@aptos-labs/siwa
Version:
Library of utilities for Sign in with Aptos
9 lines (7 loc) • 8.88 kB
JavaScript
;var m=Object.defineProperty;var T=Object.getOwnPropertyDescriptor;var $=Object.getOwnPropertyNames;var k=Object.prototype.hasOwnProperty;var v=(e,t)=>{for(var n in t)m(e,n,{get:t[n],enumerable:!0})},R=(e,t,n,s)=>{if(t&&typeof t=="object"||typeof t=="function")for(let r of $(t))!k.call(e,r)&&r!==n&&m(e,r,{get:()=>t[r],enumerable:!(s=T(t,r))||s.enumerable});return e};var P=e=>R(m({},"__esModule",{value:!0}),e);var ee={};v(ee,{CURRENT_SERIALIZATION_VERSION:()=>E,createSignInMessage:()=>b,createSignInSigningMessage:()=>w,deserializeSignInOutput:()=>Y,deserializeSignInPublicKey:()=>l,deserializeSignInSignature:()=>f,generateNonce:()=>Z,getSignInPublicKeyScheme:()=>X,isValidPublicKeyScheme:()=>d,parseSignInMessage:()=>W,serializeSignInOutput:()=>J,verifySignInMessage:()=>G,verifySignInSignature:()=>Q});module.exports=P(ee);var g=require("@aptos-labs/ts-sdk"),x=require("@noble/hashes/sha3");var c=require("@aptos-labs/ts-sdk"),I=require("@aptos-labs/ts-sdk");function S(e,t,n){if(e===t)return!0;let s=e.length;if(s!==t.length)return!1;for(let r=0;r<s;r++)if(!n?.includes(e[r])&&e[r]!==t[r])return!1;return!0}function h(e){let t="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/",n="";for(let s=0;s<e.byteLength;s+=3){let r=0,a=0;for(let u=0;u<3&&s+u<e.byteLength;u++)r=r<<8|e[s+u],a+=8;for(let u=0;u<4;u++)a>=6?(n+=t[r>>a-6&63],a-=6):a>0&&(n+=t[r<<6-a&63],a=0)}return n}async function _(e,t){try{return await e()}catch{return t}}var p=new I.Aptos(new c.AptosConfig({network:c.Network.MAINNET}));async function A(e,t={}){return e.publicKey.verifySignatureAsync({aptosConfig:t.aptos?.config??p.config,message:e.signingMessage,signature:e.signature})}function b(e){let t=`${e.domain} wants you to sign in with your Aptos account:
`;t+=`${e.address}`,e.statement&&(t+=`
${e.statement}`);let n=[];if(e.uri&&n.push(`URI: ${e.uri}`),e.version&&n.push(`Version: ${e.version}`),e.nonce&&n.push(`Nonce: ${e.nonce}`),e.issuedAt&&n.push(`Issued At: ${e.issuedAt}`),e.expirationTime&&n.push(`Expiration Time: ${e.expirationTime}`),e.notBefore&&n.push(`Not Before: ${e.notBefore}`),e.requestId&&n.push(`Request ID: ${e.requestId}`),e.chainId&&n.push(`Chain ID: ${e.chainId}`),e.resources){n.push("Resources:");for(let s of e.resources)n.push(`- ${s}`)}return n.length&&(t+=`
${n.join(`
`)}`),t}function w(e){let n=(0,x.sha3_256)("SIGN_IN_WITH_APTOS::");return new Uint8Array([...n,...new TextEncoder().encode(e)])}var M="(?<domain>[^\\n]+?) wants you to sign in with your Aptos account:\\n",B="(?<address>[^\\n]+)(?:\\n|$)",V="(?:\\n(?<statement>[\\S\\s]*?)(?:\\n|$))??",O="(?:\\nURI: (?<uri>[^\\n]+))?",U="(?:\\nVersion: (?<version>[^\\n]+))?",D="(?:\\nNonce: (?<nonce>[^\\n]+))?",N="(?:\\nIssued At: (?<issuedAt>[^\\n]+))?",z="(?:\\nExpiration Time: (?<expirationTime>[^\\n]+))?",q="(?:\\nNot Before: (?<notBefore>[^\\n]+))?",F="(?:\\nRequest ID: (?<requestId>[^\\n]+))?",H="(?:\\nChain ID: (?