@hyperauth/contracts 0.1.0

package/README.md

@@ -0,0 +1,119 @@
+# HyperAuth Contracts
+
+Smart contract wallet powered by passkeys. ERC-4337 account abstraction with P-256 signature verification via RIP-7212 precompile, plus soulbound session tokens.
+
+## Architecture
+
+| Contract | Description |
+|----------|-------------|
+| `HyperAuthAccount` | ERC-4337 smart account — validates passkey (P-256) signatures via LibP256/RIP-7212 precompile |
+| `HyperAuthFactory` | Deterministic CREATE2 deployment of accounts from passkey public keys (X, Y) |
+| `DIDRegistry` | On-chain DID anchor — maps W3C DIDs to controller accounts with metadata CID |
+| `AccountHelper` | Lens contract — single `eth_call` to fetch nonce, DID, pubkey, and deployment status |
+| `SessionSBT` | Soulbound ERC-721 — non-transferable session tokens with mint/revoke lifecycle |
+| `LibP256` | Library — reusable P-256 signature verification via RIP-7212 precompile at `0x100` |
+
+## Prerequisites
+
+- [Foundry](https://book.getfoundry.sh/getting-started/installation)
+- [Node.js](https://nodejs.org/) (v18+)
+- [Docker](https://www.docker.com/) (for local Postgres)
+
+## Installation
+
+```bash
+git clone https://github.com/hyperauth-org/contracts.git
+cd contracts
+forge install
+```
+
+## Build
+
+```bash
+forge build
+```
+
+## Test
+
+```bash
+forge test -vvv
+```
+
+## Format
+
+```bash
+forge fmt
+```
+
+## Deploy
+
+```bash
+# Set deployer private key
+export PRIVATE_KEY=<your_private_key>
+
+# Deploy to Base Sepolia
+forge script script/Deploy.s.sol --rpc-url https://sepolia.base.org --broadcast
+```
+
+## Indexer
+
+A Cloudflare Worker that indexes on-chain events (`DIDRegistered`, `DIDUpdated`, `DIDDeactivated`, `AliasRegistered`, `AccountCreated`) into Postgres. Runs on a cron schedule and writes to [Neon](https://neon.tech) (serverless Postgres) in production.
+
+### Neon DB Setup
+
+1. Create a free project at [neon.tech](https://neon.tech)
+2. Copy the connection string (looks like `postgresql://user:pass@ep-xyz.us-east-2.aws.neon.tech/neondb?sslmode=require`)
+3. Run the migration against your Neon database:
+
+```bash
+psql "$DATABASE_URL" -f db/migrations/001_did_registration_schema.sql
+```
+
+### Local Development
+
+For local development, Postgres runs via Docker and the schema is auto-applied on startup:
+
+```bash
+# Start local Postgres (schema auto-migrates via docker-entrypoint-initdb.d)
+docker compose up postgres -d
+
+# Install indexer dependencies
+cd indexer && npm install
+
+# Create a .dev.vars file with your secrets
+cat > .dev.vars <<EOF
+DATABASE_URL=postgresql://hyperauth:password@localhost:5432/hyperauth_local
+RPC_URL=https://sepolia.base.org
+EOF
+
+# Run the indexer locally (triggers on HTTP, not cron)
+npm run dev
+
+# Trigger a manual indexing run
+curl http://localhost:8787/run
+
+# Health check
+curl http://localhost:8787/health
+```
+
+### Deploy to Cloudflare
+
+```bash
+cd indexer
+
+# Set secrets (one-time)
+wrangler secret put DATABASE_URL  # Neon connection string
+wrangler secret put RPC_URL       # Base Sepolia RPC endpoint
+
+# Deploy
+npm run deploy
+
+# Tail logs
+npm run tail
+```
+
+The worker runs every minute and indexes up to 2,000 blocks per contract per invocation. Progress is tracked in the `indexer_cursors` table so it resumes from where it left off.
+
+## License
+
+MIT

