@devtion/devcli 0.0.0-5d170d3 → 0.0.0-67a4629

package/dist/types/commands/authBandada.d.ts

@@ -0,0 +1,2 @@
+declare const authBandada: () => Promise<never>;
+export default authBandada;

package/dist/types/commands/ceremony/index.d.ts

@@ -0,0 +1,3 @@
+import { Command } from "commander";
+declare const setCeremonyCommands: (program: Command) => Command;
+export default setCeremonyCommands;

package/dist/types/commands/ceremony/listParticipants.d.ts

@@ -0,0 +1,2 @@
+declare const listParticipants: () => Promise<never>;
+export default listParticipants;

package/dist/types/commands/contribute.d.ts

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { Contribution, ContributionValidity, FirebaseDocumentInfo } from "@p0tion/actions";
+import { Contribution, ContributionValidity, FirebaseDocumentInfo } from "@devtion/actions";
 import { DocumentSnapshot, DocumentData, Firestore } from "firebase/firestore";
 import { Functions } from "firebase/functions";
 /**

package/dist/types/commands/finalize.d.ts

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { FirebaseDocumentInfo } from "@p0tion/actions";
+import { FirebaseDocumentInfo } from "@devtion/actions";
 import { Functions } from "firebase/functions";
 import { Firestore } from "firebase/firestore";
 /**
@@ -36,8 +36,9 @@ export declare const handleVerifierSmartContract: (cloudFunctions: Functions, bu
  * @param participant <FirebaseDocumentInfo> - the Firestore document of the participant (coordinator).
  * @param beacon <string> - the value used to compute the final contribution while finalizing the ceremony.
  * @param coordinatorIdentifier <string> - the identifier of the coordinator.
+ * @param circuitsLength <number> - the number of circuits in the ceremony.
  */
-export declare const handleCircuitFinalization: (cloudFunctions: Functions, firestoreDatabase: Firestore, ceremony: FirebaseDocumentInfo, circuit: FirebaseDocumentInfo, participant: FirebaseDocumentInfo, beacon: string, coordinatorIdentifier: string) => Promise<void>;
+export declare const handleCircuitFinalization: (cloudFunctions: Functions, firestoreDatabase: Firestore, ceremony: FirebaseDocumentInfo, circuit: FirebaseDocumentInfo, participant: FirebaseDocumentInfo, beacon: string, coordinatorIdentifier: string, circuitsLength: number) => Promise<void>;
 /**
  * Finalize command.
  * @notice The finalize command allows a coordinator to finalize a Trusted Setup Phase 2 ceremony by providing the final beacon,
@@ -47,5 +48,5 @@ export declare const handleCircuitFinalization: (cloudFunctions: Functions, fire
  * @dev For proper execution, the command requires the coordinator to be authenticated with a GitHub account (run auth command first) in order to
  * handle sybil-resistance and connect to GitHub APIs to publish the gist containing the final public attestation.
  */
-declare const finalize: () => Promise<void>;
+declare const finalize: (opt: any) => Promise<void>;
 export default finalize;

package/dist/types/commands/index.d.ts

@@ -1,5 +1,6 @@
 export { default as setup } from "./setup.js";
 export { default as auth } from "./auth.js";
+export { default as authBandada } from "./authBandada.js";
 export { default as contribute } from "./contribute.js";
 export { default as observe } from "./observe.js";
 export { default as finalize } from "./finalize.js";

package/dist/types/commands/observe.d.ts

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import { FirebaseDocumentInfo } from "@p0tion/actions";
+import { FirebaseDocumentInfo } from "@devtion/actions";
 import { Firestore } from "firebase/firestore";
 /**
  * Clean cursor lines from current position back to root (default: zero).

