shogun-core 1.2.7 → 1.2.8

package/dist/types/plugins/web3/web3ConnectorPlugin.d.ts

@@ -1,5 +1,6 @@
 import { BasePlugin } from "../base";
 import { ShogunCore } from "../../index";
+import { Web3SigningCredential } from "./web3Signer";
 import { Web3ConnectorCredentials, ConnectionResult, Web3ConectorPluginInterface } from "./types";
 import { ethers } from "ethers";
 import { AuthResult } from "../../types/shogun";
@@ -11,6 +12,7 @@ export declare class Web3ConnectorPlugin extends BasePlugin implements Web3Conec
     version: string;
     description: string;
     private Web3;
+    private signer;
     /**
      * @inheritdoc
      */
@@ -24,6 +26,11 @@ export declare class Web3ConnectorPlugin extends BasePlugin implements Web3Conec
      * @private
      */
     private assertMetaMask;
+    /**
+     * Assicura che il signer sia inizializzato
+     * @private
+     */
+    private assertSigner;
     /**
      * @inheritdoc
      */
@@ -60,6 +67,81 @@ export declare class Web3ConnectorPlugin extends BasePlugin implements Web3Conec
      * @inheritdoc
      */
     verifySignature(message: string, signature: string): Promise<string>;
+    /**
+     * Creates a new Web3 signing credential
+     * CONSISTENT with normal Web3 approach
+     */
+    createSigningCredential(address: string): Promise<Web3SigningCredential>;
+    /**
+     * Creates an authenticator function for Web3 signing
+     */
+    createAuthenticator(address: string): (data: any) => Promise<string>;
+    /**
+     * Creates a derived key pair from Web3 credential
+     */
+    createDerivedKeyPair(address: string, extra?: string[]): Promise<{
+        pub: string;
+        priv: string;
+        epub: string;
+        epriv: string;
+    }>;
+    /**
+     * Signs data with derived keys after Web3 verification
+     */
+    signWithDerivedKeys(data: any, address: string, extra?: string[]): Promise<string>;
+    /**
+     * Get signing credential by address
+     */
+    getSigningCredential(address: string): Web3SigningCredential | undefined;
+    /**
+     * List all signing credentials
+     */
+    listSigningCredentials(): Web3SigningCredential[];
+    /**
+     * Remove a signing credential
+     */
+    removeSigningCredential(address: string): boolean;
+    /**
+     * Creates a Gun user from Web3 signing credential
+     * This ensures the SAME user is created as with normal approach
+     */
+    createGunUserFromSigningCredential(address: string): Promise<{
+        success: boolean;
+        userPub?: string;
+        error?: string;
+    }>;
+    /**
+     * Get the Gun user public key for a signing credential
+     */
+    getGunUserPubFromSigningCredential(address: string): string | undefined;
+    /**
+     * Get the password (for consistency checking)
+     */
+    getPassword(address: string): string | undefined;
+    /**
+     * Verify consistency between oneshot and normal approaches
+     * This ensures both approaches create the same Gun user
+     */
+    verifyConsistency(address: string, expectedUserPub?: string): Promise<{
+        consistent: boolean;
+        actualUserPub?: string;
+        expectedUserPub?: string;
+    }>;
+    /**
+     * Complete oneshot workflow that creates the SAME Gun user as normal approach
+     * This is the recommended method for oneshot signing with full consistency
+     */
+    setupConsistentOneshotSigning(address: string): Promise<{
+        credential: Web3SigningCredential;
+        authenticator: (data: any) => Promise<string>;
+        gunUser: {
+            success: boolean;
+            userPub?: string;
+            error?: string;
+        };
+        username: string;
+        password: string;
+    }>;
     /**
      * Login con Web3
      * @param address - Indirizzo Ethereum