package/package.json

@@ -0,0 +1,29 @@
+{
+  "name": "@hyperauth/contracts",
+  "version": "0.1.0",
+  "private": false,
+  "type": "module",
+  "description": "HyperAuth smart contract ABIs, deployment addresses, and KV sync tooling",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist",
+    "ts"
+  ],
+  "scripts": {
+    "generate": "node scripts/generate-sdk.mjs",
+    "build": "npm run generate && tsc",
+    "kv:generate": "node scripts/generate-kv-bulk.mjs",
+    "kv:push": "npm run kv:generate && wrangler kv bulk put .kv-bulk.json --namespace-id ec17209c9c8c4ece9a974774138c031e --remote"
+  },
+  "devDependencies": {
+    "typescript": "^5.7",
+    "wrangler": "^4"
+  }
+}

package/ts/AccountHelper.ts

@@ -0,0 +1,68 @@
+/// Auto-generated by scripts/generate-sdk.mjs — do not edit manually.
+export const accountHelperAbi = [
+  {
+    "type": "constructor",
+    "inputs": [
+      {
+        "name": "registry_",
+        "type": "address",
+        "internalType": "address"
+      }
+    ],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "REGISTRY",
+    "inputs": [],
+    "outputs": [
+      {
+        "name": "",
+        "type": "address",
+        "internalType": "contract DIDRegistry"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "getAccountState",
+    "inputs": [
+      {
+        "name": "account",
+        "type": "address",
+        "internalType": "address"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "state",
+        "type": "tuple",
+        "internalType": "struct AccountHelper.AccountState",
+        "components": [
+          {
+            "name": "nonce",
+            "type": "uint256",
+            "internalType": "uint256"
+          },
+          {
+            "name": "did",
+            "type": "bytes32",
+            "internalType": "bytes32"
+          },
+          {
+            "name": "isActive",
+            "type": "bool",
+            "internalType": "bool"
+          },
+          {
+            "name": "pubKey",
+            "type": "uint256[2]",
+            "internalType": "uint256[2]"
+          }
+        ]
+      }
+    ],
+    "stateMutability": "view"
+  }
+] as const;