package/dist/types/commands/setup.d.ts

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 import { Functions } from "firebase/functions";
-import { CeremonyTimeoutType, CircomCompilerData, CircuitInputData, CeremonyInputData, CircuitDocument } from "@p0tion/actions";
+import { CeremonyTimeoutType, CircomCompilerData, CircuitInputData, CeremonyInputData, CircuitDocument } from "@devtion/actions";
 /**
  * Handle whatever is needed to obtain the input data for a circuit that the coordinator would like to add to the ceremony.
  * @param choosenCircuitFilename <string> - the name of the circuit to add.
@@ -39,7 +39,7 @@ export declare const checkAndDownloadSmallestPowersOfTau: (powers: string, ptauC
  * number of powers greater than or equal to the powers needed by the zKey), the coordinator will be asked
  * to provide a number of powers manually, ranging from the smallest possible to the largest.
  * @param neededPowers <number> - the smallest amount of powers needed by the zKey.
- * @returns Promise<string, string> - the information about the choosen Powers of Tau file for the pre-computed zKey
+ * @returns Promise<string, string> - the information about the chosen Powers of Tau file for the pre-computed zKey
  * along with related powers.
  */
 export declare const handlePreComputedZkeyPowersOfTauSelection: (neededPowers: number) => Promise<{

package/dist/types/lib/bandada.d.ts

@@ -0,0 +1,6 @@
+import { GroupResponse } from "@bandada/api-sdk";
+import { Identity } from "@semaphore-protocol/identity";
+export declare const getGroup: (groupId: string) => Promise<GroupResponse | null>;
+export declare const getMembersOfGroup: (groupId: string) => Promise<string[] | null>;
+export declare const addMemberToGroup: (groupId: string, dashboardUrl: string, identity: Identity) => Promise<void>;
+export declare const isGroupMember: (groupId: string, identity: Identity) => Promise<boolean>;

package/dist/types/lib/files.d.ts

@@ -1,4 +1,5 @@
 /// <reference types="node" />
+/// <reference types="node" />
 import { Dirent, Stats } from "fs";
 /**
  * Check a directory path.

package/dist/types/lib/localConfigs.d.ts

@@ -35,6 +35,25 @@ export declare const setLocalAccessToken: (token: string) => void;
  * Delete the stored access token.
  */
 export declare const deleteLocalAccessToken: () => void;
+/**
+ * Return the Bandada identity, if present.
+ * @returns <string | undefined> - the Bandada identity if present, otherwise undefined.
+ */
+export declare const getLocalBandadaIdentity: () => string | unknown;
+/**
+ * Check if the Bandada identity exists in the local storage.
+ * @returns <boolean>
+ */
+export declare const checkLocalBandadaIdentity: () => boolean;
+/**
+ * Set the Bandada identity.
+ * @param identity <string> - the Bandada identity to be stored.
+ */
+export declare const setLocalBandadaIdentity: (identity: string) => void;
+/**
+ * Delete the stored Bandada identity.
+ */
+export declare const deleteLocalBandadaIdentity: () => void;
 /**
  * Get the complete local file path.
  * @param cwd <string> - the current working directory path.