package/dist/types/plugins/web3/web3Signer.d.ts

@@ -0,0 +1,93 @@
+import { Web3Connector } from "./web3Connector";
+/**
+ * Web3 Signing Credential for oneshot signing
+ */
+export interface Web3SigningCredential {
+    address: string;
+    signature: string;
+    message: string;
+    username: string;
+    password: string;
+    gunUserPub?: string;
+}
+/**
+ * Web3 Signer - Provides oneshot signing functionality
+ * Similar to webauthn.js but for Web3/MetaMask
+ * CONSISTENT with normal Web3 approach
+ */
+export declare class Web3Signer {
+    private web3Connector;
+    private credentials;
+    private readonly MESSAGE_TO_SIGN;
+    constructor(web3Connector?: Web3Connector);
+    /**
+     * Creates a new Web3 signing credential
+     * CONSISTENT with normal Web3 approach
+     */
+    createSigningCredential(address: string): Promise<Web3SigningCredential>;
+    /**
+     * Request signature from MetaMask
+     * Uses the same approach as normal Web3Connector
+     */
+    private requestSignature;
+    /**
+     * Creates an authenticator function compatible with SEA.sign
+     * This is the key function that makes it work like webauthn.js but for Web3
+     */
+    createAuthenticator(address: string): (data: any) => Promise<string>;
+    /**
+     * Creates a derived key pair from Web3 credential
+     * CONSISTENT with normal approach: uses password as seed
+     */
+    createDerivedKeyPair(address: string, extra?: string[]): Promise<{
+        pub: string;
+        priv: string;
+        epub: string;
+        epriv: string;
+    }>;
+    /**
+     * Creates a Gun user from Web3 credential
+     * This ensures the SAME user is created as with normal approach
+     */
+    createGunUser(address: string, gunInstance: any): Promise<{
+        success: boolean;
+        userPub?: string;
+        error?: string;
+    }>;
+    /**
+     * Signs data using Web3 + derived keys
+     * This provides a hybrid approach: Web3 for user verification + derived keys for actual signing
+     * CONSISTENT with normal approach
+     */
+    signWithDerivedKeys(data: any, address: string, extra?: string[]): Promise<string>;
+    /**
+     * Get the Gun user public key for a credential
+     * This allows checking if the same user would be created
+     */
+    getGunUserPub(address: string): string | undefined;
+    /**
+     * Get the password (for consistency checking)
+     */
+    getPassword(address: string): string | undefined;
+    /**
+     * Check if this credential would create the same Gun user as normal approach
+     */
+    verifyConsistency(address: string, expectedUserPub?: string): Promise<{
+        consistent: boolean;
+        actualUserPub?: string;
+        expectedUserPub?: string;
+    }>;
+    /**
+     * Get credential by address
+     */
+    getCredential(address: string): Web3SigningCredential | undefined;
+    /**
+     * List all stored credentials
+     */
+    listCredentials(): Web3SigningCredential[];
+    /**
+     * Remove a credential
+     */
+    removeCredential(address: string): boolean;
+}
+export default Web3Signer;

