UNPKG

@didtools/pkh-tezos

Version:

Implements support to authenticate, authorize and verify with Tezos accounts as a did:pkh with SIWE(X) and CACAO. Primarly used with `did-session` and `@didtools/cacao`.

github.com/ceramicnetwork/js-did

ceramicnetwork/js-did

111 lines (82 loc) 3.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
## Tezos AuthMethod and Verifier Implements support to authenticate, authorize and verify with Tezos accounts as a did:pkh with SIWE(X) and CACAO. Primarly used with `did-session` and `@didtools/cacao`. ## Installation ``` npm install --save @didtools/pkh-tezos ``` ## Auth Usage To Auth in web based env, use any injected web3 provider that implements the standard interface with `TezosWebAuth`. ```ts // Web Auth Usage import { TezosWebAuth, getAccountId, verifyTezosSignature} from '@didtools/pkh-tezos' // ... let activeAccount = await tzProvider.getActiveAccount() if (!activeAccount) { const permissions = await tzProvider.requestPermissions() let activeAccount = permissions } const address = await activeAccount.address const accountId = await getAccountId(tzProvider, address) const authMethod = await TezosWebAuth.getAuthMethod(tzProvider, accountId) ``` <!-- To Auth in a Node based env, use any standard web3 provider interface with `TezosNodeAuth` ```ts const session = await DIDSession.authorize(authMethod, { resources: ['ceramic://*'] }) ``` --> <!-- ```js // Node Auth Usage import { TezosNodeAuth, getAccountId } from '@didtools/pkh-tezos' // ... let activeAccount = await tzProvider.getActiveAccount() if (!activeAccount) { const permissions = await tzProvider.requestPermissions() let activeAccount = permissions } const address = await activeAccount.address const accountId = await getAccountId(tzProvider, address) const authMethod = await TezosNodeAuth.getAuthMethod(tzProvider, accountId, publicKey) ``` --> To use with did-session and reference did-session docs for more details. ```js const session = await DIDSession.authorize(authMethod, { resources: ['ceramic://*'] }) ``` ## Configuration AuthMethod creators consume a standard Tezos provider and an AccountId. AccountID follows the CAIP10 standard. The helper methods `getAccountIdByNetwork` and `getAccountId` are provided, but you can also create an AccountID using the CAIP library directly. ```js import { AccountId } from 'caip' import { getAccountIdByNetwork, getAccountId } from '@didtools/pkh-tezos' // Using network string const accountId = getAccountIdByNetwork('mainnet', address) // With CAIP const tezosMainnetChainId = 'NetXdQprcVkpaWU' const chainNameSpace = 'tezos' const chainId = `${chainNameSpace}:${tezosMainnetChainId}` const accountIdCAIP = new AccountId({ address, chainId }) ``` <!-- The `TezosNodeAuth` additionally consumes an application name. The 'TezosWebAuth' method uses your application domain name by default. ```ts import { TezosNodeAuth } from '@didtools/pkh-tezos' const authMethod = await TezosNodeAuth.getAuthMethod(tzProvider, accountId) ``` --> ## Verifier Usage Verifiers are needed to verify different did:pkh signed payloads using CACAO. Libraries that need them will consume a verifiers map allowing your to register the verifiers you want to support. ```ts import { Cacao } from '@didtools/cacao' import { getTezosVerifier } from '@didtools/pkh-tezos' import { DID } from 'dids' const verifiers = { ...getTezosVerifier() } // Directly with cacao Cacao.verify(cacao, { verifiers, ...opts}) // With DIDS, reference DIDS for more details const dids = //configured dids instance await dids.verifyJWS(jws, { capability, verifiers, ...opts}) ``` ## License Apache-2.0 OR MIT