package/dist/types/lib/prompts.d.ts

@@ -1,6 +1,6 @@
 import { Answers } from "prompts";
 import { Firestore } from "firebase/firestore";
-import { CeremonyInputData, FirebaseDocumentInfo, CircomCompilerData, CircuitInputData, CeremonyTimeoutType, DiskTypeForVM } from "@p0tion/actions";
+import { CeremonyInputData, FirebaseDocumentInfo, CircomCompilerData, CircuitInputData, CeremonyTimeoutType, DiskTypeForVM } from "@devtion/actions";
 /**
  * Ask a binary (yes/no or true/false) customizable question.
  * @param question <string> - the question to be answered.
@@ -24,14 +24,14 @@ export declare const promptCircomCompiler: () => Promise<CircomCompilerData>;
  * Shows a list of circuits for a single option selection.
  * @dev the circuit names are derived from local R1CS files.
  * @param options <Array<string>> - an array of circuits names.
- * @returns Promise<string> - the name of the choosen circuit.
+ * @returns Promise<string> - the name of the chosen circuit.
  */
 export declare const promptCircuitSelector: (options: Array<string>) => Promise<string>;
 /**
  * Shows a list of standard EC2 VM instance types for a single option selection.
  * @notice the suggested VM configuration type is calculated based on circuit constraint size.
  * @param constraintSize <number> - the amount of circuit constraints
- * @returns Promise<string> - the name of the choosen VM type.
+ * @returns Promise<string> - the name of the chosen VM type.
  */
 export declare const promptVMTypeSelector: (constraintSize: any) => Promise<string>;
 /**
@@ -42,7 +42,7 @@ export declare const promptVMDiskTypeSelector: () => Promise<DiskTypeForVM>;
 /**
  * Show a series of questions about the circuits.
  * @param constraintSize <number> - the amount of circuit constraints.
- * @param timeoutMechanismType <CeremonyTimeoutType> - the choosen timeout mechanism type for the ceremony.
+ * @param timeoutMechanismType <CeremonyTimeoutType> - the chosen timeout mechanism type for the ceremony.
  * @param needPromptCircomCompiler <boolean> - a boolean value indicating if the questions related to the Circom compiler version and commit hash must be asked.
  * @param enforceVM <boolean> - a boolean value indicating if the contribution verification could be supported by VM-only approach or not.
  * @returns Promise<Array<Circuit>> - circuit info prompted by the coordinator.
@@ -67,7 +67,7 @@ export declare const promptCircuitAddition: () => Promise<boolean>;
  * Shows a list of pre-computed zKeys for a single option selection.
  * @dev the names are derived from local zKeys files.
  * @param options <Array<string>> - an array of pre-computed zKeys names.
- * @returns Promise<string> - the name of the choosen pre-computed zKey.
+ * @returns Promise<string> - the name of the chosen pre-computed zKey.
  */
 export declare const promptPreComputedZkeySelector: (options: Array<string>) => Promise<string>;
 /**
@@ -80,7 +80,7 @@ export declare const promptNeededPowersForCircuit: (suggestedSmallestNeededPower
  * Shows a list of PoT files for a single option selection.
  * @dev the names are derived from local PoT files.
  * @param options <Array<string>> - an array of PoT file names.
- * @returns Promise<string> - the name of the choosen PoT.
+ * @returns Promise<string> - the name of the chosen PoT.
  */
 export declare const promptPotSelector: (options: Array<string>) => Promise<string>;
 /**

package/dist/types/lib/utils.d.ts

@@ -1,4 +1,4 @@
-import { FirebaseDocumentInfo } from "@p0tion/actions";
+import { FirebaseDocumentInfo } from "@devtion/actions";
 import { OAuthCredential } from "firebase/auth";
 import { DocumentData, Firestore } from "firebase/firestore";
 import { Functions } from "firebase/functions";
@@ -154,5 +154,6 @@ export declare const getLatestUpdatesFromParticipant: (firestoreDatabase: Firest
  * @param entropyOrBeaconHash <string> - the entropy or beacon hash (only when finalizing) for the contribution.
  * @param contributorOrCoordinatorIdentifier <string> - the identifier of the contributor or coordinator (only when finalizing).
  * @param isFinalizing <boolean> - flag to discriminate between ceremony finalization (true) and contribution (false).
+ * @param circuitsLength <number> - the total number of circuits in the ceremony.
  */
-export declare const handleStartOrResumeContribution: (cloudFunctions: Functions, firestoreDatabase: Firestore, ceremony: FirebaseDocumentInfo, circuit: FirebaseDocumentInfo, participant: FirebaseDocumentInfo, entropyOrBeaconHash: any, contributorOrCoordinatorIdentifier: string, isFinalizing: boolean) => Promise<void>;
+export declare const handleStartOrResumeContribution: (cloudFunctions: Functions, firestoreDatabase: Firestore, ceremony: FirebaseDocumentInfo, circuit: FirebaseDocumentInfo, participant: FirebaseDocumentInfo, entropyOrBeaconHash: any, contributorOrCoordinatorIdentifier: string, isFinalizing: boolean, circuitsLength: number) => Promise<void>;

package/dist/types/types/index.d.ts

@@ -63,3 +63,15 @@ export type GithubGistFile = {
     raw_url: string;
     size: number;
 };
+/**
+ * Define the return object of the function that verifies the Bandada membership and proof.
+ * @typedef {Object} VerifiedBandadaResponse
+ * @property {boolean} valid - true if the proof is valid and the user is a member of the group; otherwise false.
+ * @property {string} message - a message describing the result of the verification.
+ * @property {string} token - the custom access token.
+ */
+export type VerifiedBandadaResponse = {
+    valid: boolean;
+    message: string;
+    token: string;
+};

