Frequently Asked Questions

What is required to setup my domain with StellarID.io federation? #

You need to add a stellar.toml on your website at https://yourdomain.com/.well-known/stellar.toml. This must be served on a valid SSL certificate or Stellar will not accept it. If you do not have HTTPS enabled on your website, we invite you to look at solutions from LetsEncrypt.

You must also be able to serve this file with CORS headers or some browser based tools and wallets might not be able to translate your address to a Stellar public key.

What are the limitations on federated address format? #

The address is composed of two parts: username*domain

What are memos and how to use them? #

The Stellar federation protocol lets federation responses define a target account id (public key) but also a memo for an address. When a memo is defined for bob*yourdomain.com, the client/wallet must add that memo to any transaction it sends to that address. The receiver will be able to see that reference in the received transaction and act on it (see a good explanation on Lumenauts.com).

There are three types of memos you can set on your address:

We also implemented the federation standard with a little hack also used in emails: if you've registered jack*yourdomain.com on StellarID.io without a specific memo, you can send a transaction to jack+beer_money*yourdomain.com and we'll dynamically add beer_money as the memo for that address.

You can test this on our Federation Tester page. We'll let you think of all the possibilities for your business.

Can I have multiple federated addresses for the same Stellar account? #

Yes, using StellarID.io to point bob*yourdomain.com to your Stellar account does not tie this account to our service. You can have jack*yourdomain.com point to the same account or use another service like FedCloud.info to point bob*fedcloud.info still to the same account.

You cannot however have two different federation servers serve the same domain name.

What are the security implications of using this service? #

We do not hold the secret key to your Stellar account (actually, we've made it impossible for you to even input it by mistake) so we cannot touch your funds. Please keep your secret key safe and never communicate it to anyone. We will never ask you for it.

Your Stellar account ownership stays private. Some other federation services require you to send a transaction with the requested address as the memo which makes these addresses publicly visible on the ledger. With StellarID.io your addresses stay private.

Funds sent to your federated address do not transit through our accounts. All we do is provide a translation from bob*yourdomain.com to a Stellar public you've setup. We do not track or authorize transactions made to your address. The Stellar transaction protocol works only on public keys, when a transaction is sent to a federated address the client/wallet translates the address before building the transaction.

While using our service or any other federation services, you do reliquinsh control of the federated address. So an evil service (I assure you we are not evil though ♥) or a hacker taking control of our servers could potentially re-route the addresses to another Stellar account and receive the funds sent to bob*yourdomain.com. If you do a transaction for a large amount (for example offloading from an exchange), I recommend you send funds directly to your public key.

We do strive to keep the service as secure as possible: using only the best providers, activating two-factor authentication wherever possible and monitoring service health to catch any issues without delay.

How much will this cost? #

StellarID.io is completetely free for the moment until we are feature complete. The only missing functionality as of now is an API to allow users to programmatically manage their addresses.

Once completed, we plan on implementing a subscription service while keeping a generous free tier with a limited number of addresses/domains.

I do not want to use StellarID.io anymore, how do I leave? #

Just removing the stellar.toml file from your website or changing the federation server address inside the file will deactivate StellarID.io services. You can then remove your domains and addresses from your account and are free to use another service or setup your own federation server.