Nillion Client
There are 3 Nillion Clients - a Python, JavaScript, and CLI Client. Each Nillion Client provides APIs that you can use for generating user and node keys, and managing programs, secrets, and permissions on the Nillion Network.
ποΈ Python Client
3 items
ποΈ JavaScript Client
3 items
ποΈ CLI Client
The nillion tool is a command line version of the Nillion Client. We refer to the tool as the CLI Client.
NillionClientβ
Create an instance of NillionClientβ
NillionClient creates an instance of the Nillion Client library with node key, bootnodes, connection mode, user key, and payments parameters. This client instance interacts with programs, secrets, and permissions on the network as the user via their user key.
Programsβ
Store a programβ
store_program uploads a compiled Nada program to the Nillion Network.
store_program returns the stored program's program_id from the network
Run a stored programβ
compute runs a stored Nada program by program_id against stored secrets by store_id and secret_name and/or secrets provided by the user when running compute. A user needs permissions to compute on stored secrets for a specific program.
compute returns the program result from the network
Program permissionsβ
| Operation | Permission needed | Description |
|---|---|---|
store_program | - | Any user with an allowlisted peer id can store a program on the Nillion Network |
compute | add_compute_permissions | Allows a user to compute on the secret for a specific program |
Secretsβ
Store secretsβ
store_secrets uploads permissioned secrets to the Nillion Network. Each secret value is uploaded with a secret_name that is set by the user. Every node in the network stores a particle of these secrets.
store_secrets returns the secret's store_id from the network
Set permissions while storing secretsβ
The user storing the secrets can give "default permissions" of the secrets with default_for_user(user_id). Any user_id with these "default permissions" will have permission to retrieve and update secret permissions.
The user storing the secret can give other user_ids limited permissions to the secrets by specifying the user_id to allowlist and the intended secret permissions (retrieve / update / delete / compute) to grant that user.
| Permission | Operation unlocked | Description |
|---|---|---|
| default_for_user | permissions | Allows a user to update permissions for a secret |
| add_retrieve_permissions | retrieve_secret | Allows a user to read or retrieve a secret |
| add_update_permissions | update_secret | Allows a user to update a secret |
| add_delete_permissions | delete_secret | Allows a user to delete a secret |
| add_compute_permissions | compute | Allows a user to compute on a secret as an input to a specific program id |
Retrieve a secretβ
retrieve_secret retrieves a secret by store_id and secret_name. A user needs to have secret retrieve permissions (add_retrieve_permissions) to retrieve a stored secret.
retrieve_secret returns the secret from the network
Update a secretβ
update_secret updates a secret value by store_id. A user needs to have secret update permissions (add_update_permissions) to update a stored secret.
Delete a secretβ
delete_secret deletes a secret value by store_id. A user needs to have secret delete permissions (add_delete_permissions) to delete a stored secret.
Permissionsβ
Update permissionsβ
update_permissions replaces the permissions of a secret by store_id. A user needs to have default_for_user permissions (grants the ability to retrieve and update secret permissions) to update permissions of a stored secret.
The user updating permissions for the secrets can give other user_ids limited permissions to the secrets by specifying the user_id to allowlist and the intended secret permissions to grant that user.