Skip to main content
Waren Gonzaga | Tech Blog for EngineersWaren Gonzaga | Tech Blog for Engineers

Command Palette

Search for a command to run...

How to Recover the Ownership of Your thirdweb Pre-built Contract

Learn how to recover the ownership of your thirdweb pre-built smart contract if your admin wallet address has been compromised.

Updated
โ€ข2 min read
How to Recover the Ownership of Your thirdweb Pre-built Contract
W
Waren Gonzaga

A Filipino self-taught software engineer, open-source maintainer, cybersecurity researcher, tech community builder, Web3 enthusiast, and technopreneur from the Philippines. ๐Ÿ’ป๐Ÿ’–โ˜•

Part of seriesLet's Build Web3

This is useful if the admin of your contract is compromised. For example, if you add a balance to your admin wallet address and it unexpectedly gets transferred to a random address, changing it becomes challenging without gas to assign a new one.

In this guide, you'll learn how to change your admin wallet to a new one without needing to spend gas from your compromised wallet address, using the thirdweb gasless method. Without further ado let's get started! ๐Ÿ˜Ž

Setup

  1. Do npx thirdweb create app --node --javascript --evm

  2. Rename the .env.example to .env

  3. Copy and paste this to your .env

WALLET_PRIVATE_KEY=
THIRDWEB_SECRET_KEY=
RELAYER_URL=

  1. After that, fill out the information needed.

  2. Get the private key of the compromised wallet and paste it as a value to WALLET_PRIVATE_KEY=

  3. Get the secret key from this https://thirdweb.com/create-api-key

  4. Get the relayer_url from this tutorial https://blog.thirdweb.com/guides/setup-gasless-transactions

  5. Copy and paste the code below to your local index.js

import { config } from "dotenv";
import { ThirdwebSDK } from "@thirdweb-dev/sdk";

config();

const newAdmin = "0x...";
const contractAddress = "0x...";

const main = async () => {
  if (!process.env.WALLET_PRIVATE_KEY) {
    throw new Error("No private key found!");
  }

  try {
    const sdk = ThirdwebSDK.fromPrivateKey(process.env.WALLET_PRIVATE_KEY, 'polygon', {
      gasless: {
        openzeppelin: {
          relayerUrl: process.env.RELAYER_URL, // Learn more: https://blog.thirdweb.com/guides/setup-gasless-transactions/
        },
      },
      secretKey: process.env.THIRDWEB_SECRET_KEY,
    });

    const contract = await sdk.getContract(contractAddress);
    // run this first so you can set it as owner.
    const tx = await contract.roles.grant("admin", newAdmin);
    // Uncomment this, and comment the code above ^ after you set the newAdmin as admin.
    // const tx = await contract.owner.set(newAdmin);

    console.log(tx);

  } catch(error) {
    console.error("Something went wrong: ", error);
  }
};

main();
  1. Fill in the information for the variables.
const newAdmin = "0x...";
const contractAddress = "0x...";
  1. Run the code by doing node index.js

Usage

  1. After the setup, run the script straight. node index.js

  2. Comment on this part by adding // in front of it.

const tx = await contract.roles.grant("admin", newAdmin);
  1. Then, uncomment this part. By removing the // in front of it.
const tx = await contract.owner.set(newAdmin);
  1. Run again the script. node index.js

That's it! โœจ See you on my next blog... ๐Ÿ’–

#web3#javascript#tutorial#thirdweb

Comments

Join the discussion

No comments yet. Be the first to comment.

Let's Build Web3

Part 3 of 3

Waren Gonzaga's blog series for all things Web3 and Blockchain technologies. ๐Ÿ’ป๐Ÿ’–๐Ÿš€

Start from the beginning

How to Set Up thirdweb Engine Quickly On Your Local Machine

You'll learn how to set up thirdweb Engine instantly on your local machine.

More from this blog

W

Waren Gonzaga | Tech Blog for Engineers

11 posts

A Filipino self-taught software engineer, open-source maintainer, cybersecurity researcher, tech community builder, Web3 enthusiast, and technopreneur from the Philippines. ๐Ÿ’ป๐Ÿ’–โ˜•

Recover Ownership of Your thirdweb Contract