mobius-client 0.1.0

data/Rakefile

@@ -0,0 +1,6 @@
+require "bundler/gem_tasks"
+require "rspec/core/rake_task"
+
+RSpec::Core::RakeTask.new(:spec)
+
+task :default => :spec

data/bin/console

@@ -0,0 +1,14 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "mobius/client"
+
+# You can add fixtures and/or initialization code here to make experimenting
+# with your gem easier. You can also use a different console, if you like.
+
+# (If you use this, don't forget to add pry to your Gemfile!)
+# require "pry"
+# Pry.start
+
+require "irb"
+IRB.start(__FILE__)

data/bin/setup

@@ -0,0 +1,8 @@
+#!/usr/bin/env bash
+set -euo pipefail
+IFS=$'\n\t'
+set -vx
+
+bundle install
+
+# Do any other automated setup that you need to do here

data/examples/auth/Gemfile

@@ -0,0 +1,5 @@
+source "https://rubygems.org"
+
+gem "sinatra"
+gem "slim"
+gem "mobius-client", path: "../.."

data/examples/auth/Gemfile.lock

@@ -0,0 +1,106 @@
+PATH
+  remote: ../..
+  specs:
+    mobius-client (0.1.0)
+      dry-initializer (~> 2.4)
+      faraday (~> 0.14)
+      faraday_middleware (~> 0.12, >= 0.12.2)
+      jwt (~> 1.5, >= 1.5.6)
+      stellar-sdk (~> 0.3)
+      thor (~> 0.20)
+
+GEM
+  remote: https://rubygems.org/
+  specs:
+    activemodel (5.1.6)
+      activesupport (= 5.1.6)
+    activesupport (5.1.6)
+      concurrent-ruby (~> 1.0, >= 1.0.2)
+      i18n (>= 0.7, < 2)
+      minitest (~> 5.1)
+      tzinfo (~> 1.1)
+    base32 (0.3.2)
+    citrus (3.0.2)
+    concurrent-ruby (1.0.5)
+    contracts (0.16.0)
+    digest-crc (0.4.1)
+    dry-initializer (2.4.0)
+    excon (0.44.4)
+    faraday (0.14.0)
+      multipart-post (>= 1.2, < 3)
+    faraday-digestauth (0.3.0)
+      faraday (~> 0.7)
+      net-http-digest_auth (~> 1.4)
+    faraday_hal_middleware (0.1.0)
+      faraday_middleware (~> 0.9)
+    faraday_middleware (0.12.2)
+      faraday (>= 0.7.4, < 1.0)
+    ffi (1.9.23)
+    futuroscope (0.1.11)
+    hyperclient (0.7.2)
+      faraday
+      faraday-digestauth
+      faraday_hal_middleware
+      faraday_middleware
+      futuroscope
+      net-http-digest_auth
+      uri_template
+    i18n (1.0.0)
+      concurrent-ruby (~> 1.0)
+    jwt (1.5.6)
+    minitest (5.11.3)
+    multipart-post (2.0.0)
+    mustermann (1.0.2)
+    net-http-digest_auth (1.4.1)
+    rack (2.0.4)
+    rack-protection (2.0.1)
+      rack
+    rbnacl (5.0.0)
+      ffi
+    rbnacl-libsodium (1.0.16)
+      rbnacl (>= 3.0.1)
+    sinatra (2.0.1)
+      mustermann (~> 1.0)
+      rack (~> 2.0)
+      rack-protection (= 2.0.1)
+      tilt (~> 2.0)
+    slim (3.0.9)
+      temple (>= 0.7.6, < 0.9)
+      tilt (>= 1.3.3, < 2.1)
+    stellar-base (0.13.0)
+      activesupport (>= 4.2.7)
+      base32
+      digest-crc
+      rbnacl
+      rbnacl-libsodium (~> 1.0.3)
+      xdr (~> 2.0.0)
+    stellar-sdk (0.3.0)
+      activesupport (>= 4.2.7)
+      contracts (~> 0.7)
+      excon (~> 0.44.4)
+      hyperclient (~> 0.7.0)
+      stellar-base (~> 0.13.0)
+      toml-rb (~> 1.1.1)
+    temple (0.8.0)
+    thor (0.20.0)
+    thread_safe (0.3.6)
+    tilt (2.0.8)
+    toml-rb (1.1.1)
+      citrus (~> 3.0, > 3.0)
+    tzinfo (1.2.5)
+      thread_safe (~> 0.1)
+    uri_template (0.7.0)
+    xdr (2.0.0)
+      activemodel (>= 4.2.7)
+      activesupport (>= 4.2.7)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  mobius-client!
+  sinatra
+  slim
+
+BUNDLED WITH
+   1.16.0