package/dist/types/plugins/webauthn/webauthnPlugin.d.ts

@@ -1,5 +1,6 @@
 import { BasePlugin } from "../base";
 import { ShogunCore } from "../../index";
+import { WebAuthnSigningCredential } from "./webauthnSigner";
 import { WebauthnPluginInterface } from "./types";
 import { WebAuthnCredentials, CredentialResult } from "./types";
 import { AuthResult } from "../../types/shogun";
@@ -11,6 +12,7 @@ export declare class WebauthnPlugin extends BasePlugin implements WebauthnPlugin
     version: string;
     description: string;
     private webauthn;
+    private signer;
     /**
      * @inheritdoc
      */
@@ -24,6 +26,11 @@ export declare class WebauthnPlugin extends BasePlugin implements WebauthnPlugin
      * @private
      */
     private assertWebauthn;
+    /**
+     * Assicura che il signer sia inizializzato
+     * @private
+     */
+    private assertSigner;
     /**
      * @inheritdoc
      */
@@ -51,6 +58,80 @@ export declare class WebauthnPlugin extends BasePlugin implements WebauthnPlugin
         success: boolean;
         updatedCredentials?: WebAuthnCredentials;
     }>;
+    /**
+     * @inheritdoc
+     */
+    createSigningCredential(username: string): Promise<WebAuthnSigningCredential>;
+    /**
+     * @inheritdoc
+     */
+    createAuthenticator(credentialId: string): (data: any) => Promise<AuthenticatorAssertionResponse>;
+    /**
+     * @inheritdoc
+     */
+    createDerivedKeyPair(credentialId: string, username: string, extra?: string[]): Promise<{
+        pub: string;
+        priv: string;
+        epub: string;
+        epriv: string;
+    }>;
+    /**
+     * @inheritdoc
+     */
+    signWithDerivedKeys(data: any, credentialId: string, username: string, extra?: string[]): Promise<string>;
+    /**
+     * @inheritdoc
+     */
+    getSigningCredential(credentialId: string): WebAuthnSigningCredential | undefined;
+    /**
+     * @inheritdoc
+     */
+    listSigningCredentials(): WebAuthnSigningCredential[];
+    /**
+     * @inheritdoc
+     */
+    removeSigningCredential(credentialId: string): boolean;
+    /**
+     * Creates a Gun user from WebAuthn signing credential
+     * This ensures the SAME user is created as with normal approach
+     */
+    createGunUserFromSigningCredential(credentialId: string, username: string): Promise<{
+        success: boolean;
+        userPub?: string;
+        error?: string;
+    }>;
+    /**
+     * Get the Gun user public key for a signing credential
+     */
+    getGunUserPubFromSigningCredential(credentialId: string): string | undefined;
+    /**
+     * Get the hashed credential ID (for consistency checking)
+     */
+    getHashedCredentialId(credentialId: string): string | undefined;
+    /**
+     * Verify consistency between oneshot and normal approaches
+     * This ensures both approaches create the same Gun user
+     */
+    verifyConsistency(credentialId: string, username: string, expectedUserPub?: string): Promise<{
+        consistent: boolean;
+        actualUserPub?: string;
+        expectedUserPub?: string;
+    }>;
+    /**
+     * Complete oneshot workflow that creates the SAME Gun user as normal approach
+     * This is the recommended method for oneshot signing with full consistency
+     */
+    setupConsistentOneshotSigning(username: string): Promise<{
+        credential: WebAuthnSigningCredential;
+        authenticator: (data: any) => Promise<AuthenticatorAssertionResponse>;
+        gunUser: {
+            success: boolean;
+            userPub?: string;
+            error?: string;
+        };
+        pub: string;
+        hashedCredentialId: string;
+    }>;
     /**
      * Login with WebAuthn
      * This is the recommended method for WebAuthn authentication

