npm - @bsv/wallet-toolbox - Versions diffs - 1.1.62 → 1.2.1 - Mend

@bsv/wallet-toolbox 1.1.62 → 1.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (185) hide show

package/src/WalletAuthenticationManager.ts ADDED Viewed

@@ -0,0 +1,150 @@
+import { CWIStyleWalletManager, UMPTokenInteractor, OverlayUMPTokenInteractor } from './CWIStyleWalletManager'
+import { PrivilegedKeyManager } from './sdk/PrivilegedKeyManager'
+import { WalletInterface, Random, Utils, Transaction, RPuzzle, PrivateKey, BigNumber } from '@bsv/sdk'
+import { WABClient } from './wab-client/WABClient'
+import { AuthMethodInteractor } from './wab-client/auth-method-interactors/AuthMethodInteractor'
+/**
+ * WalletAuthenticationManager
+ *
+ * A wallet manager that integrates
+ * with a WABClient for user authentication flows (e.g. Twilio phone).
+ */
+export class WalletAuthenticationManager extends CWIStyleWalletManager {
+  private wabClient: WABClient // instance of WABClient
+  private authMethod?: AuthMethodInteractor // chosen AuthMethod interactor
+  private tempPresentationKey?: string // for temporary persistence between auth steps
+  constructor(
+    adminOriginator: string,
+    walletBuilder: (primaryKey: number[], privilegedKeyManager: PrivilegedKeyManager) => Promise<WalletInterface>,
+    interactor: UMPTokenInteractor = new OverlayUMPTokenInteractor(),
+    recoveryKeySaver: (key: number[]) => Promise<true>,
+    passwordRetriever: (reason: string, test: (passwordCandidate: string) => boolean) => Promise<string>,
+    wabClient: WABClient,
+    authMethod?: AuthMethodInteractor,
+    stateSnapshot?: number[]
+  ) {
+    super(
+      adminOriginator,
+      walletBuilder,
+      interactor,
+      recoveryKeySaver,
+      passwordRetriever,
+      // Here, we provide a custom new wallet funder that uses the Secret Server
+      async (presentationKey: number[], wallet: WalletInterface, adminOriginator: string) => {
+        debugger
+        const { paymentData } = await this.wabClient.requestFaucet(Utils.toHex(presentationKey))
+        if (!paymentData.k || !paymentData.tx) {
+          throw new Error('Invalid')
+        }
+        const tx = Transaction.fromAtomicBEEF(paymentData.tx as number[])
+        console.log(paymentData)
+        const faucetRedeemTXCreationResult = await wallet.createAction(
+          {
+            inputBEEF: tx.toBEEF(),
+            inputs: [
+              {
+                outpoint: `${paymentData.txid}.0`,
+                unlockingScriptLength: 108,
+                inputDescription: 'Fund from faucet'
+              }
+            ],
+            description: 'Fund wallet'
+          },
+          adminOriginator
+        )
+        const faucetRedeemTX = Transaction.fromAtomicBEEF(faucetRedeemTXCreationResult.signableTransaction!.tx)
+        const faucetRedemptionPuzzle = new RPuzzle()
+        const randomRedemptionPrivateKey = PrivateKey.fromRandom()
+        const faucetRedeemUnlocker = faucetRedemptionPuzzle.unlock(
+          new BigNumber(paymentData.k, 16),
+          randomRedemptionPrivateKey
+        )
+        const faucetRedeemUnlockingScript = await faucetRedeemUnlocker.sign(faucetRedeemTX, 0)
+        const signActionResult = await wallet.signAction({
+          reference: faucetRedeemTXCreationResult.signableTransaction!.reference,
+          spends: {
+            0: {
+              unlockingScript: faucetRedeemUnlockingScript.toHex()
+            }
+          }
+        })
+        console.log('Sign action result:', signActionResult)
+      },
+      stateSnapshot
+    )
+    this.wabClient = wabClient
+    this.authMethod = authMethod
+  }
+  /**
+   * Sets (or switches) the chosen AuthMethodInteractor at runtime,
+   * in case the user changes their mind or picks a new method in the UI.
+   */
+  public setAuthMethod(method: AuthMethodInteractor) {
+    this.authMethod = method
+  }
+  /**
+   * Initiate the WAB-based flow, e.g. sending an SMS code or starting an ID check,
+   * using the chosen AuthMethodInteractor.
+   */
+  public async startAuth(payload: any): Promise<void> {
+    if (!this.authMethod) {
+      throw new Error('No AuthMethod selected in WalletAuthenticationManager')
+    }
+    this.tempPresentationKey = this.generateTemporaryPresentationKey()
+    // For example, if this.authMethod is Twilio, `payload` might contain { phoneNumber: "+1..." }
+    const startRes = await this.wabClient.startAuthMethod(
+      this.authMethod,
+      // The user might not have a presentationKey yet, so we generate one locally to pass to the server.
+      // If it’s an existing user on the WAB side, the WAB will give us the stored key later.
+      // But we do need some placeholder key for the 'startAuth' call:
+      this.tempPresentationKey,
+      payload
+    )
+    if (!startRes.success) {
+      throw new Error(startRes.message || 'Failed to start WAB auth method')
+    }
+  }
+  /**
+   * Completes the WAB-based flow, retrieving the final presentationKey from WAB if successful.
+   */
+  public async completeAuth(payload: any): Promise<void> {
+    if (!this.authMethod || !this.tempPresentationKey) {
+      throw new Error('No AuthMethod selected in WalletAuthenticationManager or startAuth has yet to be called.')
+    }
+    // Unser the temp presentation key early (for security)
+    const tempKey = this.tempPresentationKey
+    this.tempPresentationKey = undefined
+    const result = await this.wabClient.completeAuthMethod(this.authMethod, tempKey, payload)
+    if (!result.success || !result.presentationKey) {
+      throw new Error(result.message || 'Failed to complete WAB auth')
+    }
+    // We now have the final 256-bit key in hex from the WAB
+    const presentationKeyHex = result.presentationKey
+    const presentationKeyBytes = Utils.toArray(presentationKeyHex, 'hex')
+    // Provide this presentation key to the underlying CWI logic:
+    // This sets 'this.presentationKey' and determines if it's a new or existing user
+    // based on whether a UMP token exists on chain.  We'll do "presentation-key-and-password"
+    // for new user flows, for example, or user might choose "presentation-key-and-recovery-key" if we wanted.
+    // Either way, WAB has now done its job and we are off to base-layer CWI logic at this point!
+    await this.providePresentationKey(presentationKeyBytes)
+  }
+  private generateTemporaryPresentationKey(): string {
+    // For the 'startAuth' call, we can generate a random 32 bytes → 64 hex chars.
+    const randomBytes = Random(32) // array of length 32
+    return Utils.toHex(randomBytes)
+  }
+}