tutorial
- review dev requirements
git clone https://gitlab.syncad.com/hive/devportal.git
cd devportal/tutorials/python/01_using_keys_securely
pip install -r requirements.txt
python index.py
- After a few moments, you should see output in terminal/command prompt screen.