npm - @umbra-privacy/ceremony - Versions diffs - 0.1.1 → 0.1.4 - Mend

@umbra-privacy/ceremony 0.1.1 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +104 -10
package/package.json +5 -1

package/dist/index.js CHANGED Viewed

@@ -33,7 +33,7 @@ import { createWriteStream } from "fs";
 import { readFile, unlink } from "fs/promises";
 import { pipeline } from "stream/promises";
 import { Readable } from "stream";
-var DEFAULT_API_URL = "http://ceremony.api.umbraprivacy.com";
+var DEFAULT_API_URL = "https://ceremony.api.umbraprivacy.com";
 var BASE = (process.env["CEREMONY_API_URL"] ?? DEFAULT_API_URL).replace(/\/$/, "");
 async function request(path, options = {}) {
   const res = await fetch(`${BASE}${path}`, {
@@ -111,13 +111,44 @@ var api = {
       `/api/ceremonies/${ceremonyId2}/contributions/${contributionId}/receipt`
     );
   },
-  // Admin
-  adminDashboard(ceremonyId2, adminKey) {
-    return request(`/api/admin/ceremonies/${ceremonyId2}/dashboard`, {
-      headers: { "X-Admin-Key": adminKey }
-    });
+  // Admin — signed-request flow. Caller supplies the 64-byte Solana keypair
+  // bytes (32 secret + 32 public). The helper fetches a one-time challenge,
+  // builds the canonical message, hashes it with Keccak256, signs with
+  // Ed25519, and posts the actual GET with the three X-Admin-* headers.
+  async adminDashboard(ceremonyId2, keypair) {
+    const path = `/api/admin/ceremonies/${ceremonyId2}/dashboard`;
+    const headers = await signAdminRequest(keypair, "GET", path, new Uint8Array());
+    return request(path, { headers });
   }
 };
+async function signAdminRequest(keypair, method, path, body) {
+  const { default: bs58 } = await import("bs58");
+  const ed = await import("@noble/ed25519");
+  const { keccak_256 } = await import("@noble/hashes/sha3");
+  const pubkeyB58 = bs58.encode(keypair.publicKey);
+  const chRes = await fetch(`${BASE}/api/admin/challenge`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json" },
+    body: JSON.stringify({ pubkey: pubkeyB58 })
+  });
+  if (!chRes.ok) {
+    const text = await chRes.text();
+    throw new Error(`admin challenge failed: HTTP ${chRes.status}: ${text}`);
+  }
+  const { challenge } = await chRes.json();
+  const bodyHashHex = createHash("sha256").update(Buffer.from(body)).digest("hex");
+  const canonical = `${challenge}
+${method}
+${path}
+${bodyHashHex}`;
+  const digest = keccak_256(new TextEncoder().encode(canonical));
+  const signature = await ed.signAsync(digest, keypair.secretKey);
+  return {
+    "X-Admin-Pubkey": pubkeyB58,
+    "X-Admin-Challenge": challenge,
+    "X-Admin-Signature": Buffer.from(signature).toString("base64")
+  };
+}
 var ChallengeIntegrityError = class extends Error {
   name = "ChallengeIntegrityError";
 };
@@ -659,11 +690,15 @@ function Attestation({ contribution }) {
 // src/components/App.tsx
 import { jsx as jsx6, jsxs as jsxs6 } from "react/jsx-runtime";
-function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anonymous" }) {
+var NAME_MAX_LEN = 100;
+var NAME_VALID_RE = /^[\p{L}\p{N} _.\-]*$/u;
+function App({ ceremonyId: initialCeremonyId, displayName: initialDisplayName }) {
   const { exit } = useApp();
   const [activeCeremonyId, setActiveCeremonyId] = useState4(initialCeremonyId);
+  const [displayName2, setDisplayName] = useState4(initialDisplayName ?? "anonymous");
+  const [nameSet, setNameSet] = useState4(initialDisplayName !== void 0);
   const [screen, setScreen] = useState4(
-    initialCeremonyId ? { name: "loading" } : { name: "ceremony-picker", ceremonies: [], loading: true }
+    initialDisplayName === void 0 ? { name: "name-input", value: "" } : initialCeremonyId ? { name: "loading" } : { name: "ceremony-picker", ceremonies: [], loading: true }
   );
   const [ceremony, setCeremony] = useState4(null);
   const [session, setSession] = useState4(null);
@@ -671,12 +706,13 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
   const [selectedIdx, setSelectedIdx] = useState4(0);
   const [tab, setTab] = useState4(0);
   useEffect4(() => {
+    if (!nameSet) return;
     if (!initialCeremonyId) {
       loadCeremonies();
     } else {
       boot(initialCeremonyId);
     }
-  }, []);
+  }, [nameSet]);
   async function loadCeremonies() {
     try {
       const { ceremonies } = await api.listCeremonies();
@@ -708,6 +744,7 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
         setScreen({ name: "error", message: "No tracks found in this ceremony.", recoverable: false });
         return;
       }
+      setSelectedIdx(0);
       setScreen({ name: "tracks", tracks });
     } catch (e) {
       if (e.code === "INVALID_SESSION" || e.status === 401) {
