UNPKG

bitcore-node

Version:

A blockchain indexing node with extended capabilities using bitcore

65 lines 2.52 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
"use strict"; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.Auth = void 0; exports.verifyRequestSignature = verifyRequestSignature; const logger_1 = __importDefault(require("../logger")); const chain_state_1 = require("../providers/chain-state"); const config_1 = require("../services/config"); const secp256k1 = require('secp256k1'); const bitcoreLib = require('bitcore-lib'); function verifyRequestSignature(params) { const { message, pubKey, signature } = params; const pub = new bitcoreLib.PublicKey(pubKey).toBuffer(); const messageHash = bitcoreLib.crypto.Hash.sha256sha256(Buffer.from(message)); if (typeof signature === 'string') { return secp256k1.ecdsaVerify(Buffer.from(signature, 'hex'), messageHash, pub); } else { throw new Error('Signature must exist'); } } const authenticateMiddleware = async (req, res, next) => { const { chain, network, pubKey } = req.params; logger_1.default.debug('Authenticating request with pubKey: %o', pubKey); let wallet; try { wallet = await chain_state_1.ChainStateProvider.getWallet({ chain, network, pubKey }); } catch (err) { return res.status(500).send('Problem authenticating wallet'); } try { if (req.is('application/octet-stream')) { req.body = JSON.parse(req.body.toString()); } if (!wallet) { return res.status(404).send('Wallet not found'); } Object.assign(req, { wallet }); const walletConfig = config_1.Config.for('api').wallets; if (walletConfig && walletConfig.allowUnauthenticatedCalls) { return next(); } const validRequestSignature = verifyRequestSignature({ message: [req.method, req.originalUrl, JSON.stringify(req.body)].join('|'), pubKey: wallet.pubKey, signature: req.headers['x-signature'] }); if (!validRequestSignature) { return res.status(401).send('Authentication failed'); } return next(); } catch (e) { logger_1.default.error('Unexpected error authenticating request: %o', e?.stack || e?.message || e); return res.status(401).send('Authentication failed'); } }; exports.Auth = { verifyRequestSignature, authenticateMiddleware }; //# sourceMappingURL=auth.js.map