package/dist/types/plugins/webauthn/webauthnSigner.d.ts

@@ -0,0 +1,90 @@
+import { Webauthn } from "./webauthn";
+/**
+ * WebAuthn Credential for oneshot signing
+ */
+export interface WebAuthnSigningCredential {
+    id: string;
+    rawId: ArrayBuffer;
+    publicKey: {
+        x: string;
+        y: string;
+    };
+    pub: string;
+    hashedCredentialId: string;
+    gunUserPub?: string;
+}
+/**
+ * WebAuthn Signer - Provides oneshot signing functionality
+ * Similar to webauthn.js but integrated with our architecture
+ * CONSISTENT with normal WebAuthn approach
+ */
+export declare class WebAuthnSigner {
+    private webauthn;
+    private credentials;
+    constructor(webauthn?: Webauthn);
+    /**
+     * Creates a new WebAuthn credential for signing
+     * Similar to webauthn.js create functionality but CONSISTENT with normal approach
+     */
+    createSigningCredential(username: string): Promise<WebAuthnSigningCredential>;
+    /**
+     * Creates an authenticator function compatible with SEA.sign
+     * This is the key function that makes it work like webauthn.js
+     */
+    createAuthenticator(credentialId: string): (data: any) => Promise<AuthenticatorAssertionResponse>;
+    /**
+     * Creates a derived key pair from WebAuthn credential
+     * CONSISTENT with normal approach: uses hashedCredentialId as password
+     */
+    createDerivedKeyPair(credentialId: string, username: string, extra?: string[]): Promise<{
+        pub: string;
+        priv: string;
+        epub: string;
+        epriv: string;
+    }>;
+    /**
+     * Creates a Gun user from WebAuthn credential
+     * This ensures the SAME user is created as with normal approach
+     */
+    createGunUser(credentialId: string, username: string, gunInstance: any): Promise<{
+        success: boolean;
+        userPub?: string;
+        error?: string;
+    }>;
+    /**
+     * Signs data using WebAuthn + derived keys
+     * This provides a hybrid approach: WebAuthn for user verification + derived keys for actual signing
+     * CONSISTENT with normal approach
+     */
+    signWithDerivedKeys(data: any, credentialId: string, username: string, extra?: string[]): Promise<string>;
+    /**
+     * Get the Gun user public key for a credential
+     * This allows checking if the same user would be created
+     */
+    getGunUserPub(credentialId: string): string | undefined;
+    /**
+     * Get the hashed credential ID (for consistency checking)
+     */
+    getHashedCredentialId(credentialId: string): string | undefined;
+    /**
+     * Check if this credential would create the same Gun user as normal approach
+     */
+    verifyConsistency(credentialId: string, username: string, expectedUserPub?: string): Promise<{
+        consistent: boolean;
+        actualUserPub?: string;
+        expectedUserPub?: string;
+    }>;
+    /**
+     * Get credential by ID
+     */
+    getCredential(credentialId: string): WebAuthnSigningCredential | undefined;
+    /**
+     * List all stored credentials
+     */
+    listCredentials(): WebAuthnSigningCredential[];
+    /**
+     * Remove a credential
+     */
+    removeCredential(credentialId: string): boolean;
+}
+export default WebAuthnSigner;

package/dist/types/shogun.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.AuthEvent = exports.AuthState = exports.CorePlugins = exports.PluginCategory = void 0;
+exports.CorePlugins = exports.PluginCategory = void 0;
 /**
  * Standard plugin categories in ShogunCore
  */
@@ -29,30 +29,3 @@ var CorePlugins;
     /** Bitcoin wallet plugin */
     CorePlugins["Nostr"] = "nostr";
 })(CorePlugins || (exports.CorePlugins = CorePlugins = {}));
-/**
- * Authentication states for the state machine
- */
-var AuthState;
-(function (AuthState) {
-    AuthState["UNAUTHENTICATED"] = "unauthenticated";
-    AuthState["AUTHENTICATING"] = "authenticating";
-    AuthState["AUTHENTICATED"] = "authenticated";
-    AuthState["AUTHENTICATION_FAILED"] = "authentication_failed";
-    AuthState["WALLET_INITIALIZING"] = "wallet_initializing";
-    AuthState["WALLET_READY"] = "wallet_ready";
-    AuthState["ERROR"] = "error";
-})(AuthState || (exports.AuthState = AuthState = {}));
-/**
- * Authentication events that trigger state transitions
- */
-var AuthEvent;
-(function (AuthEvent) {
-    AuthEvent["LOGIN_START"] = "login_start";
-    AuthEvent["LOGIN_SUCCESS"] = "login_success";
-    AuthEvent["LOGIN_FAILED"] = "login_failed";
-    AuthEvent["LOGOUT"] = "logout";
-    AuthEvent["WALLET_INIT_START"] = "wallet_init_start";
-    AuthEvent["WALLET_INIT_SUCCESS"] = "wallet_init_success";
-    AuthEvent["WALLET_INIT_FAILED"] = "wallet_init_failed";
-    AuthEvent["ERROR"] = "error";
-})(AuthEvent || (exports.AuthEvent = AuthEvent = {}));