data/examples/auth/auth.rb

@@ -0,0 +1,33 @@
+require "bundler/setup"
+require "sinatra"
+require "mobius/client"
+
+keypair = Stellar::KeyPair.random
+
+puts "App public: #{keypair.address}"
+
+set :public_folder, "public"
+
+get "/" do
+  slim :index, locals: { app_public_key: keypair.address }
+end
+
+# Generates challenge transaction signed with application private key.
+get "/auth" do
+  Mobius::Client::Auth::Challenge.call(keypair.seed)
+end
+
+# Checks transaction signature.
+post "/auth" do
+  begin
+    token = Mobius::Client::Auth::Token.new(keypair.seed, params[:xdr], params[:public_key])
+    token.validate!
+    token.hash(:hex)
+  rescue Mobius::Client::Error::Unauthorized
+    "Access denied!"
+  rescue Mobius::Client::Error::TokenExpired
+    "Session expired!"
+  rescue Mobius::Client::Error::TokenTooOld
+    "Challenge expired!"
+  end
+end

data/examples/auth/public/app.js

@@ -0,0 +1,35 @@
+StellarSdk.Network.useTestNetwork()
+
+$(function() {
+  var xdr = null
+  var signedXdr = null
+  var keypair = StellarSdk.Keypair.random();
+
+  $('#public_key').val(keypair.publicKey());
+  $('#secret').val(keypair.secret());
+
+  $('#challenge').on('click', function() {
+    axios.get('/auth').then(function(response) {
+      xdr = response.data;
+      $('#challenge_xdr').val(xdr);
+    });
+  });
+
+  $('#sign').on('click', function() {
+    var tx = new StellarSdk.Transaction(xdr);
+    tx.sign(keypair);
+    signedXdr = tx.toEnvelope().toXDR("base64");
+    $('#signed_challenge_xdr').val(signedXdr);
+
+    axios({
+      url: '/auth',
+      method: 'post',
+      params: {
+        xdr: signedXdr,
+        public_key: keypair.publicKey()
+      }
+    }).then(function(response) {
+      $('#result').html(response.data)
+    });
+  })
+})

data/examples/auth/views/index.slim

@@ -0,0 +1,44 @@
+html
+  head
+    css:
+      .field { margin-top: 0.5em; }
+      label { width: 500px; display: block; }
+      input, textarea { width: 500px; }
+body
+  h1 Authorize application
+
+  .field
+    label for="app_public_key"
+      | App Public Key
+    input type="text" id="app_public_key" value="#{app_public_key}"
+
+  h2 Stage 1: Request Challenge
+  .field
+    textarea id="challenge_xdr" disabled="disabled" rows=10
+  .field
+    input type="button" value="Request challenge" id="challenge"
+
+  h2 Stage 2: Sign Challenge
+  form
+    .field
+      label for="public_key"
+        | Public key:
+      input type="text" id="public_key"
+
+    .field
+      label for="secret"
+        | Private key:
+      input type="text" id="secret"
+
+    .field
+      input type="button" value="Sign and send challenge" id="sign"
+
+  textarea id="signed_challenge_xdr" disabled="disabled" rows=10
+
+  h3#result None
+
+
+  script src="https://cdnjs.cloudflare.com/ajax/libs/stellar-sdk/0.8.0/stellar-sdk.js"
+  script src="https://cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js"
+  script src="https://cdnjs.cloudflare.com/ajax/libs/axios/0.18.0/axios.min.js"
+  script src="/app.js"