<chainId>[^\\n]+))?",C="(?:\\nResources:(?<resources>(?:\\n- [^\\n]+)*))?",j=`${O}${U}${D}${N}${z}${q}${F}${H}${C}`,L=new RegExp(`^${M}${B}${V}${j}\\n*$`);function W(e){let t=L.exec(e);if(!t)return{valid:!1,errors:["invalid_message"]};let n=t.groups;if(!n)return{valid:!1,errors:["invalid_message"]};let s=[];return(!n.domain||n.domain==="undefined")&&s.push("message_domain_missing"),(!n.address||n.address==="undefined")&&s.push("message_address_missing"),(!n.version||n.version==="undefined")&&s.push("message_version_missing"),(!n.chainId||n.chainId==="undefined")&&s.push("message_chain_id_missing"),s.length?{valid:!1,errors:s}:{valid:!0,data:{domain:n.domain,address:n.address,statement:n.statement,uri:n.uri,version:n.version,nonce:n.nonce,chainId:n.chainId,issuedAt:n.issuedAt,expirationTime:n.expirationTime,notBefore:n.notBefore,requestId:n.requestId,resources:n.resources?.split(`
- `).slice(1)}}}async function G(e,t={}){let{expected:n,input:s,publicKey:r}=e;if(!(r instanceof g.AccountPublicKey))return{valid:!1,errors:["invalid_public_key"]};let a=s.address,u=await _(async()=>(await(t.aptos??p).getAccountInfo({accountAddress:a})).authentication_key,a),K=r.authKey().derivedAddress();if(!g.AccountAddress.from(u,{maxMissingChars:63}).equals(K))return{valid:!1,errors:["invalid_auth_key"]};let o=[];n.domain&&n.domain!==s.domain&&o.push("message_domain_mismatch"),n.address&&n.address!==s.address&&o.push("message_address_mismatch"),n.statement!==s.statement&&o.push("message_statement_mismatch"),n.uri&&n.uri!==s.uri&&o.push("message_uri_mismatch"),n.version&&n.version!==s.version&&o.push("message_version_mismatch"),n.chainId&&n.chainId!==s.chainId&&o.push("message_chain_id_mismatch"),n.nonce!==s.nonce&&o.push("message_nonce_mismatch"),n.issuedAt!==s.issuedAt&&o.push("message_issued_at_mismatch"),n.expirationTime!==s.expirationTime&&o.push("message_expiration_time_mismatch"),n.notBefore!==s.notBefore&&o.push("message_not_before_mismatch"),n.requestId!==s.requestId&&o.push("message_request_id_mismatch"),n.resources?s.resources?S(n.resources,s.resources,t?.excludedResources)||o.push("message_resources_mismatch"):o.push("message_resources_missing"):s.resources&&o.push("message_resources_unexpected");let y=new Date;return n.expirationTime&&y.getTime()>=new Date(n.expirationTime).getTime()&&o.push("message_expired"),n.notBefore&&y.getTime()<new Date(n.notBefore).getTime()&&o.push("message_not_yet_valid"),o.length?{valid:!1,errors:o}:{valid:!0}}async function Q(e,t={}){let n=b(e.input),s=w(n);return await A({publicKey:e.publicKey,signature:e.signature,signingMessage:s},t)?