UNPKG

@blocto/dappauth

Version:

A util to prove actionable control ('ownership') over a public Ethereum address using eth_sign

github.com/blocto/dappauth.js

blocto/dappauth.js

76 lines (65 loc) 2.57 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
import Web3 from 'web3'; import { fromRpcSig, ecrecover, publicToAddress, bufferToHex, hashPersonalMessage, keccak } from 'ethereumjs-util'; import ERC1271 from './ABIs/ERC1271.js'; import { mergeErrors, isHexString, removeHexPrefix } from './utils/index.js'; // bytes4(keccak256("isValidSignature(bytes32,bytes)") const ERC1271_MAGIC_VALUE = '0x1626ba7e'; export default class DappAuth { constructor(web3Provider) { this.web3 = new Web3(web3Provider); } async isAuthorizedSigner(challenge, signature, address) { const eoaChallengeHash = this._hashEOAPersonalMessage(challenge); let isAuthorizedDirectKey; let errEOA; // try direct-keyed wallet try { // Get the address of whoever signed this message const { v, r, s } = fromRpcSig(signature); const recoveredKey = ecrecover(eoaChallengeHash, v, r, s); const recoveredAddress = publicToAddress(recoveredKey); if ( address.toLowerCase() === bufferToHex(recoveredAddress).toLowerCase() ) { isAuthorizedDirectKey = true; } } catch (err) { errEOA = err; // if either direct-keyed auth flow threw an error, or it did not conclude to be authorized, proceed to try smart-contract wallet. } try { if (isAuthorizedDirectKey === true) return isAuthorizedDirectKey; // try smart-contract wallet const erc1271CoreContract = new this.web3.eth.Contract(ERC1271, address); // check persoonalSign hash first const magicValue = await erc1271CoreContract.methods .isValidSignature(eoaChallengeHash, signature) .call(); if (magicValue === ERC1271_MAGIC_VALUE) { return true; } else { // then check SCMessage hash (ERC-1654) const magicValue2 = await erc1271CoreContract.methods .isValidSignature(this._hashSCMessage(challenge), signature) .call(); return magicValue2 === ERC1271_MAGIC_VALUE; } } catch (err) { throw mergeErrors(errEOA, err); } } _hashEOAPersonalMessage(challenge) { return hashPersonalMessage(this._decodeChallenge(challenge)); } // This is a hash just over the challenge. The smart contract takes this result and hashes on top to an erc191 hash. _hashSCMessage(challenge) { return keccak(this._decodeChallenge(challenge)); } // See https://github.com/MetaMask/eth-sig-util/issues/60 _decodeChallenge(challenge) { return isHexString(challenge) ? Buffer.from(removeHexPrefix(challenge), 'hex') : Buffer.from(challenge); } }