data/exe/mobius-cli

@@ -0,0 +1,7 @@
+#!/usr/bin/env ruby
+
+require "bundler/setup"
+require "mobius/client"
+require "thor"
+
+Mobius::Cli::App.start(ARGV)

data/lib/mobius/cli/app.rb

@@ -0,0 +1,15 @@
+require "thor"
+
+class Mobius::Cli::App < Mobius::Cli::Base
+  def self.exit_on_failure?
+    true
+  end
+
+  class_option :production, desc: "Use production network", default: false, aliases: "-p", type: :boolean
+
+  desc "create", "Create various assets"
+  subcommand "create", Mobius::Cli::Create
+
+  desc "auth", "Authorize and authenticate user"
+  subcommand "auth", Mobius::Cli::Auth
+end

data/lib/mobius/cli/auth.rb

@@ -0,0 +1,95 @@
+require "uri"
+require "thor"
+
+class Mobius::Cli::Auth < Mobius::Cli::Base
+  desc "authorize <User secret> <App public>", "Authorize application to pay from user account"
+  def authorize(user_seed, app_public_key)
+    use_network
+
+    say "Adding cosigner..."
+    user_keypair = Mobius::Client.to_keypair(user_seed)
+    app_keypair = Mobius::Client.to_keypair(app_public_key)
+    Mobius::Client::Blockchain::AddCosigner.call(user_keypair, app_keypair)
+    say "#{app_keypair.address} is now authorized to withdraw from #{user_keypair.address}"
+  end
+
+  # rubocop:disable Metrics/MethodLength, Metrics/AbcSize
+  desc "fetch <URL> <User secret> <App public>", "Obtain auth token from application"
+  method_option :jwt, type: :string, aliases: "-j"
+  def fetch(url, user_seed, app_public)
+    use_network
+
+    keypair = Mobius::Client.to_keypair(user_seed)
+
+    say "Requesting challenge..."
+
+    uri = URI(url)
+    conn = http("#{uri.scheme}://#{uri.host}:#{uri.port}")
+
+    response = conn.get(uri.path)
+    validate_response!(response)
+    xdr = response.body
+
+    say "Challenge:"
+    say xdr
+    say "Requesting token..."
+
+    signed_xdr = Mobius::Client::Auth::Sign.call(keypair.seed, xdr, app_public)
+
+    say "Signed challenge:"
+    say signed_xdr
+
+    response = conn.post(uri.path, xdr: signed_xdr, public_key: keypair.address)
+    validate_response!(response)
+
+    token = response.body
+
+    say "Token (hash):"
+    if options[:jwt]
+      say Mobius::Client::Auth::Jwt.new(options[:jwt]).encode(token)
+    else
+      say token
+    end
+  rescue Mobius::Client::Error::Unauthorized
+    say "Application signature wrong! Check application public key.", :red
+  end
+  # rubocop:enable Metrics/MethodLength, Metrics/AbcSize
+
+  # rubocop:disable Metrics/MethodLength, Metrics/AbcSize
+  desc "token <User secret> <App secret>", "Generate auth token locally"
+  method_option :jwt, type: :string, aliases: "-j"
+  def token(user_seed, app_seed)
+    use_network
+
+    user_keypair = Mobius::Client.to_keypair(user_seed)
+    app_keypair = Mobius::Client.to_keypair(app_seed)
+
+    xdr = Mobius::Client::Auth::Challenge.call(app_seed)
+    signed_xdr = Mobius::Client::Auth::Sign.call(user_seed, xdr, app_keypair.address)
+    token = Mobius::Client::Auth::Token.new(app_seed, signed_xdr, user_keypair.address)
+
+    say "Token:"
+    if options[:jwt]
+      say Mobius::Client::Auth::Jwt.new(options[:jwt]).encode(token)
+    else
+      say token.hash(:hex)
+    end
+  end
+  # rubocop:enable Metrics/MethodLength, Metrics/AbcSize
+
+  no_commands do
+    def http(host)
+      Faraday.new(host) do |c|
+        c.request :url_encoded
+        c.response :json, content_type: /\bjson$/
+        c.adapter Faraday.default_adapter
+      end
+    end
+
+    def validate_response!(response)
+      return if response.success?
+      say "[ERROR]: #{response.status} #{response.body}", :red
+      exit(-1)
+    end
+  end
+end