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@devtion/devcli",
   "type": "module",
-  "version": "0.0.0-5d170d3",
+  "version": "0.0.0-67a4629",
   "description": "All-in-one interactive command-line for interfacing with zkSNARK Phase 2 Trusted Setup ceremonies",
   "repository": "git@github.com:privacy-scaling-explorations/p0tion.git",
   "homepage": "https://github.com/privacy-scaling-explorations/p0tion",
@@ -34,11 +34,13 @@
     "build:watch": "rollup -c rollup.config.ts -w --configPlugin typescript",
     "start": "ts-node --esm ./src/index.ts",
     "auth": "yarn start auth",
+    "auth:bandada": "yarn start auth-bandada",
     "contribute": "yarn start contribute",
     "clean": "yarn start clean",
     "list": "yarn start list",
     "logout": "yarn start logout",
     "validate": "yarn start validate",
+    "ceremony:participants": "yarn start ceremony participants",
     "coordinate:setup": "yarn start coordinate setup",
     "coordinate:observe": "yarn start coordinate observe",
     "coordinate:finalize": "yarn start coordinate finalize",
@@ -57,6 +59,7 @@
     "@types/winston": "^2.4.4",
     "rollup-plugin-auto-external": "^2.0.0",
     "rollup-plugin-cleanup": "^3.2.1",
+    "rollup-plugin-copy": "^3.5.0",
     "rollup-plugin-typescript2": "^0.34.1",
     "solc": "^0.8.19",
     "ts-node": "^10.9.1",
@@ -64,10 +67,13 @@
   },
   "dependencies": {
     "@adobe/node-fetch-retry": "^2.2.0",
+    "@aws-sdk/client-s3": "^3.329.0",
+    "@bandada/api-sdk": "^1.0.0-beta.1",
+    "@devtion/actions": "latest",
     "@octokit/auth-oauth-app": "^5.0.5",
     "@octokit/auth-oauth-device": "^4.0.4",
     "@octokit/request": "^6.2.3",
-    "@p0tion/actions": "^1.0.5",
+    "@semaphore-protocol/identity": "^3.15.1",
     "blakejs": "^1.2.1",
     "boxen": "^7.1.0",
     "chalk": "^5.2.0",
@@ -77,6 +83,7 @@
     "commander": "^10.0.1",
     "conf": "^11.0.1",
     "dotenv": "^16.0.3",
+    "ethers": "^6.9.0",
     "figlet": "^1.6.0",
     "firebase": "^9.21.0",
     "log-symbols": "^5.1.0",
@@ -89,12 +96,12 @@
     "prompts": "^2.4.2",
     "rimraf": "^5.0.0",
     "rollup": "^3.21.6",
-    "snarkjs": "^0.6.11",
+    "snarkjs": "0.7.3",
     "timer-node": "^5.0.7",
     "winston": "^3.8.2"
   },
   "publishConfig": {
     "access": "public"
   },
-  "gitHead": "ff032e8717f4aac3f66730e0a256660c2e741505"
+  "gitHead": "74b2b41e243efd4386fd93aba889348ce95e35a7"
 }

package/src/commands/auth.ts

@@ -4,6 +4,7 @@ import { Verification } from "@octokit/auth-oauth-device/dist-types/types.js"
 import clipboard from "clipboardy"
 import dotenv from "dotenv"
 import open from "open"
+import figlet from "figlet"
 import { fileURLToPath } from "url"
 import { dirname } from "path"
 import { GENERIC_ERRORS, showError } from "../lib/errors.js"
@@ -62,19 +63,28 @@ export const expirationCountdownForGithubOAuth = (expirationInSeconds: number) =
  */
 export const onVerification = async (verification: Verification): Promise<void> => {
     // Copy code to clipboard.
-    clipboard.writeSync(verification.user_code)
-    clipboard.readSync()
+    let noClipboard = false
+    try {
+        clipboard.writeSync(verification.user_code)
+        clipboard.readSync()
+    } catch (error) {
+        noClipboard = true
+    }
 
     // Display data.
     console.log(
         `${theme.symbols.warning} Visit ${theme.text.bold(
             theme.text.underlined(verification.verification_uri)
-        )} on this device to generate a new token and authenticate`
+        )} on this device to generate a new token and authenticate\n`
     )
+
+    console.log(theme.colors.magenta(figlet.textSync("Code is Below", { font: "ANSI Shadow" })), "\n")
+
+    const message = !noClipboard ? `has been copied to your clipboard (${theme.emojis.clipboard})` : ``
     console.log(
-        `${theme.symbols.info} Your auth code: ${theme.text.bold(verification.user_code)} (${theme.emojis.clipboard} ${
+        `${theme.symbols.info} Your auth code: ${theme.text.bold(verification.user_code)} ${message} ${
             theme.symbols.success
-        })\n`
+        }\n`
     )
 
     const spinner = customSpinner(`Redirecting to Github...`, `clock`)
@@ -82,8 +92,12 @@ export const onVerification = async (verification: Verification): Promise<void>
 
     await sleep(10000) // ~10s to make users able to read the CLI.
 