package/dist/types/types/events.d.ts

@@ -4,12 +4,12 @@ import { EventEmitter } from "../utils/eventEmitter";
  * @interface AuthEventData
  * @property {string} userPub - The user's public key
  * @property {string} [username] - Optional username
- * @property {"password" | "webauthn" | "metamask"} method - Authentication method used
+ * @property {"password" | "webauthn" | "web3" | "nostr" | "oauth" } method - Authentication method used
  */
 export interface AuthEventData {
     userPub: string;
     username?: string;
-    method: "password" | "webauthn" | "metamask";
+    method: "password" | "webauthn" | "web3" | "nostr" | "oauth";
 }
 /**
  * Interface representing wallet event data

package/dist/types/types/shogun.d.ts

@@ -1,7 +1,7 @@
 import { IGunInstance } from "gun/types";
 import { ethers } from "ethers";
 import { ShogunError } from "../utils/errorHandler";
-import { GunDB } from "../gundb/instance";
+import { GunInstance } from "../gundb/gunInstance";
 import { GunRxJS } from "../gundb/rxjs-integration";
 import { ShogunPlugin, PluginManager } from "./plugin";
 import { ShogunStorage } from "../storage/storage";
@@ -31,13 +31,19 @@ export declare enum CorePlugins {
     /** Bitcoin wallet plugin */
     Nostr = "nostr"
 }
-export type AuthMethod = "password" | "webauthn" | "web3" | "nostr";
+export type AuthMethod = "password" | "webauthn" | "web3" | "nostr" | "oauth";
 export interface AuthResult {
     success: boolean;
     error?: string;
     userPub?: string;
     username?: string;
+    sessionToken?: string;
     authMethod?: AuthMethod;
+    redirectUrl?: string;
+    pendingAuth?: boolean;
+    message?: string;
+    provider?: string;
+    isNewUser?: boolean;
 }
 /**
  * Sign up result interface
@@ -53,7 +59,7 @@ export interface SignUpResult {
 }
 export interface IShogunCore extends PluginManager {
     gun: IGunInstance<any>;
-    gundb: GunDB;
+    gundb: GunInstance;
     rx: GunRxJS;
     storage: ShogunStorage;
     config: ShogunSDKConfig;
@@ -108,6 +114,10 @@ export interface ShogunSDKConfig {
     nostr?: {
         enabled?: boolean;
     };
+    oauth?: {
+        enabled?: boolean;
+        providers?: Record<string, any>;
+    };
     logging?: LoggingConfig;
     timeouts?: {
         login?: number;
@@ -133,49 +143,3 @@ export interface ShogunEvents {
     }) => void;
     "auth:logout": (data: Record<string, never>) => void;
 }
-/**
- * Authentication states for the state machine
- */
-export declare enum AuthState {
-    UNAUTHENTICATED = "unauthenticated",
-    AUTHENTICATING = "authenticating",
-    AUTHENTICATED = "authenticated",
-    AUTHENTICATION_FAILED = "authentication_failed",
-    WALLET_INITIALIZING = "wallet_initializing",
-    WALLET_READY = "wallet_ready",
-    ERROR = "error"
-}
-/**
- * Authentication events that trigger state transitions
- */
-export declare enum AuthEvent {
-    LOGIN_START = "login_start",
-    LOGIN_SUCCESS = "login_success",
-    LOGIN_FAILED = "login_failed",
-    LOGOUT = "logout",
-    WALLET_INIT_START = "wallet_init_start",
-    WALLET_INIT_SUCCESS = "wallet_init_success",
-    WALLET_INIT_FAILED = "wallet_init_failed",
-    ERROR = "error"
-}
-/**
- * Authentication state machine context
- */
-export interface AuthContext {
-    userPub?: string;
-    username?: string;
-    error?: string;
-    walletCount?: number;
-}
-/**
- * Authentication state machine interface
- */
-export interface AuthStateMachine {
-    currentState: AuthState;
-    context: AuthContext;
-    transition(event: AuthEvent, data?: Partial<AuthContext>): void;
-    canTransition(event: AuthEvent): boolean;
-    isAuthenticated(): boolean;
-    isWalletReady(): boolean;
-    waitForState(targetState: AuthState, timeoutMs?: number): Promise<boolean>;
-}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "shogun-core",
-  "version": "1.2.7",
+  "version": "1.2.8",
   "description": "SHOGUN SDK - Core library for Shogun SDK",
   "main": "./dist/index.js",
   "module": "./dist/index.js",
@@ -47,6 +47,7 @@
     "ethers": "^6.13.5",
     "gun": "^0.2020.1240",
     "keccak256": "^1.0.6",
+    "paillier-bigint": "^3.4.3",
     "qs": "^6.14.0",
     "rxjs": "^7.8.2",
     "uuid": "^11.1.0",

