what is can’t understand is who are the role of Asset Controller and Token Issers.
And does policy.script file should be keep from reveal to other? If not, and other persons get all script/resource file (except the account info ), can they mint the same token that i have just minted?
And, some time later, can I mint more amount of previous token I minted?
Last question, can token be minted by programming use nodejs? any example?
And does policy.script file should be keep from reveal to other? If not, and other persons get all script/resource file (except the account info ), can they mint the same token that i have just minted?
Yes, they can as long the policy is not locked
And, some time later, can I mint more amount of previous token I minted?
It’s up to you. When u create an asset u will create a policy ID. There u can define till wich slot/epoch u can modify the asset (burn, mint more)
once the policy ID is locked u will can’t modify the asset
For example take an asset and search on pool.pm and click on policy… there u can find infos about the policy ID of an asset
But you don’t need to keep it private. In fact, it is nice to explicitly publish it on, e.g., pool.pm, so that others can see, when your asset was/will be locked.
In most cases, this will just be the same person/entity.
The asset controller writes the policy.script and the policy.script is hashed to the policy ID. So, noone can change the script, but retain the ID.
The asset controller could write into the script that multiple people are allowed to mint/burn tokens, that there are multiple token issuers, or (the other way round) that multiple keys have to sign, that mint/burn transactions can only be done by multiple people together.
But, in most cases, you are both in one person, you write the policy.script and there’s only one key in there that is also controlled by you.