-    // Automatically open the page (# Step 2).
-    await open(verification.verification_uri)
+    try {
+        // Automatically open the page (# Step 2).
+        await open(verification.verification_uri)
+    } catch (error: any) {
+        console.log(`${theme.symbols.info} Please authenticate via GitHub at ${verification.verification_uri}`)
+    }
 
     spinner.stop()
 

package/src/commands/authBandada.ts

@@ -0,0 +1,110 @@
+import { Identity } from "@semaphore-protocol/identity"
+
+import { commonTerms } from "@devtion/actions"
+import { httpsCallable } from "firebase/functions"
+import { groth16 } from "snarkjs"
+import { dirname } from "path"
+import { getAuth, signInWithCustomToken } from "firebase/auth"
+import prompts from "prompts"
+import { fileURLToPath } from "url"
+import theme from "../lib/theme.js"
+import { customSpinner } from "../lib/utils.js"
+import { VerifiedBandadaResponse } from "../types/index.js"
+import { showError } from "../lib/errors.js"
+import { bootstrapCommandExecutionAndServices } from "../lib/services.js"
+import { addMemberToGroup, isGroupMember } from "../lib/bandada.js"
+import {
+    checkLocalBandadaIdentity,
+    deleteLocalAccessToken,
+    deleteLocalBandadaIdentity,
+    getLocalBandadaIdentity,
+    setLocalAccessToken,
+    setLocalBandadaIdentity
+} from "../lib/localConfigs.js"
+
+const { BANDADA_DASHBOARD_URL, BANDADA_GROUP_ID } = process.env
+
+const authBandada = async () => {
+    try {
+        const { firebaseFunctions } = await bootstrapCommandExecutionAndServices()
+        const spinner = customSpinner(`Checking identity string for Semaphore...`, `clock`)
+        spinner.start()
+        // 1. check if _identity string exists in local storage
+        let identityString: string | unknown
+        const isIdentityStringStored = checkLocalBandadaIdentity()
+        if (isIdentityStringStored) {
+            identityString = getLocalBandadaIdentity()
+            spinner.succeed(`Identity seed found\n`)
+        } else {
+            spinner.warn(`Identity seed not found\n`)
+            // 2. generate a random _identity string and save it in local storage
+            const { seed } = await prompts({
+                type: "text",
+                name: "seed",
+                message: theme.text.bold(`Enter a secret string to use as your identity seed in Semaphore:`),
+                initial: false
+            })
+            identityString = seed as string
+            setLocalBandadaIdentity(identityString as string)
+        }
+        // 3. create a semaphore identity with _identity string as a seed
+        const identity = new Identity(identityString as string)
+
+        // 4. check if the user is a member of the group
+        console.log(`Checking Bandada membership...`)
+        const isMember = await isGroupMember(BANDADA_GROUP_ID, identity)
+        if (!isMember) {
+            await addMemberToGroup(BANDADA_GROUP_ID, BANDADA_DASHBOARD_URL, identity)
+        }
+
+        // 5. generate a proof that the user owns the commitment.
+        spinner.text = `Generating proof of identity...`
+        spinner.start()
+        // publicSignals = [hash(externalNullifier, identityNullifier), commitment]
+        const { proof, publicSignals } = await groth16.fullProve(
+            {
+                identityTrapdoor: identity.trapdoor,
+                identityNullifier: identity.nullifier,
+                externalNullifier: BANDADA_GROUP_ID
+            },
+            `${dirname(fileURLToPath(import.meta.url))}/public/mini-semaphore.wasm`,
+            `${dirname(fileURLToPath(import.meta.url))}/public/mini-semaphore.zkey`
+        )
+        spinner.succeed(`Proof generated.\n`)
+        spinner.text = `Sending proof to verification...`
+        spinner.start()
+        // 6. send proof to a cloud function that verifies it and checks membership
+        const cf = httpsCallable(firebaseFunctions, commonTerms.cloudFunctionsNames.bandadaValidateProof)
+        const result = await cf({
+            proof,
+            publicSignals
+        })
+        const { valid, token, message } = result.data as VerifiedBandadaResponse
+        if (!valid) {
+            showError(message, true)
+        }
+        spinner.succeed(`Proof verified.\n`)
+        spinner.text = `Authenticating...`
+        spinner.start()
+        // 7. Auth to p0tion firebase
+        const userCredentials = await signInWithCustomToken(getAuth(), token)
+        setLocalAccessToken(token)
+        spinner.succeed(`Authenticated as ${theme.text.bold(userCredentials.user.uid)}.`)
+
+        console.log(
+            `\n${theme.symbols.warning} You can always log out by running the ${theme.text.bold(
+                `phase2cli logout`
+            )} command`
+        )
+    } catch (error) {
+        // Delete local token.
+        console.log("An error crashed the process. Deleting local token and identity.")
+        console.error(error)
+        deleteLocalAccessToken()
+        deleteLocalBandadaIdentity()
+    }
+
+    process.exit(0)
+}
+
+export default authBandada