package/dist/browser.js

@@ -1,107 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ShogunCore = exports.modules = void 0;
-exports.initShogunBrowser = initShogunBrowser;
-const index_1 = require("./index");
-Object.defineProperty(exports, "ShogunCore", { enumerable: true, get: function () { return index_1.ShogunCore; } });
-const webauthn_1 = require("./plugins/webauthn");
-const web3_1 = require("./plugins/web3");
-// Lazy loading modules - organized by functionality
-const lazyModules = {
-    // Authentication modules
-    webauthn: {
-        webauthn: () => Promise.resolve().then(() => __importStar(require("./plugins/webauthn/webauthn"))),
-    },
-    // Web3 connection modules
-    web3: {
-        web3Connector: () => Promise.resolve().then(() => __importStar(require("./plugins/web3/web3ConnectorPlugin"))),
-    },
-    nostr: {
-        nostrConnector: () => Promise.resolve().then(() => __importStar(require("./plugins/nostr/nostrConnectorPlugin"))),
-    },
-};
-// Instance tracking
-let shogunCoreInstance = null;
-let gun = null;
-/**
- * Function to initialize Shogun in a browser environment
- *
- * @param config - Configuration for the Shogun SDK
- * @returns A new instance of ShogunCore
- *
- * @important For production use:
- * - Always set custom GunDB peers via config.gundb.peers or config.peers
- * - Always set a valid Ethereum RPC provider URL via config.providerUrl
- * - Default values are provided only for development and testing
- */
-function initShogunBrowser(config) {
-    // Apply default browser settings
-    const browserConfig = {
-        ...config,
-    };
-    // Create a new ShogunCore instance with browser-optimized configuration
-    shogunCoreInstance = new index_1.ShogunCore(browserConfig);
-    gun = shogunCoreInstance?.gun;
-    (0, webauthn_1.webauthnChain)();
-    (0, web3_1.web3Chain)();
-    // Support use as a global variable when included via <script>
-    if (typeof window !== "undefined") {
-        window.shogun = shogunCoreInstance;
-        window.gun = gun;
-    }
-    return shogunCoreInstance;
-}
-// Export lazy loading modules in a more organized structure
-exports.modules = {
-    webauthn: {
-        loadWebAuthn: lazyModules.webauthn.webauthn,
-    },
-    web3: {
-        loadMetaMask: lazyModules.web3.web3Connector,
-    },
-    nostr: {
-        loadNostrConnector: lazyModules.nostr.nostrConnector,
-    },
-};
-// Export types and interfaces
-__exportStar(require("./types/shogun"), exports);
-// Make initialization function available globally when in browser
-if (typeof window !== "undefined") {
-    window.initShogunBrowser = initShogunBrowser;
-}