@magicblock-labs/ephemeral-rollups-sdk 0.2.8 → 0.2.9

package/lib/privacy/auth.d.ts

@@ -0,0 +1,3 @@
+import { PublicKey } from "@solana/web3.js";
+export declare function getAuthToken(rpcUrl: string, publicKey: PublicKey, signMessage: (message: Uint8Array) => Promise<Uint8Array>): Promise<string>;
+//# sourceMappingURL=auth.d.ts.map

package/lib/privacy/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/privacy/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAkB5C,wBAAsB,YAAY,CAChC,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,SAAS,EACpB,WAAW,EAAE,CAAC,OAAO,EAAE,UAAU,KAAK,OAAO,CAAC,UAAU,CAAC,mBAkC1D"}

package/lib/privacy/auth.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAuthToken = getAuthToken;
+async function getAuthToken(rpcUrl, publicKey, signMessage) {
+    const bs58 = (await import("bs58")).default;
+    const challengeResponse = await fetch(`${rpcUrl}/auth/challenge?pubkey=${publicKey.toString()}`);
+    const { challenge } = await challengeResponse.json();
+    const signature = await signMessage(new Uint8Array(Buffer.from(challenge, "utf-8")));
+    const signatureString = bs58.encode(signature);
+    const authResponse = await fetch(`${rpcUrl}/auth/login`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({
+            pubkey: publicKey.toString(),
+            challenge,
+            signature: signatureString,
+        }),
+    });
+    const authJson = await authResponse.json();
+    if (authResponse.status !== 200) {
+        throw new Error(`Failed to authenticate: ${authJson.error}`);
+    }
+    return authJson.token;
+}
+//# sourceMappingURL=auth.js.map

package/lib/privacy/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/privacy/auth.ts"],"names":[],"mappings":";;AAkBA,oCAqCC;AArCM,KAAK,UAAU,YAAY,CAChC,MAAc,EACd,SAAoB,EACpB,WAAyD;IAGzD,MAAM,IAAI,GAAG,CAAC,MAAM,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC;IAG5C,MAAM,iBAAiB,GAAG,MAAM,KAAK,CACnC,GAAG,MAAM,0BAA0B,SAAS,CAAC,QAAQ,EAAE,EAAE,CAC1D,CAAC;IACF,MAAM,EAAE,SAAS,EAAE,GAA0B,MAAM,iBAAiB,CAAC,IAAI,EAAE,CAAC;IAG5E,MAAM,SAAS,GAAG,MAAM,WAAW,CACjC,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC,CAChD,CAAC;IACF,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAG/C,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,GAAG,MAAM,aAAa,EAAE;QACvD,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;YACnB,MAAM,EAAE,SAAS,CAAC,QAAQ,EAAE;YAC5B,SAAS;YACT,SAAS,EAAE,eAAe;SAC3B,CAAC;KACH,CAAC,CAAC;IACH,MAAM,QAAQ,GAAsB,MAAM,YAAY,CAAC,IAAI,EAAE,CAAC;IAE9D,IAAI,YAAY,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC;IAC/D,CAAC;IAED,OAAO,QAAQ,CAAC,KAAK,CAAC;AACxB,CAAC"}

package/lib/privacy/constants.d.ts

@@ -0,0 +1,4 @@
+import { PublicKey } from "@solana/web3.js";
+export declare const SESSION_DURATION: number;
+export declare const PERMISSION_PROGRAM_ID: PublicKey;
+//# sourceMappingURL=constants.d.ts.map

package/lib/privacy/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../../src/privacy/constants.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,eAAO,MAAM,gBAAgB,QAA2B,CAAC;AAEzD,eAAO,MAAM,qBAAqB,EAAE,SAEnC,CAAC"}

package/lib/privacy/constants.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PERMISSION_PROGRAM_ID = exports.SESSION_DURATION = void 0;
+const web3_js_1 = require("@solana/web3.js");
+exports.SESSION_DURATION = 1000 * 60 * 60 * 24 * 30;
+exports.PERMISSION_PROGRAM_ID = new web3_js_1.PublicKey("BTWAqWNBmF2TboMh3fxMJfgR16xGHYD7Kgr2dPwbRPBi");
+//# sourceMappingURL=constants.js.map