package/src/commands/ceremony/index.ts

@@ -0,0 +1,20 @@
+import { Command } from "commander"
+import listParticipants from "./listParticipants.js"
+
+const setCeremonyCommands = (program: Command) => {
+    const ceremony = program.command("ceremony").description("manage ceremonies")
+
+    ceremony
+        .command("participants")
+        .description("retrieve participants list of a ceremony")
+        .requiredOption(
+            "-c, --ceremony <string>",
+            "the prefix of the ceremony you want to retrieve information about",
+            ""
+        )
+        .action(listParticipants)
+
+    return ceremony
+}
+
+export default setCeremonyCommands

package/src/commands/ceremony/listParticipants.ts

@@ -0,0 +1,30 @@
+import { collection, doc, getDocs } from "firebase/firestore"
+import { commonTerms, getAllCeremonies } from "@devtion/actions"
+import { bootstrapCommandExecutionAndServices } from "../../lib/services.js"
+import { showError } from "../../lib/errors.js"
+import { promptForCeremonySelection } from "../../lib/prompts.js"
+
+const listParticipants = async () => {
+    try {
+        const { firestoreDatabase } = await bootstrapCommandExecutionAndServices()
+
+        const allCeremonies = await getAllCeremonies(firestoreDatabase)
+        const selectedCeremony = await promptForCeremonySelection(allCeremonies, true)
+
+        const docRef = doc(firestoreDatabase, commonTerms.collections.ceremonies.name, selectedCeremony.id)
+        const participantsRef = collection(docRef, "participants")
+        const participantsSnapshot = await getDocs(participantsRef)
+        const participants = participantsSnapshot.docs.map((participantDoc) => participantDoc.data().userId)
+        console.log(participants)
+
+        /* const usersRef = collection(firestoreDatabase, "users")
+        const usersSnapshot = await getDocs(usersRef)
+        const users = usersSnapshot.docs.map((userDoc) => userDoc.data())
+        console.log(users) */
+    } catch (err: any) {
+        showError(`Something went wrong: ${err.toString()}`, true)
+    }
+    process.exit(0)
+}
+
+export default listParticipants

package/src/commands/contribute.ts

@@ -22,7 +22,7 @@ import {
     generateValidContributionsAttestation,
     commonTerms,
     convertToDoubleDigits
-} from "@p0tion/actions"
+} from "@devtion/actions"
 import { DocumentSnapshot, DocumentData, Firestore, onSnapshot, Timestamp } from "firebase/firestore"
 import { Functions } from "firebase/functions"
 import open from "open"
@@ -40,8 +40,8 @@ import {
     estimateParticipantFreeGlobalDiskSpace
 } from "../lib/utils.js"
 import { COMMAND_ERRORS, showError } from "../lib/errors.js"
-import { bootstrapCommandExecutionAndServices, checkAuth } from "../lib/services.js"
-import { getAttestationLocalFilePath, localPaths } from "../lib/localConfigs.js"
+import { authWithToken, bootstrapCommandExecutionAndServices, checkAuth } from "../lib/services.js"
+import { checkLocalBandadaIdentity, getAttestationLocalFilePath, localPaths } from "../lib/localConfigs.js"
 import theme from "../lib/theme.js"
 import { checkAndMakeNewDirectoryIfNonexistent, writeFile } from "../lib/files.js"
 
@@ -419,14 +419,19 @@ export const handlePublicAttestation = async (
 
     await sleep(1000) // workaround for file descriptor unexpected close.
 