@@ -720,6 +757,7 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
             setScreen({ name: "error", message: "No tracks found in this ceremony.", recoverable: false });
             return;
           }
+          setSelectedIdx(0);
           setScreen({ name: "tracks", tracks });
         } catch (e2) {
           setScreen({ name: "error", message: e2.message ?? "Failed to load tracks.", recoverable: false });
@@ -729,6 +767,22 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
       setScreen({ name: "error", message: e.message ?? "Failed to load tracks.", recoverable: false });
     }
   }
+  function commitName(raw) {
+    const trimmed = raw.trim();
+    if (trimmed.length === 0) return;
+    setDisplayName(trimmed);
+    setNameSet(true);
+    setScreen(
+      initialCeremonyId ? { name: "loading" } : { name: "ceremony-picker", ceremonies: [], loading: true }
+    );
+  }
+  function randomAnonName() {
+    const hex = Array.from(
+      { length: 6 },
+      () => Math.floor(Math.random() * 16).toString(16)
+    ).join("");
+    return `anon-${hex}`;
+  }
   async function joinTrack(track) {
     if (!session) return;
     setScreen({ name: "joining" });
@@ -764,6 +818,29 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
   }, [screen.name]);
   useInput2((input, key) => {
     const q = input.toLowerCase();
+    if (screen.name === "name-input") {
+      if (key.escape) {
+        exit();
+        return;
+      }
+      if (key.tab) {
+        commitName(randomAnonName());
+        return;
+      }
+      if (key.return) {
+        commitName(screen.value);
+        return;
+      }
+      if (key.backspace || key.delete) {
+        setScreen({ name: "name-input", value: screen.value.slice(0, -1) });
+        return;
+      }
+      if (input && input.length === 1 && NAME_VALID_RE.test(input)) {
+        if (screen.value.length >= NAME_MAX_LEN) return;
+        setScreen({ name: "name-input", value: screen.value + input });
+      }
+      return;
+    }
     if (q === "q" && screen.name !== "entropy") {
       if (screen.name === "queue" && session) {
         clearQueueCleanup();
@@ -835,6 +912,23 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
       goHome();
     }
   });
+  if (screen.name === "name-input") {
+    const { value } = screen;
+    const canSubmit = value.trim().length > 0;
+    return /* @__PURE__ */ jsxs6(Box6, { flexDirection: "column", children: [
+      /* @__PURE__ */ jsx6(Header, { ceremony: null }),
+      /* @__PURE__ */ jsxs6(Box6, { flexDirection: "column", marginTop: 1, gap: 1, children: [
+        /* @__PURE__ */ jsx6(Text6, { bold: true, children: "Who are you contributing as?" }),
+        /* @__PURE__ */ jsx6(Text6, { dimColor: true, children: "Your display name appears next to your contributions in the public transcript. Pick anything \u2014 your real name, a handle, or hit Tab for a random anonymous name." }),
+        /* @__PURE__ */ jsxs6(Box6, { children: [
+          /* @__PURE__ */ jsx6(Text6, { color: "cyan", children: "  > " }),
+          /* @__PURE__ */ jsx6(Text6, { children: value }),
+          /* @__PURE__ */ jsx6(Text6, { color: "cyan", inverse: true, children: " " })
+        ] }),
+        /* @__PURE__ */ jsx6(Text6, { dimColor: true, children: canSubmit ? "Enter to continue  \xB7  Tab for random  \xB7  \u232B backspace  \xB7  Esc to quit" : "Type a name, or Tab for a random anonymous name  \xB7  Esc to quit" })
+      ] })
+    ] });
+  }
   if (screen.name === "ceremony-picker") {
     const { ceremonies, loading } = screen;
     return /* @__PURE__ */ jsxs6(Box6, { flexDirection: "column", children: [
@@ -1094,7 +1188,7 @@ function App({ ceremonyId: initialCeremonyId, displayName: displayName2 = "anony
 // src/index.tsx
 import { jsx as jsx7 } from "react/jsx-runtime";
 var ceremonyId = process.env["CEREMONY_ID"] ?? "";
-var displayName = process.env["CONTRIBUTOR_NAME"] ?? "anonymous";
+var displayName = process.env["CONTRIBUTOR_NAME"];
 process.stdout.write("\x1B[?1049h\x1B[H");
 function restoreScreen() {
   process.stdout.write("\x1B[?1049l");

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@umbra-privacy/ceremony",
-  "version": "0.1.1",
+  "version": "0.1.4",
   "description": "Terminal UI for the Umbra Phase 2 trusted setup ceremony",
   "type": "module",
   "bin": {
@@ -26,8 +26,12 @@
     "node": ">=18.0.0"
   },
   "dependencies": {
+    "@noble/ed25519": "^2.1.0",
+    "@noble/hashes": "^1.5.0",
+    "bs58": "^6.0.0",
     "ink": "^5.1.0",
     "ink-spinner": "^5.0.0",
+    "js-sha3": "^0.9.3",
     "react": "^18.3.1",
     "snarkjs": "^0.7.6"
   },