package/lib/privacy/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../../src/privacy/constants.ts"],"names":[],"mappings":";;;AAAA,6CAA4C;AAE/B,QAAA,gBAAgB,GAAG,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;AAE5C,QAAA,qBAAqB,GAAc,IAAI,mBAAS,CAC3D,8CAA8C,CAC/C,CAAC"}

package/lib/privacy/index.d.ts

@@ -0,0 +1,5 @@
+export * from "./pda";
+export * from "./auth";
+export * from "./verify";
+export * from "./constants";
+//# sourceMappingURL=index.d.ts.map

package/lib/privacy/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/privacy/index.ts"],"names":[],"mappings":"AAAA,cAAc,OAAO,CAAC;AACtB,cAAc,QAAQ,CAAC;AACvB,cAAc,UAAU,CAAC;AACzB,cAAc,aAAa,CAAC"}

package/lib/privacy/index.js

@@ -0,0 +1,21 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./pda"), exports);
+__exportStar(require("./auth"), exports);
+__exportStar(require("./verify"), exports);
+__exportStar(require("./constants"), exports);
+//# sourceMappingURL=index.js.map

package/lib/privacy/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/privacy/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,wCAAsB;AACtB,yCAAuB;AACvB,2CAAyB;AACzB,8CAA4B"}

package/lib/privacy/pda.d.ts

@@ -0,0 +1,4 @@
+import { PublicKey } from "@solana/web3.js";
+export declare function permissionPdaFromAccount(account: PublicKey): PublicKey;
+export declare function groupPdaFromId(id: PublicKey): PublicKey;
+//# sourceMappingURL=pda.d.ts.map

package/lib/privacy/pda.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pda.d.ts","sourceRoot":"","sources":["../../src/privacy/pda.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAW5C,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,SAAS,aAK1D;AAOD,wBAAgB,cAAc,CAAC,EAAE,EAAE,SAAS,aAK3C"}

package/lib/privacy/pda.js

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.permissionPdaFromAccount = permissionPdaFromAccount;
+exports.groupPdaFromId = groupPdaFromId;
+const web3_js_1 = require("@solana/web3.js");
+const constants_1 = require("./constants");
+const PERMISSION_SEED = Buffer.from("permission:");
+const GROUP_SEED = Buffer.from("group:");
+function permissionPdaFromAccount(account) {
+    return web3_js_1.PublicKey.findProgramAddressSync([PERMISSION_SEED, account.toBuffer()], constants_1.PERMISSION_PROGRAM_ID)[0];
+}
+function groupPdaFromId(id) {
+    return web3_js_1.PublicKey.findProgramAddressSync([GROUP_SEED, id.toBuffer()], constants_1.PERMISSION_PROGRAM_ID)[0];
+}
+//# sourceMappingURL=pda.js.map

package/lib/privacy/pda.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pda.js","sourceRoot":"","sources":["../../src/privacy/pda.ts"],"names":[],"mappings":";;AAWA,4DAKC;AAOD,wCAKC;AA5BD,6CAA4C;AAC5C,2CAAoD;AAEpD,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;AACnD,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AAOzC,SAAgB,wBAAwB,CAAC,OAAkB;IACzD,OAAO,mBAAS,CAAC,sBAAsB,CACrC,CAAC,eAAe,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,EACrC,iCAAqB,CACtB,CAAC,CAAC,CAAC,CAAC;AACP,CAAC;AAOD,SAAgB,cAAc,CAAC,EAAa;IAC1C,OAAO,mBAAS,CAAC,sBAAsB,CACrC,CAAC,UAAU,EAAE,EAAE,CAAC,QAAQ,EAAE,CAAC,EAC3B,iCAAqB,CACtB,CAAC,CAAC,CAAC,CAAC;AACP,CAAC"}

package/lib/privacy/verify.d.ts

@@ -0,0 +1,2 @@
+export declare function verifyTeeRpcIntegrity(rpcUrl: string): Promise<boolean>;
+//# sourceMappingURL=verify.d.ts.map

package/lib/privacy/verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../src/privacy/verify.ts"],"names":[],"mappings":"AAcA,wBAAsB,qBAAqB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CA4C5E"}