-    const gistUrl = await publishGist(participantAccessToken, publicAttestation, ceremonyName, ceremonyPrefix)
-
-    console.log(
-        `\n${theme.symbols.info} Your public attestation has been successfully posted as Github Gist (${theme.text.bold(
-            theme.text.underlined(gistUrl)
-        )})`
-    )
+    let gistUrl = ""
+    const isBandada = checkLocalBandadaIdentity()
+    if (!isBandada) {
+        gistUrl = await publishGist(participantAccessToken, publicAttestation, ceremonyName, ceremonyPrefix)
 
+        console.log(
+            `\n${
+                theme.symbols.info
+            } Your public attestation has been successfully posted as Github Gist (${theme.text.bold(
+                theme.text.underlined(gistUrl)
+            )})`
+        )
+    }
     // Prepare a ready-to-share tweet.
     await handleTweetGeneration(ceremonyName, gistUrl)
 }
@@ -464,7 +469,6 @@ export const listenToCeremonyCircuitDocumentChanges = (
         const { fullContribution, verifyCloudFunction } = avgTimings
         const { currentContributor } = waitingQueue
 
-        // Get circuit current contributor participant document.
         const circuitCurrentContributor = await getDocumentById(
             firestoreDatabase,
             getParticipantsCollectionPath(ceremonyId),
@@ -725,7 +729,8 @@ export const listenToParticipantDocumentChanges = async (
                     participant,
                     entropy,
                     providerUserId,
-                    false // not finalizing.
+                    false, // not finalizing.
+                    circuits.length
                 )
             }
             // Scenario (3.A).
@@ -811,7 +816,9 @@ export const listenToParticipantDocumentChanges = async (
                     await getLatestVerificationResult(firestoreDatabase, ceremony.id, circuit.id, participant.id)
 
                 // Get next circuit for contribution.
-                const nextCircuit = getCircuitBySequencePosition(circuits, changedContributionProgress + 1)
+                const nextCircuit = timeoutExpired
+                    ? getCircuitBySequencePosition(circuits, changedContributionProgress)
+                    : getCircuitBySequencePosition(circuits, changedContributionProgress + 1)
 
                 // Check disk space requirements for participant.
                 const wannaGenerateAttestation = await handleDiskSpaceRequirementForNextContribution(
@@ -892,12 +899,13 @@ export const listenToParticipantDocumentChanges = async (
 const contribute = async (opt: any) => {
     const { firebaseApp, firebaseFunctions, firestoreDatabase } = await bootstrapCommandExecutionAndServices()
 
-    // Check for authentication.
-    const { user, providerUserId, token } = await checkAuth(firebaseApp)
-
     // Get options.
     const ceremonyOpt = opt.ceremony
     const entropyOpt = opt.entropy
+    const { auth } = opt
+
+    // Check for authentication.
+    const { user, providerUserId, token } = auth ? await authWithToken(firebaseApp, auth) : await checkAuth(firebaseApp)
 
     // Prepare data.
     let selectedCeremony: FirebaseDocumentInfo
@@ -949,7 +957,7 @@ const contribute = async (opt: any) => {
     const userData = userDoc.data()
     if (!userData) {
         spinner.fail(
-            `Unfortunately we could not find a user document with your information. This likely means that you did not pass the GitHub reputation checks and therefore are not elegible to contribute to any ceremony. Please contact the coordinator if you believe this to be an error.`
+            `Unfortunately we could not find a user document with your information. This likely means that you did not pass the GitHub reputation checks and therefore are not eligible to contribute to any ceremony. If you believe you pass the requirements, it might be possible that your profile is private and we were not able to fetch your real statistics, in this case please consider making your profile public for the duration of the contribution. Please contact the coordinator if you believe this to be an error.`
         )
         process.exit(0)
     }