data/lib/mobius/cli/base.rb

@@ -0,0 +1,9 @@
+class Mobius::Cli::Base < Thor
+  protected
+
+  no_commands do
+    def use_network
+      Mobius::Client.network = :public if options[:production]
+    end
+  end
+end

data/lib/mobius/cli/create.rb

@@ -0,0 +1,85 @@
+require "thor"
+require "erb"
+
+class Mobius::Cli::Create < Mobius::Cli::Base
+  desc "dapp-account", "Create DApp Store account funded with MOBI and XLM (test network only)"
+  method_option :application, type: :string, aliases: "-a"
+  # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
+  def dapp_account
+    keypair = create_dapp_account
+
+    say " * Public Key: #{keypair.address}"
+    say " * Private Key: #{keypair.seed}"
+    say " * MOBI balance: #{Mobius::Client::Blockchain::Account.new(keypair).balance}"
+
+    if options["application"]
+      app_keypair = Mobius::Client.to_keypair(options["application"])
+      add_cosigner(keypair, app_keypair)
+    end
+    say "Done!"
+  rescue StandardError => e
+    say "[ERROR] #{e.message}", :red
+  end
+  # rubocop:enable Metrics/AbcSize, Metrics/MethodLength
+
+  desc "account", "Create regular Stellar account funded with XLM only (test network)"
+  def account
+    keypair = create_account
+
+    say " * Public Key: #{keypair.address}"
+    say " * Private Key: #{keypair.seed}"
+    say " * XLM balance: #{Mobius::Client::Blockchain::Account.new(keypair).balance(:native)}"
+    say "Done!"
+  rescue StandardError => e
+    say "[ERROR] #{e.message}", :red
+  end
+
+  # rubocop:disable Metrics/AbcSize, Metrics/MethodLength
+  desc "dev-wallet", "Create wallet-dev.html"
+  def dev_wallet
+    app_keypair = create_dapp_account(0)
+    normal_keypair = create_dapp_account(1000)
+    add_cosigner(normal_keypair, app_keypair)
+    zero_balance_keypair = create_dapp_account(0)
+    unauthorized_keypair = create_account
+
+    vars = {
+      app: app_keypair,
+      normal: normal_keypair,
+      zero_balance: zero_balance_keypair,
+      unauthorized: unauthorized_keypair
+    }
+
+    t = File.read(TEMPLATE)
+    r = ERB.new(t).result(OpenStruct.new(vars).instance_eval { binding })
+    File.open("dev-wallet.html", "w+") { |f| f.puts r }
+
+    say "dev-wallet.html created. Copy it to your public web server directory and do not forget to change the URL!"
+  rescue StandardError => e
+    say "[ERROR] #{e.message}", :red
+  end
+  # rubocop:enable Metrics/AbcSize, Metrics/MethodLength
+
+  no_commands do
+    def create_dapp_account(amount = 1000)
+      say "Calling Mobius FriendBot..."
+      Stellar::KeyPair.random.tap do |keypair|
+        Mobius::Client::FriendBot.call(keypair.seed, amount)
+      end
+    end
+
+    def create_account
+      say "Calling Stellar FriendBot..."
+      Stellar::KeyPair.random.tap do |keypair|
+        Mobius::Client::Blockchain::FriendBot.call(keypair)
+      end
+    end
+
+    def add_cosigner(keypair, app_keypair)
+      say "Adding cosigner..."
+      Mobius::Client::Blockchain::AddCosigner.call(keypair, app_keypair)
+    end
+  end
+
+  TEMPLATE = File.join(File.dirname(__FILE__), "../../../template/dev-wallet.html.erb").freeze
+end