package/lib/privacy/verify.js

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyTeeRpcIntegrity = verifyTeeRpcIntegrity;
+async function verifyTeeRpcIntegrity(rpcUrl) {
+    const { default: init, js_get_collateral: jsGetCollateral, js_verify: jsVerify, } = await import("@phala/dcap-qvl-web");
+    const challengeBytes = Buffer.from(Uint8Array.from(Array(32)
+        .fill(0)
+        .map(() => Math.floor(Math.random() * 256))));
+    const challenge = challengeBytes.toString("base64");
+    const url = `${rpcUrl}/quote?challenge=${encodeURIComponent(challenge)}`;
+    const response = await fetch(url);
+    const responseBody = await response.json();
+    if (response.status !== 200 || !("quote" in responseBody)) {
+        throw new Error(responseBody.error ?? "Failed to get quote");
+    }
+    await init();
+    const rawQuote = Uint8Array.from(Buffer.from(responseBody.quote, "base64"));
+    const pccsUrl = "https://pccs.phala.network/tdx/certification/v4";
+    const quoteCollateral = await jsGetCollateral(pccsUrl, rawQuote);
+    const now = BigInt(Math.floor(Date.now() / 1000));
+    try {
+        jsVerify(rawQuote, quoteCollateral, now);
+        return true;
+    }
+    catch (error) {
+        return false;
+    }
+}
+//# sourceMappingURL=verify.js.map

package/lib/privacy/verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.js","sourceRoot":"","sources":["../../src/privacy/verify.ts"],"names":[],"mappings":";;AAcA,sDA4CC;AA5CM,KAAK,UAAU,qBAAqB,CAAC,MAAc;IAExD,MAAM,EACJ,OAAO,EAAE,IAAI,EACb,iBAAiB,EAAE,eAAe,EAClC,SAAS,EAAE,QAAQ,GACpB,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,CAAC;IAExC,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,CAChC,UAAU,CAAC,IAAI,CACb,KAAK,CAAC,EAAE,CAAC;SACN,IAAI,CAAC,CAAC,CAAC;SACP,GAAG,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,GAAG,CAAC,CAAC,CAC9C,CACF,CAAC;IACF,MAAM,SAAS,GAAG,cAAc,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACpD,MAAM,GAAG,GAAG,GAAG,MAAM,oBAAoB,kBAAkB,CAAC,SAAS,CAAC,EAAE,CAAC;IAEzE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,CAAC;IAClC,MAAM,YAAY,GAAkC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAE1E,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,OAAO,IAAI,YAAY,CAAC,EAAE,CAAC;QAC1D,MAAM,IAAI,KAAK,CAAC,YAAY,CAAC,KAAK,IAAI,qBAAqB,CAAC,CAAC;IAC/D,CAAC;IAGD,MAAM,IAAI,EAAE,CAAC;IAEb,MAAM,QAAQ,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC;IAG5E,MAAM,OAAO,GAAG,iDAAiD,CAAC;IAClE,MAAM,eAAe,GAAG,MAAM,eAAe,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IAGjE,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;IAGlD,IAAI,CAAC;QACH,QAAQ,CAAC,QAAQ,EAAE,eAAe,EAAE,GAAG,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@magicblock-labs/ephemeral-rollups-sdk",
-  "version": "0.2.8",
+  "version": "0.2.9",
   "author": "MagicBlock Labs",
   "license": "MIT",
   "publishConfig": {
@@ -8,6 +8,10 @@
     "registry": "https://registry.npmjs.org/"
   },
   "main": "lib/index.js",
+  "exports": {
+    ".": "./lib/index.js",
+    "./privacy": "./lib/privacy/index.js"
+  },
   "scripts": {
     "clean": "rimraf lib",
     "build": "npm run clean && npm run lint:fix && tsc",
@@ -36,10 +40,11 @@
     "prettier": "^3.3.2",
     "rimraf": "^3.0.2",
     "ts-jest": "^29.1.1",
-    "typescript": "^5.7.2"
+    "typescript": "^5.3.0"
   },
   "dependencies": {
     "@metaplex-foundation/beet": "^0.7.2",
+    "@phala/dcap-qvl-web": "^0.2.7",
     "@solana/web3.js": "^1.98.0",
     "bs58": "^6.0.0",
     "rpc-websockets": "^9.0.4"