Coincarnation · Whitepaper
Whitepaper / Governance & Admin Controls

Governance & Admin Controls

Multisig, feature flags, audit logs, emergency procedures, and operational discipline.

Last updated:~2 min read

6.1 Roles & AuthN/AuthZ

  • Treasury Multisig: custody and sensitive parameter changes.
  • Admin Panel: hardware-wallet signMessage → nonce → verify → coincarnation_admin cookie (HttpOnly, SameSite).
  • Role separation: Ops (runtime toggles), Risk (registry/policy), Finance (treasury), Audit (read-only export).

6.2 Feature Flags

  • app_enabled: global kill-switch.
  • claim_open: claim window control after snapshot.
  • distribution_pool, coin_rate: phase pool and reference rate parameters.
  • cron_enabled: reclassifier cron guard.

6.3 Change Management

  • Cooldowns: change interval for critical parameters—“announce → grace → apply”.
  • On-chain ref-hash (optional): parameter set hashes written on-chain to enable public verification.
  • CSV & public dashboards: external-audit-friendly visibility.

6.4 Emergency Procedures

  • Global pause (app_enabled=false), per-token intake stop via registry.
  • Blacklist detection → optional refund flow for past contributions.

6.5 Auditability

  • admin_audit table: who changed what and when.
  • Each cron run → cron_runs; diffs written to token_audit.