Multisig transactions require signatures of multiple private keys, typically owned by multiple parties. A multisig transaction is initiated by any key holder, and at least one of them would need to import other parties' public keys into their Keybase and generate a multisig public key to finalize and broadcast multisig transactions.
Show Multisig Address
When a new multisig public key test_multisig is stored its address will be the signer of multisig transactions:
secretcli keys show test_multisig -a
secret1zy90yjysn579l65sj643tphq4pem6ufkl0djd6
View Multisig Threshold
You may also view multisig threshold, pubkey constituents and respective weights by viewing the JSON output of the key:
secretcli keys show test_multisig --pubkey
# You will see the output of the pubkey, look or "threshold"
'{"@type":"/cosmos.crypto.multisig.LegacyAminoPubKey","threshold":2,"public_keys":[{"@type":"/cosmos.crypto.secp256k1.PubKey","key":"AiXwUPtwTJqxKZq/BjKi+7EFhqR2Aj9QT94lFzb5Ednp"},{"@type":"/cosmos.crypto.secp256k1.PubKey","key":"A7QMHOt+yLGddDxey51QLofwsTJWfqyzYmNOB9L1Oz1S"},{"@type":"/cosmos.crypto.secp256k1.PubKey","key":"A0QMBqFY4J39i6NrH4qR5uOEnyytpkyeWFg/e0sPd8NJ"}]}'
mnemonic: ""
The -p flag can be used interchangeably with the --pubkey flag to only show the output of pubkey information.
secretcli keys show test_multisig -p
Initiate Multisig Transaction
General usage of the secretcli for sending transactions uses the follow format:
secretcli tx bank send [from_key_or_address] [to_address] [amount] [flags]
The first step to create a multisig transaction is to initiate it on behalf of the multisig address created above using the following command:
secretcli tx bank send
secret1zy90yjysn579l65sj643tphq4pem6ufkl0djd6 \ # From address
secret1kcy20p0cs2wakeqz00xgs5m0cmj65283xqmvfs \ # To adress
1000uscrt \ # Amount being sent
--generate-only > unsignedTx.json # Json for account owner signing
The file unsignedTx.json contains the unsigned transaction encoded in JSON. key1 can now sign the transaction with its own private key:
secretcli tx sign \
unsignedTx.json \
--multisig=test_multisig \
--from=key1 \
--output-document=key1Signature.json \
--chain-id=pulsar-3 # This is the testnet chain-id
After generating the key1Signature.json file, other wallets making up the multisig need to use the unsignedTx.json to generate their own individual signed json files:
Since the 'k' value of test_multisig is set to 2, a third signature from the final key making up the wallet (key3) is not required to officially sign and broadcast the multisig transaction. Any the key holders of the multisig can now generate the multisig transaction by combining the required signature files:
Note: To be able to correctly test multisig transactions you will need tokens owned by the multisig wallet.
Broadcasted transactions can be viewed online using a Secret Network block explorer by searching for the transaction has (txhash). For example, the testnet transaction above can be viewed .
