@aptos-labs/siwa
Version:
Library of utilities for Sign in with Aptos
9 lines (7 loc) • 7.58 kB
JavaScript
import{AccountAddress as M,AccountPublicKey as P}from"@aptos-labs/ts-sdk";import{sha3_256 as B}from"@noble/hashes/sha3";import{Aptos as k,AptosConfig as v,Network as R}from"@aptos-labs/ts-sdk";function m(e,t,i){if(e===t)return!0;let n=e.length;if(n!==t.length)return!1;for(let r=0;r<n;r++)if(!i?.includes(e[r])&&e[r]!==t[r])return!1;return!0}function y(e){let t="ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/",i="";for(let n=0;n<e.byteLength;n+=3){let r=0,a=0;for(let u=0;u<3&&n+u<e.byteLength;u++)r=r<<8|e[n+u],a+=8;for(let u=0;u<4;u++)a>=6?(i+=t[r>>a-6&63],a-=6):a>0&&(i+=t[r<<6-a&63],a=0)}return i}async function I(e,t){try{return await e()}catch{return t}}var c=new k(new v({network:R.MAINNET}));async function S(e,t={}){return e.publicKey.verifySignatureAsync({aptosConfig:t.aptos?.config??c.config,message:e.signingMessage,signature:e.signature})}function z(e){let t=`${e.domain} wants you to sign in with your Aptos account:
`;t+=`${e.address}`,e.statement&&(t+=`
${e.statement}`);let i=[];if(e.uri&&i.push(`URI: ${e.uri}`),e.version&&i.push(`Version: ${e.version}`),e.nonce&&i.push(`Nonce: ${e.nonce}`),e.issuedAt&&i.push(`Issued At: ${e.issuedAt}`),e.expirationTime&&i.push(`Expiration Time: ${e.expirationTime}`),e.notBefore&&i.push(`Not Before: ${e.notBefore}`),e.requestId&&i.push(`Request ID: ${e.requestId}`),e.chainId&&i.push(`Chain ID: ${e.chainId}`),e.resources){i.push("Resources:");for(let n of e.resources)i.push(`- ${n}`)}return i.length&&(t+=`
${i.join(`
`)}`),t}function V(e){let i=B("SIGN_IN_WITH_APTOS::");return new Uint8Array([...i,...new TextEncoder().encode(e)])}var O="(?<domain>[^\\n]+?) wants you to sign in with your Aptos account:\\n",D="(?<address>[^\\n]+)(?:\\n|$)",N="(?:\\n(?<statement>[\\S\\s]*?)(?:\\n|$))??",U="(?:\\nURI: (?<uri>[^\\n]+))?",q="(?:\\nVersion: (?<version>[^\\n]+))?",F="(?:\\nNonce: (?<nonce>[^\\n]+))?",H="(?:\\nIssued At: (?<issuedAt>[^\\n]+))?",C="(?:\\nExpiration Time: (?<expirationTime>[^\\n]+))?",j="(?:\\nNot Before: (?<notBefore>[^\\n]+))?",L="(?:\\nRequest ID: (?<requestId>[^\\n]+))?",W="(?:\\nChain ID: (?<chainId>[^\\n]+))?",G="(?:\\nResources:(?<resources>(?:\\n- [^\\n]+)*))?",Q=`${U}${q}${F}${H}${C}${j}${L}${W}${G}`,X=new RegExp(`^${O}${D}${N}${Q}\\n*$`);function oe(e){let t=X.exec(e);if(!t)return{valid:!1,errors:["invalid_message"]};let i=t.groups;if(!i)return{valid:!1,errors:["invalid_message"]};let n=[];return(!i.domain||i.domain==="undefined")&&n.push("message_domain_missing"),(!i.address||i.address==="undefined")&&n.push("message_address_missing"),(!i.version||i.version==="undefined")&&n.push("message_version_missing"),(!i.chainId||i.chainId==="undefined")&&n.push("message_chain_id_missing"),n.length?{valid:!1,errors:n}:{valid:!0,data:{domain:i.domain,address:i.address,statement:i.statement,uri:i.uri,version:i.version,nonce:i.nonce,chainId:i.chainId,issuedAt:i.issuedAt,expirationTime:i.expirationTime,notBefore:i.notBefore,requestId:i.requestId,resources:i.resources?.split(`
- `).slice(1)}}}async function ae(e,t={}){let{expected:i,input:n,publicKey:r}=e;if(!(r instanceof P))return{valid:!1,errors:["invalid_public_key"]};let a=n.address,u=await I(async()=>(await(t.aptos??c).getAccountInfo({accountAddress:a})).authentication_key,a),$=r.authKey().derivedAddress();if(!M.from(u,{maxMissingChars:63}).equals($))return{valid:!1,errors:["invalid_auth_key"]};let s=[];i.domain&&i.domain!==n.domain&&s.push("message_domain_mismatch"),i.address&&i.address!==n.address&&s.push("message_address_mismatch"),i.statement!==n.statement&&s.push("message_statement_mismatch"),i.uri&&i.uri!==n.uri&&s.push("message_uri_mismatch"),i.version&&i.version!==n.version&&s.push("message_version_mismatch"),i.chainId&&i.chainId!