{valid:!0}:{valid:!1,errors:["invalid_signature"]}}var i=require("@aptos-labs/ts-sdk");var d=e=>e==="ed25519"||e==="multi_ed25519"||e==="single_key"||e==="multi_key";function X(e){if(typeof e=="object"){if(i.Ed25519PublicKey.isInstance(e))return"ed25519";if(i.AnyPublicKey.isInstance(e))return"single_key";if(i.MultiKey.isInstance(e))return"multi_key";if(e instanceof i.MultiEd25519PublicKey)return"multi_ed25519";throw new Error(`Unknown public key type for instance: ${e}`)}switch(e){case i.SigningScheme.Ed25519:return"ed25519";case i.SigningScheme.MultiEd25519:return"multi_ed25519";case i.SigningScheme.SingleKey:return"single_key";case i.SigningScheme.MultiKey:return"multi_key";default:throw new Error(`Unknown public key type for signing scheme: ${e}`)}}function l(e,t){let n=new i.Deserializer(i.Hex.fromHexInput(t).toUint8Array());if(typeof e!="string")switch(e){case i.SigningScheme.Ed25519:return i.Ed25519PublicKey.deserialize(n);case i.SigningScheme.MultiEd25519:return i.MultiEd25519PublicKey.deserialize(n);case i.SigningScheme.SingleKey:return i.AnyPublicKey.deserialize(n);case i.SigningScheme.MultiKey:return i.MultiKey.deserialize(n);default:throw new Error(`Unknown public key type for signing scheme: ${e}`)}switch(e){case"ed25519":return i.Ed25519PublicKey.deserialize(n);case"multi_ed25519":return i.MultiEd25519PublicKey.deserialize(n);case"single_key":return i.AnyPublicKey.deserialize(n);case"multi_key":return i.MultiKey.deserialize(n);default:throw new Error(`Unknown public key type: ${e}`)}}function f(e,t){let n=new i.Deserializer(i.Hex.fromHexInput(t).toUint8Array());if(typeof e!="string")switch(e){case i.SigningScheme.Ed25519:return i.Ed25519Signature.deserialize(n);case i.SigningScheme.MultiEd25519:return i.MultiEd25519Signature.deserialize(n);case i.SigningScheme.SingleKey:return i.AnySignature.deserialize(n);case i.SigningScheme.MultiKey:return i.MultiKeySignature.deserialize(n);default:throw new Error(`Unknown signature type for signing scheme: ${e}`)}switch(e){case"ed25519":return i.Ed25519Signature.deserialize(n);case"multi_ed25519":return i.MultiEd25519Signature.deserialize(n);case"single_key":return i.AnySignature.deserialize(n);case"multi_key":return i.MultiKeySignature.deserialize(n);default:throw new Error(`Unknown signature type: ${e}`)}}function Z(){let e=new Uint8Array(12);return crypto.getRandomValues(e),h(e)}var E="2",J=e=>({version:E,type:e.type,signature:e.signature.bcsToHex().toString(),input:e.input,publicKey:e.account.publicKey.bcsToHex().toString()}),Y=e=>{let{version:t}=e;if(t==="1"){if(!d(e.type))throw new Error(`Unexpected public key scheme: ${e.type}`);return{version:"1",type:e.type,signature:f(e.type,e.signature),publicKey:l(e.type,e.publicKey),message:e.message}}if(t==="2"){if(!d(e.type))throw new Error(`Unexpected public key scheme: ${e.type}`);return{version:"2",type:e.type,signature:f(e.type,e.signature),input:e.input,publicKey:l(e.type,e.publicKey)}}throw new Error(`Unexpected serialization version: ${t}`)};0&&(module.exports={CURRENT_SERIALIZATION_VERSION,createSignInMessage,createSignInSigningMessage,deserializeSignInOutput,deserializeSignInPublicKey,deserializeSignInSignature,generateNonce,getSignInPublicKeyScheme,isValidPublicKeyScheme,parseSignInMessage,serializeSignInOutput,verifySignInMessage,verifySignInSignature});
//# sourceMappingURL=index.cjs.map