package/ts/DIDRegistry.ts

@@ -0,0 +1,400 @@
+/// Auto-generated by scripts/generate-sdk.mjs — do not edit manually.
+export const didRegistryAbi = [
+  {
+    "type": "constructor",
+    "inputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "aliases",
+    "inputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "controllerToDid",
+    "inputs": [
+      {
+        "name": "",
+        "type": "address",
+        "internalType": "address"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "deactivate",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "didToAlias",
+    "inputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "dids",
+    "inputs": [
+      {
+        "name": "",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "controller",
+        "type": "address",
+        "internalType": "address"
+      },
+      {
+        "name": "created",
+        "type": "uint256",
+        "internalType": "uint256"
+      },
+      {
+        "name": "updated",
+        "type": "uint256",
+        "internalType": "uint256"
+      },
+      {
+        "name": "metadataCid",
+        "type": "string",
+        "internalType": "string"
+      },
+      {
+        "name": "active",
+        "type": "bool",
+        "internalType": "bool"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "owner",
+    "inputs": [],
+    "outputs": [
+      {
+        "name": "",
+        "type": "address",
+        "internalType": "address"
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "register",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      },
+      {
+        "name": "aliasHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      },
+      {
+        "name": "metadataCid",
+        "type": "string",
+        "internalType": "string"
+      }
+    ],
+    "outputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "renounceOwnership",
+    "inputs": [],
+    "outputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "resolve",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "",
+        "type": "tuple",
+        "internalType": "struct DIDRegistry.DidDocument",
+        "components": [
+          {
+            "name": "controller",
+            "type": "address",
+            "internalType": "address"
+          },
+          {
+            "name": "created",
+            "type": "uint256",
+            "internalType": "uint256"
+          },
+          {
+            "name": "updated",
+            "type": "uint256",
+            "internalType": "uint256"
+          },
+          {
+            "name": "metadataCid",
+            "type": "string",
+            "internalType": "string"
+          },
+          {
+            "name": "active",
+            "type": "bool",
+            "internalType": "bool"
+          }
+        ]
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "resolveAlias",
+    "inputs": [
+      {
+        "name": "aliasHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      }
+    ],
+    "outputs": [
+      {
+        "name": "",
+        "type": "tuple",
+        "internalType": "struct DIDRegistry.DidDocument",
+        "components": [
+          {
+            "name": "controller",
+            "type": "address",
+            "internalType": "address"
+          },
+          {
+            "name": "created",
+            "type": "uint256",
+            "internalType": "uint256"
+          },
+          {
+            "name": "updated",
+            "type": "uint256",
+            "internalType": "uint256"
+          },
+          {
+            "name": "metadataCid",
+            "type": "string",
+            "internalType": "string"
+          },
+          {
+            "name": "active",
+            "type": "bool",
+            "internalType": "bool"
+          }
+        ]
+      }
+    ],
+    "stateMutability": "view"
+  },
+  {
+    "type": "function",
+    "name": "transferOwnership",
+    "inputs": [
+      {
+        "name": "newOwner",
+        "type": "address",
+        "internalType": "address"
+      }
+    ],
+    "outputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "function",
+    "name": "update",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "internalType": "bytes32"
+      },
+      {
+        "name": "newMetadataCid",
+        "type": "string",
+        "internalType": "string"
+      }
+    ],
+    "outputs": [],
+    "stateMutability": "nonpayable"
+  },
+  {
+    "type": "event",
+    "name": "AliasRegistered",
+    "inputs": [
+      {
+        "name": "aliasHash",
+        "type": "bytes32",
+        "indexed": true,
+        "internalType": "bytes32"
+      },
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "indexed": true,
+        "internalType": "bytes32"
+      }
+    ],
+    "anonymous": false
+  },
+  {
+    "type": "event",
+    "name": "DIDDeactivated",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "indexed": true,
+        "internalType": "bytes32"
+      }
+    ],
+    "anonymous": false
+  },
+  {
+    "type": "event",
+    "name": "DIDRegistered",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "indexed": true,
+        "internalType": "bytes32"
+      },
+      {
+        "name": "controller",
+        "type": "address",
+        "indexed": true,
+        "internalType": "address"
+      },
+      {
+        "name": "metadataCid",
+        "type": "string",
+        "indexed": false,
+        "internalType": "string"
+      }
+    ],
+    "anonymous": false
+  },
+  {
+    "type": "event",
+    "name": "DIDUpdated",
+    "inputs": [
+      {
+        "name": "didHash",
+        "type": "bytes32",
+        "indexed": true,
+        "internalType": "bytes32"
+      },
+      {
+        "name": "newMetadataCid",
+        "type": "string",
+        "indexed": false,
+        "internalType": "string"
+      }
+    ],
+    "anonymous": false
+  },
+  {
+    "type": "event",
+    "name": "OwnershipTransferred",
+    "inputs": [
+      {
+        "name": "previousOwner",
+        "type": "address",
+        "indexed": true,
+        "internalType": "address"
+      },
+      {
+        "name": "newOwner",
+        "type": "address",
+        "indexed": true,
+        "internalType": "address"
+      }
+    ],
+    "anonymous": false
+  },
+  {
+    "type": "error",
+    "name": "OwnableInvalidOwner",
+    "inputs": [
+      {
+        "name": "owner",
+        "type": "address",
+        "internalType": "address"
+      }
+    ]
+  },
+  {
+    "type": "error",
+    "name": "OwnableUnauthorizedAccount",
+    "inputs": [
+      {
+        "name": "account",
+        "type": "address",
+        "internalType": "address"
+      }
+    ]
+  }
+] as const;