==n.chainId&&s.push("message_chain_id_mismatch"),i.nonce!==n.nonce&&s.push("message_nonce_mismatch"),i.issuedAt!==n.issuedAt&&s.push("message_issued_at_mismatch"),i.expirationTime!==n.expirationTime&&s.push("message_expiration_time_mismatch"),i.notBefore!==n.notBefore&&s.push("message_not_before_mismatch"),i.requestId!==n.requestId&&s.push("message_request_id_mismatch"),i.resources?n.resources?m(i.resources,n.resources,t?.excludedResources)||s.push("message_resources_mismatch"):s.push("message_resources_missing"):n.resources&&s.push("message_resources_unexpected");let f=new Date;return i.expirationTime&&f.getTime()>=new Date(i.expirationTime).getTime()&&s.push("message_expired"),i.notBefore&&f.getTime()<new Date(i.notBefore).getTime()&&s.push("message_not_yet_valid"),s.length?{valid:!1,errors:s}:{valid:!0}}async function ue(e,t={}){let i=z(e.input),n=V(i);return await S({publicKey:e.publicKey,signature:e.signature,signingMessage:n},t)?{valid:!0}:{valid:!1,errors:["invalid_signature"]}}import{AnyPublicKey as p,AnySignature as h,Deserializer as b,Ed25519PublicKey as d,Ed25519Signature as _,Hex as w,MultiEd25519PublicKey as g,MultiEd25519Signature as A,MultiKey as l,MultiKeySignature as x,SigningScheme as o}from"@aptos-labs/ts-sdk";var E=e=>e==="ed25519"||e==="multi_ed25519"||e==="single_key"||e==="multi_key";function ge(e){if(typeof e=="object"){if(d.isInstance(e))return"ed25519";if(p.isInstance(e))return"single_key";if(l.isInstance(e))return"multi_key";if(e instanceof g)return"multi_ed25519";throw new Error(`Unknown public key type for instance: ${e}`)}switch(e){case o.Ed25519:return"ed25519";case o.MultiEd25519:return"multi_ed25519";case o.SingleKey:return"single_key";case o.MultiKey:return"multi_key";default:throw new Error(`Unknown public key type for signing scheme: ${e}`)}}function K(e,t){let i=new b(w.fromHexInput(t).toUint8Array());if(typeof e!="string")switch(e){case o.Ed25519:return d.deserialize(i);case o.MultiEd25519:return g.deserialize(i);case o.SingleKey:return p.deserialize(i);case o.MultiKey:return l.deserialize(i);default:throw new Error(`Unknown public key type for signing scheme: ${e}`)}switch(e){case"ed25519":return d.deserialize(i);case"multi_ed25519":return g.deserialize(i);case"single_key":return p.deserialize(i);case"multi_key":return l.deserialize(i);default:throw new Error(`Unknown public key type: ${e}`)}}function T(e,t){let i=new b(w.fromHexInput(t).toUint8Array());if(typeof e!="string")switch(e){case o.Ed25519:return _.deserialize(i);case o.MultiEd25519:return A.deserialize(i);case o.SingleKey:return h.deserialize(i);case o.MultiKey:return x.deserialize(i);default:throw new Error(`Unknown signature type for signing scheme: ${e}`)}switch(e){case"ed25519":return _.deserialize(i);case"multi_ed25519":return A.deserialize(i);case"single_key":return h.deserialize(i);case"multi_key":return x.deserialize(i);default:throw new Error(`Unknown signature type: ${e}`)}}function le(){let e=new Uint8Array(12);return crypto.getRandomValues(e),y(e)}var Z="2",ye=e=>({version:Z,type:e.type,signature:e.signature.bcsToHex().toString(),input:e.input,publicKey:e.account.publicKey.bcsToHex().toString()}),Ie=e=>{let{version:t}=e;if(t==="2"){if(!E(e.type))throw new Error(`Unexpected public key scheme: ${e.type}`);return{version:"2",type:e.type,signature:T(e.type,e.signature),input:e.input,publicKey:K(e.type,e.publicKey)}}throw new Error(`Unexpected serialization version: ${t}`)};export{Z as CURRENT_SERIALIZATION_VERSION,z as createSignInMessage,V as createSignInSigningMessage,Ie as deserializeSignInOutput,K as deserializeSignInPublicKey,T as deserializeSignInSignature,le as generateNonce,ge as getSignInPublicKeyScheme,E as isValidPublicKeyScheme,oe as parseSignInMessage,ye as serializeSignInOutput,ae as verifySignInMessage,ue as verifySignInSignature};
//# sourceMappingURL=index.js.map